File Download
There are no files associated with this item.
Links for fulltext
(May Require Subscription)
- Publisher Website: 10.1007/978-3-642-31284-7_31
- Scopus: eid_2-s2.0-84863469103
- Find via
Supplementary
-
Citations:
- Scopus: 0
- Appears in Collections:
Conference Paper: SPICE - simple privacy-preserving identity-management for cloud environment
Title | SPICE - simple privacy-preserving identity-management for cloud environment |
---|---|
Authors | |
Keywords | Cloud Computing Delegation Digital Identity Management Interoperability Privacy Unlinkability |
Issue Date | 2012 |
Publisher | Springer Verlag. The Journal's web site is located at http://springerlink.com/content/105633/ |
Citation | The 10th International Conference on Applied Cryptography and Network Security, (ACNS 2012), Singapore, 26-29 June 2012. In Lecture Notes in Computer Science, 2012, v. 7341, p. 526-543 How to Cite? |
Abstract | Identity security and privacy have been regarded as one of the top seven cloud security threats. There are a few identity management solutions proposed recently trying to tackle these problems. However, none of these can satisfy all desirable properties. In particular, unlinkability ensures that none of the cloud service providers (CSPs), even if they collude, can link the transactions of the same user. On the other hand, delegatable authentication is unique to the cloud platform, in which several CSPs may join together to provide a packaged service, with one of them being the source provider which interacts with the clients and performs authentication while the others will be transparent to the clients. Note that CSPs may have different authentication mechanisms that rely on different attributes. Moreover, each CSP is limited to see only the attributes that it concerns.
This paper presents SPICE – the first digital identity management system that can satisfy these properties in addition to other desirable properties. The novelty of our scheme stems from combining and exploiting two group signatures so that we can randomize the signature to make the same signature look different for multiple uses of it and hide some parts of the messages which are not the concerns of the CSP. Our scheme is quite applicable to cloud systems due to its simplicity and efficiency. |
Description | LNCS v. 7341 is proceedings of 10th ACNS 2012 |
Persistent Identifier | http://hdl.handle.net/10722/164917 |
ISBN | |
ISSN | 2023 SCImago Journal Rankings: 0.606 |
DC Field | Value | Language |
---|---|---|
dc.contributor.author | Chow, SSM | en_US |
dc.contributor.author | He, Y | en_US |
dc.contributor.author | Hui, LCK | en_US |
dc.contributor.author | Yiu, SM | en_US |
dc.date.accessioned | 2012-09-20T08:12:23Z | - |
dc.date.available | 2012-09-20T08:12:23Z | - |
dc.date.issued | 2012 | en_US |
dc.identifier.citation | The 10th International Conference on Applied Cryptography and Network Security, (ACNS 2012), Singapore, 26-29 June 2012. In Lecture Notes in Computer Science, 2012, v. 7341, p. 526-543 | en_US |
dc.identifier.isbn | 978-364231283-0 | - |
dc.identifier.issn | 0302-9743 | - |
dc.identifier.uri | http://hdl.handle.net/10722/164917 | - |
dc.description | LNCS v. 7341 is proceedings of 10th ACNS 2012 | - |
dc.description.abstract | Identity security and privacy have been regarded as one of the top seven cloud security threats. There are a few identity management solutions proposed recently trying to tackle these problems. However, none of these can satisfy all desirable properties. In particular, unlinkability ensures that none of the cloud service providers (CSPs), even if they collude, can link the transactions of the same user. On the other hand, delegatable authentication is unique to the cloud platform, in which several CSPs may join together to provide a packaged service, with one of them being the source provider which interacts with the clients and performs authentication while the others will be transparent to the clients. Note that CSPs may have different authentication mechanisms that rely on different attributes. Moreover, each CSP is limited to see only the attributes that it concerns. This paper presents SPICE – the first digital identity management system that can satisfy these properties in addition to other desirable properties. The novelty of our scheme stems from combining and exploiting two group signatures so that we can randomize the signature to make the same signature look different for multiple uses of it and hide some parts of the messages which are not the concerns of the CSP. Our scheme is quite applicable to cloud systems due to its simplicity and efficiency. | - |
dc.language | eng | en_US |
dc.publisher | Springer Verlag. The Journal's web site is located at http://springerlink.com/content/105633/ | - |
dc.relation.ispartof | Lecture Notes in Computer Science | en_US |
dc.rights | The original publication is available at www.springerlink.com | - |
dc.subject | Cloud Computing | - |
dc.subject | Delegation | - |
dc.subject | Digital Identity Management | - |
dc.subject | Interoperability | - |
dc.subject | Privacy | - |
dc.subject | Unlinkability | - |
dc.title | SPICE - simple privacy-preserving identity-management for cloud environment | en_US |
dc.type | Conference_Paper | en_US |
dc.identifier.email | He, Y: yjhe@cs.hku.hk | en_US |
dc.identifier.email | Hui, LCK: hui@cs.hku.hk | en_US |
dc.identifier.email | Yiu, SM: smyiu@cs.hku.hk | - |
dc.identifier.authority | Hui, LCK=rp00120 | en_US |
dc.identifier.authority | Yiu, SM=rp00207 | en_US |
dc.identifier.doi | 10.1007/978-3-642-31284-7_31 | - |
dc.identifier.scopus | eid_2-s2.0-84863469103 | - |
dc.identifier.hkuros | 208237 | en_US |
dc.identifier.volume | 7341 | - |
dc.identifier.spage | 526 | en_US |
dc.identifier.epage | 543 | en_US |
dc.publisher.place | Germany | - |
dc.customcontrol.immutable | sml 130926 | - |
dc.identifier.issnl | 0302-9743 | - |