Abstract
A scheme for ensuring access rights untransferability in a client-server scenario with a central authority and where servers hold no access information about clients is presented in this paper; an extension to a multi- authority scenario is conceivable, since servers are also authority independent. Usurping a right with no information at all about other clients is for a client as hard as the discrete logarithm, and rights sharing between clients does not compromise their non-shared rights as long as RSA confidentiality holds. Transferring rights between clients without the authority’s contribution cannot be done unless RSA confidentiality is broken; however, only control on partial rights transfers is addressed in this paper, which does not deal with total identity transfer or alienation.
Chapter PDF
References
Chaum, D., Evertse, J.-H., and Van de Graaf, J. 1988. An Improved Procotol for Demonstrating Possession of Discrete Logarithms and Some Generalizations. Proceedings of Eurocrypt’87, Springer-Verlag, pp. 127–141.
Domingo-Ferrer, J. 1991. Distributed User Identification by Zero-Knowledge Access Rights Proving. Information Processing Letters, vol. 40, pp. 235–239.
Graham, G. S., and Denning, P. J. 1972. Protection: Principles and Practices. Proceedings of the AFIPS Spring Joint Computer Conference, pp. 417–429.
Harrison, M. A., Ruzzo, W. L., and Ullman, J. D. 1976. Protection in Operating Systems. Communications of the ACM, vol. 19, pp. 461–471.
Linn, J. 1990. Practical Authentication for Distributed Computing. Proc. IEEE Symposium on Research in Security and Privacy, IEEE CS Press, pp. 31–40.
Rivest, R. L., Shamir, A., and Adleman, L. 1978. A Method for Obtaining Digital Signatures and Public-Key Cryptosystems. Communications of the ACM, vol. 21, pp. 120–126.
Woo, T. Y. C, and Lam, S. S. 1992. Authentication for Distributed Systems. IEEE Computer, vol. 25, pp. 39–52.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 1994 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Domingo-Ferrer, J. (1994). Untransferable Rights in a Client-Independent Server Environment. In: Helleseth, T. (eds) Advances in Cryptology — EUROCRYPT ’93. EUROCRYPT 1993. Lecture Notes in Computer Science, vol 765. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-48285-7_22
Download citation
DOI: https://doi.org/10.1007/3-540-48285-7_22
Published:
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-57600-6
Online ISBN: 978-3-540-48285-7
eBook Packages: Springer Book Archive