论文信息 - Anonymity in PKI Environment

Anonymity in PKI Environment

PKI provides an infrastructure of the more general security service for the electronic commerce and the electronic government affairs, but the users in the network still suffer from the traffic analysis attacks by leaking the link information of the communication such as the identity of the user, the time of the communication and the direction of the traffic flow, etc. The anonymity technique provides the mechanism to implement one subject to be the state of not being identifiable within a set of subjects. This paper aims to import the anonymity technique to the PKI environment and proposes a scheme to implement anonymous communication based on the PKI. With the methods of secret splitting, revising of the process of certificate generation and importing role control in the certificate, it is able to trace the abuser of the anonymity while protecting the privacy of the normal users. Besides, this scheme implements the trade-off between the anonymity and the communication efficiency by combining the virtues of the DC-Nets and Mix-Nets.

Yong Zhang | Xiamu Niu | Chuanjun Wang

[1] David Chaum,et al. The dining cryptographers problem: Unconditional sender and recipient untraceability , 1988, Journal of Cryptology.

[2] Nick Mathewson,et al. Tor: The Second-Generation Onion Router , 2004, USENIX Security Symposium.

[3] Birgit Pfitzmann,et al. The Dining Cryptographers in the Disco - Underconditional Sender and Recipient Untraceability with Computationally Secure Serviceability (Abstract) , 1990, EUROCRYPT.

[4] David Chaum,et al. Untraceable electronic mail, return addresses, and digital pseudonyms , 1981, CACM.

[5] Secure Anonymous Protocols for Local and Multicast Environments , 2000 .

[6] Michael K. Reiter,et al. Crowds: anonymity for Web transactions , 1998, TSEC.

[7] Nathalie Weiler,et al. Semsomm-a scalable multiple encryption scheme for one-to-many multicast , 2001, Proceedings Tenth IEEE International Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises. WET ICE 2001.

[8] Andreas Pfitzmann,et al. Anonymity, Unobservability, and Pseudonymity - A Proposal for Terminology , 2000, Workshop on Design Issues in Anonymity and Unobservability.

[9] Nicholas Hopper,et al. k-anonymous message transmission , 2003, CCS '03.

[10] David W. Chadwick,et al. The PERMIS X.509 role based privilege management infrastructure , 2003, Future Gener. Comput. Syst..