| Item type |
SIG Technical Reports(1) |
| 公開日 |
2022-03-03 |
| タイトル |
|
|
タイトル |
Mutual Declaration Mechanism of Multi-provider Relationship for Trusted Web Services |
| タイトル |
|
|
言語 |
en |
|
タイトル |
Mutual Declaration Mechanism of Multi-provider Relationship for Trusted Web Services |
| 言語 |
|
|
言語 |
eng |
| キーワード |
|
|
主題Scheme |
Other |
|
主題 |
システム設計・実装 |
| 資源タイプ |
|
|
資源タイプ識別子 |
http://purl.org/coar/resource_type/c_18gh |
|
資源タイプ |
technical report |
| 著者所属 |
|
|
|
Faculty of Policy Management, Keio University |
| 著者所属 |
|
|
|
Computer Security Incident Response Team, Keio University |
| 著者所属 |
|
|
|
Information Technology Center, Keio University |
| 著者所属 |
|
|
|
Keio Research Institute at SFC, Keio University |
| 著者所属 |
|
|
|
Faculty of Environment and Information Studies, Keio University |
| 著者所属 |
|
|
|
Faculty of Environment and Information Studies, Keio University |
| 著者所属(英) |
|
|
|
en |
|
|
Faculty of Policy Management, Keio University |
| 著者所属(英) |
|
|
|
en |
|
|
Computer Security Incident Response Team, Keio University |
| 著者所属(英) |
|
|
|
en |
|
|
Information Technology Center, Keio University |
| 著者所属(英) |
|
|
|
en |
|
|
Keio Research Institute at SFC, Keio University |
| 著者所属(英) |
|
|
|
en |
|
|
Faculty of Environment and Information Studies, Keio University |
| 著者所属(英) |
|
|
|
en |
|
|
Faculty of Environment and Information Studies, Keio University |
| 著者名 |
Wataru, Ohgai
Takao, Kondo
Korry, Luke
Satoshi, Kai
Keisuke, Uehara
Satoru, Tezuka
|
| 著者名(英) |
Wataru, Ohgai
Takao, Kondo
Korry, Luke
Satoshi, Kai
Keisuke, Uehara
Satoru, Tezuka
|
| 論文抄録 |
|
|
内容記述タイプ |
Other |
|
内容記述 |
The TLS security model enables the identification and secrecy of the host-to-host communication channel on the Web; however, TLS cannot guarantee the relationship between service providers. This paper proposes a lightweight self-managed mutual declaration mechanism, M2DMRT, in which service providers mutually sign their TLS public keys and publish them in DNSSEC-protected DNS zones. With M2DMRT, service providers can mutually declare their relationships with each other, and end users can easily trust the relationships by verifying the signatures. Further, this paper implemented a server-side proof of concept. After evaluating its basic performance and feasibility from an Internet architecture perspective, this paper found this mechanism can realize more trustable Web security architecture by providing a sufficiently performant way to declare and verify relationships between service providers without significantly impacting the current Internet environment. |
| 論文抄録(英) |
|
|
内容記述タイプ |
Other |
|
内容記述 |
The TLS security model enables the identification and secrecy of the host-to-host communication channel on the Web; however, TLS cannot guarantee the relationship between service providers. This paper proposes a lightweight self-managed mutual declaration mechanism, M2DMRT, in which service providers mutually sign their TLS public keys and publish them in DNSSEC-protected DNS zones. With M2DMRT, service providers can mutually declare their relationships with each other, and end users can easily trust the relationships by verifying the signatures. Further, this paper implemented a server-side proof of concept. After evaluating its basic performance and feasibility from an Internet architecture perspective, this paper found this mechanism can realize more trustable Web security architecture by providing a sufficiently performant way to declare and verify relationships between service providers without significantly impacting the current Internet environment. |
| 書誌レコードID |
|
|
収録物識別子タイプ |
NCID |
|
収録物識別子 |
AA11235941 |
| 書誌情報 |
研究報告コンピュータセキュリティ(CSEC)
巻 2022-CSEC-96,
号 16,
p. 1-8,
発行日 2022-03-03
|
| ISSN |
|
|
収録物識別子タイプ |
ISSN |
|
収録物識別子 |
2188-8655 |
| Notice |
|
|
|
SIG Technical Reports are nonrefereed and hence may later appear in any journals, conferences, symposia, etc. |
| 出版者 |
|
|
言語 |
ja |
|
出版者 |
情報処理学会 |
IPSJ-CSEC22096016.pdf (3.0 MB)
