期刊名称:Bulletin of the Technical Committee on Data Engineering
出版年度:2009
卷号:32
期号:01
出版社:IEEE Computer Society
摘要:Digital identity management services are crucial in cloud computing infrastructures to authenticate
users and to support flexible access control to services, based on user identity properties (also called
attributes) and past interaction histories. Such services should preserve the privacy of users, while at the
same time enhancing interoperability across multiple domains and simplifying management of identity
verification. In this paper we propose an approach addressing such requirements, based on the use of
high-level identity verification policies expressed in terms of identity attributes, zero-knolwedge proof
protocols, and semantic matching techniques. The paper describes the basic techniques we adopt and
the architeture of a system developed based on these techniques, and reports performance experimental
results.