Title :
Privacy Oriented Attribute Exchange in Shibboleth Using Magic Protocols
Author :
Takagi, Toshihiro ; Komura, Takaaki ; Miyazaki, Shuichi ; Okabe, Yasuo
Author_Institution :
Grad. Sch. of Inf., Kyoto Univ., Kyoto
fDate :
July 28 2008-Aug. 1 2008
Abstract :
We propose an extension of the attribute exchange between an identity provider (IdP) and an service provider (SP) in Shibboleth. While in the conventional framework of Shibboleth attributes are exchanged in immediate values, in our new extension an SP and an IdP exchange attributes according to so-called "magic protocols". This extension enables the SP to know whether user\´s attributes meet the requirement for authorization, without the SP and the IdP revealing their confidential information. We also show how we can detect cheating in execution of this protocol, e.g. the IdP tells another value instead of the true value to the SP in malice.
Keywords :
cryptographic protocols; data privacy; public key cryptography; Shibboleth attributes; identity provider; magic protocols; privacy oriented attribute exchange; service provider; Authorization; Communication networks; Cryptographic protocols; Informatics; Information security; Privacy; Public key cryptography; Testing; Web and internet services; Web services;
Conference_Titel :
Applications and the Internet, 2008. SAINT 2008. International Symposium on
Conference_Location :
Turku
Print_ISBN :
978-0-7695-3297-4
DOI :
10.1109/SAINT.2008.20
