Ecole d'ingénieur et centre de recherche en télécommunications

One-time capabilities for authorizations without trust

Bussard, Laurent;Molva, Refik

PERCOM 2004, 2nd IEEE International conference on Pervasive Computing and Communications Security, March 14-17, 2004, Orlando, USA

This paper introduces and solves a security problem of pervasive computing: how to define authorizations for offline interactions when trust relationships among entities do not exist. A new type of capability is proposed to ensure that user interactions are not traceable and that misbehaving users automatically lose some money they deposited as a guarantee of their loyalty. mechanism when there is no trust relationship. Protocols ensure that service providers can only cash the deposit in case of misbehavior and that users are not traceable. As stated in requirement 1, the verification of users’ rights can be performed without any communication with a third party system.

Document Doi Bibtex

Type:Conférence
Langue:English
Ville:Orlando
Pays:ÉTATS-UNIS
Date:
Département:Réseaux et Sécurité
Eurecom ref:1286
Copyright: © 2004 IEEE. Personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution to servers or lists, or to reuse any copyrighted component of this work in other works must be obtained from the IEEE.
Bibtex: @inproceedings{EURECOM+1286, doi = {http://dx.doi.org/10.1109/PERCOM.2004.1276873}, year = {2004}, title = {{O}ne-time capabilities for authorizations without trust}, author = {{B}ussard, {L}aurent and {M}olva, {R}efik}, booktitle = {{PERCOM} 2004, 2nd {IEEE} {I}nternational conference on {P}ervasive {C}omputing and {C}ommunications {S}ecurity, {M}arch 14-17, 2004, {O}rlando, {USA}}, address = {{O}rlando, {\'{E}}{TATS}-{UNIS}}, month = {03}, url = {http://www.eurecom.fr/publication/1286} }
Voir aussi: