id: 02090935
dt: a
an: 02090935
au: Seamons, Kent E.; Winslett, Marianne; Yu, Ting; Yu, Lina; Jarvis, Ryan
ti: Protecting privacy during on-line trust negotiation.
so: Dingledine, Roger (ed.) et al., Privacy enhancing technologies. Second
    international workshop, PET 2002, San Francisco, CA, USA, April
    14‒15, 2002. Revised papers. Berlin: Springer (ISBN
    3-540-00565-X/pbk). Lect. Notes Comput. Sci. 2482, 129-143 (2003).
py: 2003
pu: Berlin: Springer
la: EN
cc: 
ut: 
ci: 
li: http://link.springer.de/link/service/series/0558/bibs/2482/24820129.htm
ab: Summary: The dramatic growth of services and information on the Internet is
    accompanied by growing concerns over privacy. Trust negotiation is a
    new approach to establishing trust between strangers on the Internet
    through the bilateral exchange of digital credentials, the on-line
    analogue to the paper credentials people carry in their wallets today.
    When a credential contains sensitive information, its disclosure is
    governed by an access control policy that specifies credentials that
    must be received before the sensitive credential is disclosed. This
    paper identifies the privacy vulnerabilities present in on-line trust
    negotiation and the approaches that can be taken to eliminate or
    minimize those vulnerabilities. The paper proposes modifications to
    negotiation strategies to help prevent the inadvertent disclosure of
    credential information during on-line trust negotiation for those
    credentials or credential attributes that have been designated as
    sensitive, private information.
rv: