HAL will be down for maintenance from Friday, June 10 at 4pm through Monday, June 13 at 9am. More information
Skip to Main content Skip to Navigation
Conference papers

Enabling NAME-Based Security and Trust

Abstract : An integral component of almost any security and trust system is endpoint identity verification. The predominant identification primitive, used in most contemporary systems, is the digital certificate. A digital certificate binds a NAME (i.e., an “official way to refer to an entity”) to a cryptographic public key, which is then used for the NAME verification. In this paper, we propose a NAME verification system that does not rely on digital certificates. Our solution uses Hierarchical Identity Based Encryption (HIBE) to allow fine-grained NAME verification, trust delegation and attribute-based access control. For the delivery of the necessary system parameters we propose an approach that leverages the NAME registration and resolution systems, eliminating the need for a Public-Key Infrastructure. As proof of concept, we implement and evaluate our system using the Lewko-Waters HIBE scheme and DANE-DNSSEC.
Document type :
Conference papers
Complete list of metadata

Cited literature [14 references]  Display  Hide  Download

https://hal.inria.fr/hal-01416207
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Wednesday, December 14, 2016 - 11:04:07 AM
Last modification on : Wednesday, December 14, 2016 - 11:15:46 AM
Long-term archiving on: : Wednesday, March 15, 2017 - 12:56:25 PM

File

337890_1_En_4_Chapter.pdf
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Nikos Fotiou, George Polyzos. Enabling NAME-Based Security and Trust. 9th IFIP International Conference on Trust Management (TM), May 2015, Hamburg, Germany. pp.47-59, ⟨10.1007/978-3-319-18491-3_4⟩. ⟨hal-01416207⟩

Share

Metrics

Record views

83

Files downloads

74