Enabling NAME-Based Security and Trust

Abstract : An integral component of almost any security and trust system is endpoint identity verification. The predominant identification primitive, used in most contemporary systems, is the digital certificate. A digital certificate binds a NAME (i.e., an “official way to refer to an entity”) to a cryptographic public key, which is then used for the NAME verification. In this paper, we propose a NAME verification system that does not rely on digital certificates. Our solution uses Hierarchical Identity Based Encryption (HIBE) to allow fine-grained NAME verification, trust delegation and attribute-based access control. For the delivery of the necessary system parameters we propose an approach that leverages the NAME registration and resolution systems, eliminating the need for a Public-Key Infrastructure. As proof of concept, we implement and evaluate our system using the Lewko-Waters HIBE scheme and DANE-DNSSEC.
Type de document :
Communication dans un congrès
Christian Damsgaard Jensen; Stephen Marsh; Theo Dimitrakos; Yuko Murayama. 9th IFIP International Conference on Trust Management (TM), May 2015, Hamburg, Germany. IFIP Advances in Information and Communication Technology, AICT-454, pp.47-59, 2015, Trust Management IX. 〈10.1007/978-3-319-18491-3_4〉
Liste complète des métadonnées

Littérature citée [14 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01416207
Contributeur : Hal Ifip <>
Soumis le : mercredi 14 décembre 2016 - 11:04:07
Dernière modification le : mercredi 14 décembre 2016 - 11:15:46
Document(s) archivé(s) le : mercredi 15 mars 2017 - 12:56:25

Fichier

337890_1_En_4_Chapter.pdf
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Nikos Fotiou, George Polyzos. Enabling NAME-Based Security and Trust. Christian Damsgaard Jensen; Stephen Marsh; Theo Dimitrakos; Yuko Murayama. 9th IFIP International Conference on Trust Management (TM), May 2015, Hamburg, Germany. IFIP Advances in Information and Communication Technology, AICT-454, pp.47-59, 2015, Trust Management IX. 〈10.1007/978-3-319-18491-3_4〉. 〈hal-01416207〉

Partager

Métriques

Consultations de la notice

48

Téléchargements de fichiers

10