Abstracts - 3rd USENIX Workshop on Electronic Commerce
On Secure and Pseudonymous Client-Relationships with Multiple Servers
Daniel Bleichenbacher, Eran Gabber, Phillip B. Gibbons, Yossi Matias, and Alain Mayer
Bell Laboratories, Lucent Technologies
This paper introduces a cryptographic engine, Janus,
that assists clients in establishing and maintaining
secure and pseudonymous relationships with multiple servers. The setting is such that clients reside on a particular subnet (e.g., corporate intranet,
ISP) and the servers reside anywhere on the Internet. The Janus engine allows for each client-server
relationship to use either weak or strong authentication on each interaction. At the same time, each
interaction preserves privacy by neither revealing a
client's true identity (\modulo" the subnet) nor the
set of servers with which a particular client interacts. Furthermore, clients do not need any secure
long-term memory, enabling scalability and mobility. The interaction model extends to allow servers
to send data back to clients via e-mail at a later date.
Hence, our results complement the functionality of
current network anonymity tools and remailers.
- View the full text of this paper in
- If you need the latest Adobe Acrobat Reader, you can download it from Adobe's site.
- To become a USENIX Member, please see our Membership Information.