File Download

There are no files associated with this item.

  Links for fulltext
     (May Require Subscription)
Supplementary

Conference Paper: SPICE - simple privacy-preserving identity-management for cloud environment

TitleSPICE - simple privacy-preserving identity-management for cloud environment
Authors
KeywordsCloud Computing
Delegation
Digital Identity Management
Interoperability
Privacy
Unlinkability
Issue Date2012
PublisherSpringer Verlag. The Journal's web site is located at http://springerlink.com/content/105633/
Citation
The 10th International Conference on Applied Cryptography and Network Security, (ACNS 2012), Singapore, 26-29 June 2012. In Lecture Notes in Computer Science, 2012, v. 7341, p. 526-543 How to Cite?
AbstractIdentity security and privacy have been regarded as one of the top seven cloud security threats. There are a few identity management solutions proposed recently trying to tackle these problems. However, none of these can satisfy all desirable properties. In particular, unlinkability ensures that none of the cloud service providers (CSPs), even if they collude, can link the transactions of the same user. On the other hand, delegatable authentication is unique to the cloud platform, in which several CSPs may join together to provide a packaged service, with one of them being the source provider which interacts with the clients and performs authentication while the others will be transparent to the clients. Note that CSPs may have different authentication mechanisms that rely on different attributes. Moreover, each CSP is limited to see only the attributes that it concerns. This paper presents SPICE – the first digital identity management system that can satisfy these properties in addition to other desirable properties. The novelty of our scheme stems from combining and exploiting two group signatures so that we can randomize the signature to make the same signature look different for multiple uses of it and hide some parts of the messages which are not the concerns of the CSP. Our scheme is quite applicable to cloud systems due to its simplicity and efficiency.
DescriptionLNCS v. 7341 is proceedings of 10th ACNS 2012
Persistent Identifierhttp://hdl.handle.net/10722/164917
ISBN
ISSN
2005 Impact Factor: 0.402
2015 SCImago Journal Rankings: 0.252

 

DC FieldValueLanguage
dc.contributor.authorChow, SSMen_US
dc.contributor.authorHe, Yen_US
dc.contributor.authorHui, LCKen_US
dc.contributor.authorYiu, SMen_US
dc.date.accessioned2012-09-20T08:12:23Z-
dc.date.available2012-09-20T08:12:23Z-
dc.date.issued2012en_US
dc.identifier.citationThe 10th International Conference on Applied Cryptography and Network Security, (ACNS 2012), Singapore, 26-29 June 2012. In Lecture Notes in Computer Science, 2012, v. 7341, p. 526-543en_US
dc.identifier.isbn978-364231283-0-
dc.identifier.issn0302-9743-
dc.identifier.urihttp://hdl.handle.net/10722/164917-
dc.descriptionLNCS v. 7341 is proceedings of 10th ACNS 2012-
dc.description.abstractIdentity security and privacy have been regarded as one of the top seven cloud security threats. There are a few identity management solutions proposed recently trying to tackle these problems. However, none of these can satisfy all desirable properties. In particular, unlinkability ensures that none of the cloud service providers (CSPs), even if they collude, can link the transactions of the same user. On the other hand, delegatable authentication is unique to the cloud platform, in which several CSPs may join together to provide a packaged service, with one of them being the source provider which interacts with the clients and performs authentication while the others will be transparent to the clients. Note that CSPs may have different authentication mechanisms that rely on different attributes. Moreover, each CSP is limited to see only the attributes that it concerns. This paper presents SPICE – the first digital identity management system that can satisfy these properties in addition to other desirable properties. The novelty of our scheme stems from combining and exploiting two group signatures so that we can randomize the signature to make the same signature look different for multiple uses of it and hide some parts of the messages which are not the concerns of the CSP. Our scheme is quite applicable to cloud systems due to its simplicity and efficiency.-
dc.languageengen_US
dc.publisherSpringer Verlag. The Journal's web site is located at http://springerlink.com/content/105633/-
dc.relation.ispartofLecture Notes in Computer Scienceen_US
dc.rightsThe original publication is available at www.springerlink.com-
dc.subjectCloud Computing-
dc.subjectDelegation-
dc.subjectDigital Identity Management-
dc.subjectInteroperability-
dc.subjectPrivacy-
dc.subjectUnlinkability-
dc.titleSPICE - simple privacy-preserving identity-management for cloud environmenten_US
dc.typeConference_Paperen_US
dc.identifier.emailHe, Y: yjhe@cs.hku.hken_US
dc.identifier.emailHui, LCK: hui@cs.hku.hken_US
dc.identifier.emailYiu, SM: smyiu@cs.hku.hk-
dc.identifier.authorityHui, LCK=rp00120en_US
dc.identifier.authorityYiu, SM=rp00207en_US
dc.identifier.doi10.1007/978-3-642-31284-7_31-
dc.identifier.scopuseid_2-s2.0-84863469103-
dc.identifier.hkuros208237en_US
dc.identifier.volume7341-
dc.identifier.spage526en_US
dc.identifier.epage543en_US
dc.publisher.placeGermany-
dc.customcontrol.immutablesml 130926-

Export via OAI-PMH Interface in XML Formats


OR


Export to Other Non-XML Formats