 |
Trust Management IX 9th IFIP WG 11.11 International Conference, IFIP TM 2015, Hamburg, Germany, May 26-28, 2015 |
 |
Conference papers
Enabling NAME-Based Security and Trust
Abstract : An integral component of almost any security and trust system is endpoint identity verification. The predominant identification primitive, used in most contemporary systems, is the digital certificate. A digital certificate binds a NAME (i.e., an “official way to refer to an entity”) to a cryptographic public key, which is then used for the NAME verification. In this paper, we propose a NAME verification system that does not rely on digital certificates. Our solution uses Hierarchical Identity Based Encryption (HIBE) to allow fine-grained NAME verification, trust delegation and attribute-based access control. For the delivery of the necessary system parameters we propose an approach that leverages the NAME registration and resolution systems, eliminating the need for a Public-Key Infrastructure. As proof of concept, we implement and evaluate our system using the Lewko-Waters HIBE scheme and DANE-DNSSEC.
Cited literature [14 references]
https://hal.inria.fr/hal-01416207
Contributor : Hal Ifip <>
Submitted on : Wednesday, December 14, 2016 - 11:04:07 AM
Last modification on : Wednesday, December 14, 2016 - 11:15:46 AM
Document(s) archivé(s) le : Wednesday, March 15, 2017 - 12:56:25 PM
Contributor : Hal Ifip <>
Submitted on : Wednesday, December 14, 2016 - 11:04:07 AM
Last modification on : Wednesday, December 14, 2016 - 11:15:46 AM
Document(s) archivé(s) le : Wednesday, March 15, 2017 - 12:56:25 PM
File
337890_1_En_4_Chapter.pdf
Files produced by the author(s)
Licence
Distributed under a Creative Commons Attribution 4.0 International License
