Hidden Access Control Policies with Hidden Credentials

Page Content

Keith Frikken - Purdue University

Jan 19, 2005

Size:

Download: Video Icon MP4 Video   Flash Icon Watch in your Browser (Flash Required)   RealMedia Icon RealVideo

Abstract

In an open environment such as the Internet, the decision to
collaborate with a stranger (e.g., by granting access to a
resource) is often based on the characteristics (rather than the
identity) of the requester, via digital credentials: Access is
granted if Alice's credentials satisfy Bob's access policy. The
literature contains many scenarios in which it is desirable to
carry out such trust negotiations in a privacy-preserving manner,
i.e., so as minimize the disclosure of credentials and/or of
access policies. Elegant solutions were proposed for achieving
various degrees of privacy-preservation through minimal
disclosure. We present efficient protocols that
protect both sensitive credentials and sensitive policies. That is,
Alice gets the resource only if she satisfies the policy, Bob
does not learn anything about Alice's credentials (not even whether
Alice gained access or not), and Alice learns neither Bob's policy
structure nor which credentials caused her to gain access.

About the Speaker

Keith Frikken is a doctoral student in computer science
at Purdue University. His research interests are are in security
and databases. His specific interests in security include: secure protocols, privacy, and access control.



Unless otherwise noted, the security seminar is held on Wednesdays at 4:30P.M. STEW G52, West Lafayette Campus. More information...

© 1999-2013 Purdue University. All rights reserved.

Use/Reuse Guidelines

CERIAS Seminar materials are intended for educational, non-commercial use only and any or all commercial use is prohibited. Any use must attribute "The CERIAS Seminar at Purdue University." Opinions expressed in the recordings are not necessarily representative of the views of CERIAS or of Purdue University.