TY - JOUR
T1 - On Secure and Pseudonymous Client-Relationships with Multiple Servers
AU - Gabber, Eran
AU - Gibbons, Phillip B.
AU - Kristol, David M.
AU - Mayer, Alain
AU - Matias, Yossi
PY - 1999/11/1
Y1 - 1999/11/1
N2 - This paper introduces a cryptographic engine, Janus, which assists clients in establishing and maintaining secure and pseudonymous relationships with multiple servers. The setting is such that clients reside on a particular subnet (e.g., corporate intranet, ISP) and the servers reside anywhere on the Internet. The Janus engine allows each client-server relationship to use either weak or strong authentication on each interaction. At the same time, each interaction preserves privacy by neither revealing a client's true identity (except for the subnet) nor the set of servers with which a particular client interacts. Furthermore, clients do not need any secure long-term memory, enabling scalability and mobility. The interaction model extends to allow servers to send data back to clients via e-mail at a later date. Hence, our results complement the functionality of current network anonymity tools and remailers. The paper also describes the design and implementation of the Lucent Personalized Web Assistant (LPWA), which is a practical system that provides secure and pseudonymous relations with multiple servers on the Internet. LPWA employs the Janus function to generate site-specific persone, which consist of alias usernames, passwords, and e-mail addresses.
AB - This paper introduces a cryptographic engine, Janus, which assists clients in establishing and maintaining secure and pseudonymous relationships with multiple servers. The setting is such that clients reside on a particular subnet (e.g., corporate intranet, ISP) and the servers reside anywhere on the Internet. The Janus engine allows each client-server relationship to use either weak or strong authentication on each interaction. At the same time, each interaction preserves privacy by neither revealing a client's true identity (except for the subnet) nor the set of servers with which a particular client interacts. Furthermore, clients do not need any secure long-term memory, enabling scalability and mobility. The interaction model extends to allow servers to send data back to clients via e-mail at a later date. Hence, our results complement the functionality of current network anonymity tools and remailers. The paper also describes the design and implementation of the Lucent Personalized Web Assistant (LPWA), which is a practical system that provides secure and pseudonymous relations with multiple servers on the Internet. LPWA employs the Janus function to generate site-specific persone, which consist of alias usernames, passwords, and e-mail addresses.
KW - Algorithms
KW - Anonymity
KW - Experimentation
KW - Janus function
KW - Security
KW - mailbox
KW - persistent relationship
KW - privacy
KW - pseudonym
UR - http://www.scopus.com/inward/record.url?scp=84949287358&partnerID=8YFLogxK
U2 - 10.1145/330382.330386
DO - 10.1145/330382.330386
M3 - ???researchoutput.researchoutputtypes.contributiontojournal.article???
AN - SCOPUS:84949287358
SN - 1094-9224
VL - 2
SP - 390
EP - 415
JO - ACM Transactions on Information and System Security
JF - ACM Transactions on Information and System Security
IS - 4
ER -