Anonymity Preserving Techniques in Trust Negotiations
Author
ndrakshi Ray , Elisa Bertino , Anna C. Squicciarini , and Elena Ferrari
Tech report number
CERIAS TR 2005-94
Abstract
Abstract. Trust negotiation between two subjects require each one proving its
properties to the other. Each subject specifies disclosure policies stating the types
of credentials and attributes the counterpart has to provide to obtain a given re-
source. The counterpart, in response, provides a disclosure set containing the nec-
essary credentials and attributes. If the counterpart wants to remain anonymous,
its disclosure sets should not contain identity revealing information. In this pa-
per, we propose anonymization techniques using which a subject can transform
its disclosure set into an anonymous one. Anonymization transforms a disclosure
set into an alternative anonymous one whose information content is different from
the original one. This alternative disclosure set may no longer satisfy the original
disclosure policy causing the trust negotiation to fail. To address this problem, we
propose that trust negotiation requirements be expressed at a more abstract level
using property-based policies. Property-based policies state the high-level prop-
erties that a counterpart has to provide to obtain a resource. A property-based
policy can be implemented by a number of disclosure policies. Although these
disclosure policies implement the same high-level property-based policy, they re-
quire different sets of credentials. Allowing the subject to satisfy any policy from
the set of disclosure policies, increases not only the chances of a trust negotiation
succeeding but also the probability of ensuring anonymity.
Key alpha
Anonymity Preserving Techniques in Trust Negotiations
Publisher
Springer-Verlag Berlin Heidelberg
School
Colorado State Universty, Purdue University and Universit ́a degli Studi dell
Publication Date
2005-01-01
Copyright
Springer-Verlag Berlin Heidelberg 2006