TY - GEN
T1 - Minimal credential disclosure in trust negotiations
AU - Paci, Federica
AU - Bauer, David
AU - Bertino, Elisa
AU - Blough, Douglas M.
AU - Squicciarini, Anna C.
PY - 2008
Y1 - 2008
N2 - The secure release of identity attributes is a key enabler for electronic business interactions. Integrity and confidentiality of identity attributes are two key requirements in such context. Users should also have the maximum control possible over the release of their identity attributes and should state under which conditions these attributes can be disclosed. Moreover, users should disclose only the identity attributes that are actually required for the transactions at hand. In this paper we present an approach for the controlled release of identity attributes that addresses such requirements. The approach is based on the integration of trust negotiation and minimal credential disclosure techniques. Trust negotiation supports selective and incremental disclosure of identity attributes, while minimal credential disclosure guarantees that only the attributes necessary to complete the on line interactions are disclosed.
AB - The secure release of identity attributes is a key enabler for electronic business interactions. Integrity and confidentiality of identity attributes are two key requirements in such context. Users should also have the maximum control possible over the release of their identity attributes and should state under which conditions these attributes can be disclosed. Moreover, users should disclose only the identity attributes that are actually required for the transactions at hand. In this paper we present an approach for the controlled release of identity attributes that addresses such requirements. The approach is based on the integration of trust negotiation and minimal credential disclosure techniques. Trust negotiation supports selective and incremental disclosure of identity attributes, while minimal credential disclosure guarantees that only the attributes necessary to complete the on line interactions are disclosed.
UR - http://www.scopus.com/inward/record.url?scp=70349246369&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=70349246369&partnerID=8YFLogxK
U2 - 10.1145/1456424.1456439
DO - 10.1145/1456424.1456439
M3 - Conference contribution
AN - SCOPUS:70349246369
SN - 9781605582948
T3 - Proceedings of the ACM Conference on Computer and Communications Security
SP - 89
EP - 96
BT - Proceedings of the 4th ACM Workshop on Digital Identity Management, DIM'08,Co-located with the 15th ACM Computer and Communications Security Conference, CCS'08
T2 - 4th ACM Workshop on Digital Identity Management, DIM'08, Co-located with the 15th ACM Computer and Communications Security Conference, CCS'08
Y2 - 27 October 2008 through 31 October 2008
ER -