Abstract
Privacy disclosure of forward direction credentials and backward direction credentials is an important security defect in existing trust management systems. In this paper, a novel distributed privacy preserving scheme for trust management credentials is proposed to solve this problem. Based on the trusted computing technology, the scheme provides the sealed protection for the credentials with privacy sensitive information and guarantees all the Deduced Composite Credential Constructing Units running in participant platforms untampered. In the process of collecting credentials, the deduced composite of multiple credentials replaces the single credential as the irreducible constituent to prevent the uncontrolled disclosure of privacy attributes. By modifying the traditional privacy preserving pattern, our scheme avoids the inadvertent disclosure of credential privacy attributes and provides a reliable solution for many privacy sensitive fields such as medical, business, and so on.
Supported by the National Natural Science Foundation of China under Grant No. 60803129; The Next Generation Internet Business and Equipment Industrialization Program under Grant No. CNGI-09-03-03.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
Clarke, D., Elien, J., Ellison, C., Fredette, M., Morcos, A., Rivest, R.: Certificate Chain Discovery in SPKI/SDSI. Journal of Computer Security 9(4), 285–322 (2001)
Ellison, C., Frantz, B., Lampson, B., Rivest, R., Thomas, B., Ylonen, T.: SPKI certificate theory. IETF RFC 2693 (1999)
Li, N.H.: Delegation Logic: A Logic-based Approach to Distributed Authorization. Ph.D. thesis, New York University (2000)
Li, N.H., Grosof, B.N., Feigenbaum, J.: A Practically Implementable and Tractable Delegation Logic. In: Proceedings of the 2000 IEEE Symposium on Security and Privacy, pp. 27–42. IEEE Computer Society Press, New York (2000)
Li, N.H., Winsborough, W.H., Mitchell, J.C.: Distributed Credential Chain Discovery in Trust Management. Journal of Computer Security 11(1), 35–86 (2003)
Li, N.H., Mitchell, J.C., Winsborough, W.H.: Design of a Role-based Trust-management Framework. In: Proceedings of the 2002 IEEE Symposium on Security and Privacy, pp. 114–130. IEEE Computer Society Press, New York (2002)
Trusted Computing Group: TPM Main Specification. Version 1.2, Revision 103 (2007), http://www.trustedcomputinggroup.org
Bonatti, P., Samarati, P.: Regulating Service Access and Information Release on the Web. In: Proceedings of the 7th ACM Conference on Computer and Communications Security, pp. 134–143. ACM Press, New York (2000)
Yu, T., Winslett, M., Seamons, K.E.: Interoperable Strategies in Automated Trust Negotiation. In: Proceedings of the 8th ACM Conference on Computer and Communications Security, pp. 146–155. ACM Press, New York (2001)
Seamons, K.E., Winslett, M., Yu, T., Yu, L., Jarvis, R.: Protecting Privacy during On-line Trust Negotiation. In: Dingledine, R., Syverson, P.F. (eds.) PET 2002. LNCS, vol. 2482, pp. 129–143. Springer, Heidelberg (2003)
Yu, T.: Automated Trust Establishment in Open Systems. Ph.D. thesis, University of Illinois at Urbana-Champaign (2003)
Winsborough, W.H., Li, N.H.: Towards Practical Automated Trust Negotiation. In: Proceedings of the Third International Workshop on Policies for Distributed Systems and Networks, pp. 92–103. IEEE Computer Society Press, New York (2002)
Winsborough, W.H., Li, N.H.: Protecting Sensitive Attributes in Automated Trust Negotiation. In: Proceedings of ACM Workshop on Privacy in the Electronic Society, pp. 41–51. ACM Press, New York (2002)
Barham, P., Dragovic, B., Fraser, K., Hand, S., Harris, T., Ho, A., Neugebauer, R., Pratt, I., Warfield, A.: Xen and the Art of Virtualization. In: Proceedings of the 19th ACM Symposium on Operating Systems Principles, pp. 164–177. ACM Press, New York (2003)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2010 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Wu, B., Feng, D., Duan, M. (2010). Privacy Preserving of Trust Management Credentials Based on Trusted Computing. In: Kwak, J., Deng, R.H., Won, Y., Wang, G. (eds) Information Security, Practice and Experience. ISPEC 2010. Lecture Notes in Computer Science, vol 6047. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-12827-1_19
Download citation
DOI: https://doi.org/10.1007/978-3-642-12827-1_19
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-12826-4
Online ISBN: 978-3-642-12827-1
eBook Packages: Computer ScienceComputer Science (R0)