Relying Party Credentials Framework

Authors:
Amir Herzberg;Yosi Mass
Affiliations:
Bar-Ilan University amir@herzberg.name;IBM Haifa Research Lab yosimass@il.ibm.com
Venue:
Electronic Commerce Research
Year:
2004

Citing 10
Cited 2

The official PGP user's guide

The official PGP user's guide
PICS: Internet access controls without censorship

Communications of the ACM
Path independence for authentication in large-scale systems

Proceedings of the 4th ACM conference on Computer and communications security
The nature of a useable PKI

Computer Networks: The International Journal of Computer and Telecommunications Networking - Special issue on computer network security
Rethinking Public Key Infrastructures and Digital Certificates: Building in Privacy

Rethinking Public Key Infrastructures and Digital Certificates: Building in Privacy
Relying Party Credentials Framework

CT-RSA 2001 Proceedings of the 2001 Conference on Topics in Cryptology: The Cryptographer's Track at RSA
Supporting Trust in Virtual Communities

HICSS '00 Proceedings of the 33rd Hawaii International Conference on System Sciences-Volume 6 - Volume 6
Decentralized Trust Management

SP '96 Proceedings of the 1996 IEEE Symposium on Security and Privacy
Access Control Meets Public Key Infrastructure, Or: Assigning Roles to Strangers

SP '00 Proceedings of the 2000 IEEE Symposium on Security and Privacy
Reasoning about public-key certification: on bindings between entities and public keys

IEEE Journal on Selected Areas in Communications

Trust-based protection of software component users and designers

iTrust'03 Proceedings of the 1st international conference on Trust management
Mediator-free secure policy interoperation of exclusively-trusted multiple domains

ISPEC'08 Proceedings of the 4th international conference on Information security practice and experience

Quantified Score

Hi-index	0.00

Visualization

Abstract

We present architecture for a relying-party to manage credentials, and in particular to map different credentials into common format and semantics. This will allow use of simple, widely available credentials as well as more advanced credentials such as public key certificates, attribute certificates and ‘negative’ credentials (which result in reduced trust) such as certificate revocation lists (CRL). The core of the architecture is a Credential Manager who collects credentials, and maps them to common format and semantics.