A Secure Anonymous Authorisation Architecture for E-Commerce

Hong Kong, China March 29-April 01

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/EEE.2005.16

2005 IEEE International Conference on ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Wai-Ki Richard Au Articles by Kim-Kwang Raymond Choo Articles by Mark Looi

	ASCII Text	x
	Wai-Ki Richard Au, Kim-Kwang Raymond Choo, Mark Looi, "A Secure Anonymous Authorisation Architecture for E-Commerce," e-Technology, e-Commerce, and e-Services, IEEE International Conference on, pp. 106-111, 2005 IEEE International Conference on e-Technology, e-Commerce and e-Service (EEE'05), 2005.

	BibTex	x
	@article{ 10.1109/EEE.2005.16, author = {Wai-Ki Richard Au and Kim-Kwang Raymond Choo and Mark Looi}, title = {A Secure Anonymous Authorisation Architecture for E-Commerce}, journal ={e-Technology, e-Commerce, and e-Services, IEEE International Conference on}, volume = {0}, year = {2005}, isbn = {0-7695-2274-2}, pages = {106-111}, doi = {http://doi.ieeecomputersociety.org/10.1109/EEE.2005.16}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - e-Technology, e-Commerce, and e-Services, IEEE International Conference on TI - A Secure Anonymous Authorisation Architecture for E-Commerce SN - 0-7695-2274-2 SP106 EP111 A1 - Wai-Ki Richard Au, A1 - Kim-Kwang Raymond Choo, A1 - Mark Looi, PY - 2005 KW - null VL - 0 JA - e-Technology, e-Commerce, and e-Services, IEEE International Conference on ER -

Wai-Ki Richard Au, Queensland University of Technology, Australia

Kim-Kwang Raymond Choo, Queensland University of Technology, Australia

Mark Looi, Queensland University of Technology, Australia

We propose a new authorisation architecture based on the extension to the anonymous authorisation framework proposed by Au et al., whereby a new entity, trustee, and a new concept, Key Binding Certificate (KBC), are introduced. In the architecture, the trustee issues a KBC to certify the association between a registered user's unique identity and the user's One-Task Authorisation Key (OTAK) where OTAK is used as the user's unique identifier to preserve anonymity. More importantly, the trustee acts as an identity escrow agent to provide anonymity revocation in a well-regulated manner. Hence, any service provider is able to make authorisation decision based on the Anonymous Attribute Certificates (AACs) issued by referee servers to anonymous users with a high level of assurance. The trustee also empowers the notion of chained referral in situations where users are required to obtain AACs from various referee servers. An improved protocol is also proposed, accompanied by an outline of its security analysis.

Citation:

Wai-Ki Richard Au, Kim-Kwang Raymond Choo, Mark Looi, "A Secure Anonymous Authorisation Architecture for E-Commerce," eee, pp.106-111, 2005 IEEE International Conference on e-Technology, e-Commerce and e-Service (EEE'05), 2005

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.