Browse > Article

A Binding Mechanisms Using One-Time Attribute Certificates  

박종화 (세명대학교 소프트웨어학과)
이상하 (동서울대학 정보통신과)
김동규 (아주대학교 정보 및 컴퓨터공학부)
Abstract
An ID certificate is digitally signed by a certificate authority for authentication and an attribute certificate is digitally signed by an attribute certificate authority for authorization. In many applications in web, there should be a mechanism to bind attributes to proper identities. The dependencies between them should be maintained. So we analyzed some known binding methods, selective revocation methods and cryptographic binding methods. And we proposed a binding mechanism using one-time attribute certificates in order to solve their problems.
Keywords
Attribute Certificates; dependencies; Binding Mechanism; Authorization;
Citations & Related Records
연도 인용수 순위
  • Reference
1 Role-Based Access Control Models /
[ Ravi Sandhy;Edward Coyne;Hal Feinstein;Charles Youman ] / IEEE Computer
2 Binding Identities and Attributes Using Digitally Signed Certificates /
[ Joon S. Park;Ravi Sandhy ] / 16th Annual Computer Security Applications Conference (ACSAC)
3 Smart Certificate : Extending X.509 for Secure Attribute Services on the Web /
[ Joon S. Park;Ravi Sandhu ] / NISSC
4 An Internet Attribute Certificate Profile for Authorization /
[ S.Farrell;R.Housley ] / RFC 3281
5 Internet X.509 Public Key Infrastructure: Certificate and CRL Profile /
[ R.Housley;W.Ford;W.Polk;D.Solo ] / RFC 2459
6 Enforcing Dependencies between PKI certificates in ad-hoc Networks /
[ Himanshu Khurana;Virgil D. Gligor ] / IEEE International Conference on Telecommunications
7 Attribute Certification : On enabling technology for delegation and role-based controls in distributed environments /
[ J.Lim;M.Nystrom ] / Proceedings Fourth ACM Workshop on Role-Based Access Control