On secure and pseudonymous client-relationships with multiple servers

Authors:
Daniel Bleichenbacher;Eran Gabber;Phillip B. Gibbons;Yossi Matias;Alain Mayer
Affiliations:
Bell Laboratories, Lucent Technologies, Murray Hill, NJ;Bell Laboratories, Lucent Technologies, Murray Hill, NJ;Bell Laboratories, Lucent Technologies, Murray Hill, NJ;Computer Science Dept., Tel-Aviv University, Tel-Aviv, Israel and Bell Laboratories, Lucent Technologies, Murray Hill, NJ;Bell Laboratories, Lucent Technologies, Murray Hill, NJ
Venue:
WOEC'98 Proceedings of the 3rd conference on USENIX Workshop on Electronic Commerce - Volume 3
Year:
1998

Citing 15
Cited 3

Security without identification: transaction systems to make big brother obsolete

Communications of the ACM
Networks without user observability—design options

Proc. of a workshop on the theory and application of cryptographic techniques on Advances in cryptology---EUROCRYPT '85
Crowds: anonymity for Web transactions

ACM Transactions on Information and System Security (TISSEC)
Untraceable electronic mail, return addresses, and digital pseudonyms

Communications of the ACM
The Security of Cipher Block Chaining

CRYPTO '94 Proceedings of the 14th Annual International Cryptology Conference on Advances in Cryptology
MDx-MAC and Building Fast MACs from Hash Functions

CRYPTO '95 Proceedings of the 15th Annual International Cryptology Conference on Advances in Cryptology
How to Make Personalized Web Browising Simple, Secure, and Anonymous

FC '97 Proceedings of the First International Conference on Financial Cryptography
The Block Cipher Square

FSE '97 Proceedings of the 4th International Workshop on Fast Software Encryption
Privacy-enhancing technologies for the Internet

COMPCON '97 Proceedings of the 42nd IEEE International Computer Conference
Mixing Email with Babel

SNDSS '96 Proceedings of the 1996 Symposium on Network and Distributed System Security (SNDSS '96)
Blocking Java Applets at the Firewall

SNDSS '97 Proceedings of the 1997 Symposium on Network and Distributed System Security
Anonymous Connections and Onion Routing

SP '97 Proceedings of the 1997 IEEE Symposium on Security and Privacy
Lightweight security primitives for E-Commerce

USITS'97 Proceedings of the USENIX Symposium on Internet Technologies and Systems on USENIX Symposium on Internet Technologies and Systems
Going beyond the sandbox: an overview of the new security architecture in the javaTM development Kit 1.2

USITS'97 Proceedings of the USENIX Symposium on Internet Technologies and Systems on USENIX Symposium on Internet Technologies and Systems
Security of web browser scripting languages: vulnerabilities, attacks, and remedies

SSYM'98 Proceedings of the 7th conference on USENIX Security Symposium - Volume 7

Onion routing

Communications of the ACM
Consistent, yet anonymous, Web access with LPWA

Communications of the ACM
A Privacy-Enhancing e-Business Model Based on Infomediaries

MMM-ACNS '01 Proceedings of the International Workshop on Information Assurance in Computer Networks: Methods, Models, and Architectures for Network Security

Quantified Score

Hi-index	0.03

Visualization

Abstract

This paper introduces a cryptographic engine, Janus, that assists clients in establishing and maintaining secure and pseudonymous relationships with multiple servers. The setting is such that clients reside on a particular subnet (e.g., corporate intranet, ISP) and the servers reside anywhere on the Internet. The Janus engine allows for each client-server relationship to use either weak or strong authentication on each interaction. At the same time, each interaction preserves privacy by neither revealing a client's true identity ("modulo" the subnet) nor the set of servers with which a particular client interacts. Furthermore, clients do not need any secure long-term memory, enabling scalability and mobility. The interaction model extends to allow servers to send data back to clients via e-mail at a later date. Hence, our results complement the functionality of current network anonymity tools and remailers