Ecole d'ingénieur et centre de recherche en Sciences du numérique

Inter-domain authorization and delegation for business-to-business e-commerce

Michiardi, Pietro;Molva, Refik

e-2001: eBusiness and eWork Conference - 17-19 October 2001, Venice, Italy

Security exposures are viewed as a major impediment to the growth of electronic commerce over Internet. The main requirement of inter-enterprise communications is the verification of the role granted by a company to each individual instead of the authentication of individuals based on their universal names as provided by X509 digital ID?s. We depict in this paper an original mechanism for role-based authorization in inter-enterprise business communications. This mechanism is based on a secure extension of X509 ID certificates using SPKI authorization certificates. The mechanism was transparently integrated into existing application and network security packages. This platform was developed as part of an R&D project supported by the TEN TELECOM program of the European Commission.

Document Bibtex

Titre:Inter-domain authorization and delegation for business-to-business e-commerce
Département:Sécurité numérique
Eurecom ref:755
Bibtex: @inproceedings{EURECOM+755, year = {2001}, title = {{I}nter-domain authorization and delegation for business-to-business e-commerce}, author = {{M}ichiardi, {P}ietro and {M}olva, {R}efik}, booktitle = {e-2001: e{B}usiness and e{W}ork {C}onference - 17-19 {O}ctober 2001, {V}enice, {I}taly}, address = {{V}enice, {ITALIE}}, month = {10}, url = {} }
Voir aussi: