Account Management Method with Blind Signature Scheme
暂无分享,去创建一个
Reducing the risk of information leaks is one of the most important functions of identity management systems. To achieve this purpose, Dey et al. have already proposed an account management method for a federated login system using a blind signature scheme. In order to ensure account anonymity for the authentication provider, referred to as an IDP (identity provider), a blind signature scheme is utilized to generate an authentication token on an authentication service and the token is sent to an IDP. However, there is a problem with the proposed system. Malicious users can establish multiple accounts on an IDP by requesting such accounts. As a measure to solve this problem, in this paper, the authors propose an account checking method that is performed before account generation. Keywords—identity management, blind signature, privacy protection
[1] Whitfield Diffie,et al. New Directions in Cryptography , 1976, IEEE Trans. Inf. Theory.
[2] Arkajit Dey,et al. PseudoID: Enhancing Privacy in Federated Login , 2010 .
[3] David Chaum,et al. Blind Signatures for Untraceable Payments , 1982, CRYPTO.