Skip to main content
SpringerLink
Log in
Book cover

International Conference on Information Security Practice and Experience

ISPEC 2010: Information Security, Practice and Experience pp 251–263Cite as

Privacy Preserving of Trust Management Credentials Based on Trusted Computing

  • Conference paper

  • 701 Accesses

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 6047))

Abstract

Privacy disclosure of forward direction credentials and backward direction credentials is an important security defect in existing trust management systems. In this paper, a novel distributed privacy preserving scheme for trust management credentials is proposed to solve this problem. Based on the trusted computing technology, the scheme provides the sealed protection for the credentials with privacy sensitive information and guarantees all the Deduced Composite Credential Constructing Units running in participant platforms untampered. In the process of collecting credentials, the deduced composite of multiple credentials replaces the single credential as the irreducible constituent to prevent the uncontrolled disclosure of privacy attributes. By modifying the traditional privacy preserving pattern, our scheme avoids the inadvertent disclosure of credential privacy attributes and provides a reliable solution for many privacy sensitive fields such as medical, business, and so on.

Supported by the National Natural Science Foundation of China under Grant No. 60803129; The Next Generation Internet Business and Equipment Industrialization Program under Grant No. CNGI-09-03-03.

This is a preview of subscription content, log in via an institution.

Chapter
USD   29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD   39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD   54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Clarke, D., Elien, J., Ellison, C., Fredette, M., Morcos, A., Rivest, R.: Certificate Chain Discovery in SPKI/SDSI. Journal of Computer Security 9(4), 285–322 (2001)

    Google Scholar 

  2. Ellison, C., Frantz, B., Lampson, B., Rivest, R., Thomas, B., Ylonen, T.: SPKI certificate theory. IETF RFC 2693 (1999)

    Google Scholar 

  3. Li, N.H.: Delegation Logic: A Logic-based Approach to Distributed Authorization. Ph.D. thesis, New York University (2000)

    Google Scholar 

  4. Li, N.H., Grosof, B.N., Feigenbaum, J.: A Practically Implementable and Tractable Delegation Logic. In: Proceedings of the 2000 IEEE Symposium on Security and Privacy, pp. 27–42. IEEE Computer Society Press, New York (2000)

    Google Scholar 

  5. Li, N.H., Winsborough, W.H., Mitchell, J.C.: Distributed Credential Chain Discovery in Trust Management. Journal of Computer Security 11(1), 35–86 (2003)

    Google Scholar 

  6. Li, N.H., Mitchell, J.C., Winsborough, W.H.: Design of a Role-based Trust-management Framework. In: Proceedings of the 2002 IEEE Symposium on Security and Privacy, pp. 114–130. IEEE Computer Society Press, New York (2002)

    Google Scholar 

  7. Trusted Computing Group: TPM Main Specification. Version 1.2, Revision 103 (2007), http://www.trustedcomputinggroup.org

  8. Bonatti, P., Samarati, P.: Regulating Service Access and Information Release on the Web. In: Proceedings of the 7th ACM Conference on Computer and Communications Security, pp. 134–143. ACM Press, New York (2000)

    Chapter  Google Scholar 

  9. Yu, T., Winslett, M., Seamons, K.E.: Interoperable Strategies in Automated Trust Negotiation. In: Proceedings of the 8th ACM Conference on Computer and Communications Security, pp. 146–155. ACM Press, New York (2001)

    Chapter  Google Scholar 

  10. Seamons, K.E., Winslett, M., Yu, T., Yu, L., Jarvis, R.: Protecting Privacy during On-line Trust Negotiation. In: Dingledine, R., Syverson, P.F. (eds.) PET 2002. LNCS, vol. 2482, pp. 129–143. Springer, Heidelberg (2003)

    Chapter  Google Scholar 

  11. Yu, T.: Automated Trust Establishment in Open Systems. Ph.D. thesis, University of Illinois at Urbana-Champaign (2003)

    Google Scholar 

  12. Winsborough, W.H., Li, N.H.: Towards Practical Automated Trust Negotiation. In: Proceedings of the Third International Workshop on Policies for Distributed Systems and Networks, pp. 92–103. IEEE Computer Society Press, New York (2002)

    Chapter  Google Scholar 

  13. Winsborough, W.H., Li, N.H.: Protecting Sensitive Attributes in Automated Trust Negotiation. In: Proceedings of ACM Workshop on Privacy in the Electronic Society, pp. 41–51. ACM Press, New York (2002)

    Chapter  Google Scholar 

  14. Barham, P., Dragovic, B., Fraser, K., Hand, S., Harris, T., Ho, A., Neugebauer, R., Pratt, I., Warfield, A.: Xen and the Art of Virtualization. In: Proceedings of the 19th ACM Symposium on Operating Systems Principles, pp. 164–177. ACM Press, New York (2003)

    Chapter  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. State Key Laboratory of Information Security, Graduate University of Chinese Academy of Sciences, 100039, Beijing, China

    Bin Wu, Dengguo Feng & Meijiao Duan

  2. State Key Laboratory of Information Security, Institute of Software, Chinese Academy of Science, 100190, Beijing, China

    Dengguo Feng

  3. National Engineering and Research Centre of Information Security, 100190, Beijing, China

    Bin Wu & Meijiao Duan

Authors
  1. Bin Wu
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Dengguo Feng
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Meijiao Duan
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Department of Information Security Engineering, Soonchunhyang University, 646 Eupnae-ri, Shinchang-myun, Asan-si, 336-745, Chungcheongnam-do, Korea

    Jin Kwak

  2. School of Information Systems, Singapore Management University, 469 Bukit Timah Road, 259756, Singapore

    Robert H. Deng

  3. Internet and Security Policy Division, Korea Internet and Security Agency, Daedong B/D, Garak-dong 79-3, Songpa-gu, 138-950, Seoul, Korea

    Yoojae Won

  4. School of Computer Science, University of Birmingham, B15 2TT, Birmingham, UK

    Guilin Wang

Rights and permissions

Reprints and permissions

Copyright information

© 2010 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Wu, B., Feng, D., Duan, M. (2010). Privacy Preserving of Trust Management Credentials Based on Trusted Computing. In: Kwak, J., Deng, R.H., Won, Y., Wang, G. (eds) Information Security, Practice and Experience. ISPEC 2010. Lecture Notes in Computer Science, vol 6047. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-12827-1_19

Download citation

  • DOI: https://doi.org/10.1007/978-3-642-12827-1_19

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-642-12826-4

  • Online ISBN: 978-3-642-12827-1

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation