Privacy-Preserving trust negotiations

Authors:
E. Bertino;E. Ferrari;A. C. Squicciarini
Affiliations:
CERIAS and Computer Science Department, Purdue University, West Lafayette, IN;Dipartimento di Scienze della Cultura, Politiche e Informazione, Universitá degli Studi dell'Insubria, Como;Dipartimento di Informatica e Comunicazione, Universitá degli Studi di Milano, Milano
Venue:
PET'04 Proceedings of the 4th international conference on Privacy Enhancing Technologies
Year:
2004

Citing 13
Cited 4

User privacy issues regarding certificates and the TLS protocol: the design and implementation of the SPSL protocol

Proceedings of the 7th ACM conference on Computer and communications security
Regulating service access and information release on the Web

Proceedings of the 7th ACM conference on Computer and communications security
Rethinking Public Key Infrastructures and Digital Certificates: Building in Privacy

Rethinking Public Key Infrastructures and Digital Certificates: Building in Privacy
Negotiating Trust on the Web

IEEE Internet Computing
Protecting sensitive attributes in automated trust negotiation

Proceedings of the 2002 ACM workshop on Privacy in the Electronic Society
Relying Party Credentials Framework

CT-RSA 2001 Proceedings of the 2001 Conference on Topics in Cryptology: The Cryptographer's Track at RSA
Bit Commitment Using Pseudo-Randomness

CRYPTO '89 Proceedings of the 9th Annual International Cryptology Conference on Advances in Cryptology
An XPath-based preference language for P3P

WWW '03 Proceedings of the 12th international conference on World Wide Web
X -TNL: An XML-based Language for Trust Negotiations

POLICY '03 Proceedings of the 4th IEEE International Workshop on Policies for Distributed Systems and Networks
A Unified Scheme for Resource Protection in Automated Trust Negotiation

SP '03 Proceedings of the 2003 IEEE Symposium on Security and Privacy
Access Control Meets Public Key Infrastructure, Or: Assigning Roles to Strangers

SP '00 Proceedings of the 2000 IEEE Symposium on Security and Privacy
Trust-X: A Peer-to-Peer Framework for Trust Establishment

IEEE Transactions on Knowledge and Data Engineering
Protecting privacy during on-line trust negotiation

PET'02 Proceedings of the 2nd international conference on Privacy enhancing technologies

Achieving Privacy in Trust Negotiations with an Ontology-Based Approach

IEEE Transactions on Dependable and Secure Computing
Preventing unofficial information propagation

ICICS'07 Proceedings of the 9th international conference on Information and communications security
A new approach to hide policy for automated trust negotiation

IWSEC'06 Proceedings of the 1st international conference on Security
Anonymity preserving techniques in trust negotiations

PET'05 Proceedings of the 5th international conference on Privacy Enhancing Technologies

Quantified Score

Hi-index	0.00

Visualization

Abstract

Trust negotiation is a promising approach for establishing trust in open systems, where sensitive interactions may often occur between entities with no prior knowledge of each other. Although several proposals today exist of systems for the management of trust negotiations none of them addresses in a comprehensive way the problem of privacy preservation. Privacy is today one of the major concerns of users exchanging information through the Web and thus we believe that trust negotiation systems must effectively address privacy issues to be widely acceptable. For these reasons, in this paper we investigate privacy in the context of trust negotiations. More precisely, we propose a set of privacy preserving features to be included in any trust negotiation system, such as the support for the P3P standard, as well as different formats to encode credentials.