Privacy-Preserving Trust Establishment with Web Service Enhancements

Privacy-Preserving Trust Establishment with Web Service Enhancements

Zhengping Wu, Alfred C. Weaver
ISBN13: 9781613501047|ISBN10: 1613501048|EISBN13: 9781613501054
DOI: 10.4018/978-1-61350-104-7.ch003
Cite Chapter Cite Chapter

MLA

Wu, Zhengping, and Alfred C. Weaver. "Privacy-Preserving Trust Establishment with Web Service Enhancements." Innovations, Standards and Practices of Web Services: Emerging Research Topics, edited by Liang Jie-Zhang, IGI Global, 2012, pp. 54-73. https://doi.org/10.4018/978-1-61350-104-7.ch003

APA

Wu, Z. & Weaver, A. C. (2012). Privacy-Preserving Trust Establishment with Web Service Enhancements. In L. Jie-Zhang (Ed.), Innovations, Standards and Practices of Web Services: Emerging Research Topics (pp. 54-73). IGI Global. https://doi.org/10.4018/978-1-61350-104-7.ch003

Chicago

Wu, Zhengping, and Alfred C. Weaver. "Privacy-Preserving Trust Establishment with Web Service Enhancements." In Innovations, Standards and Practices of Web Services: Emerging Research Topics, edited by Liang Jie-Zhang, 54-73. Hershey, PA: IGI Global, 2012. https://doi.org/10.4018/978-1-61350-104-7.ch003

Export Reference

Mendeley
Favorite

Abstract

Web services are increasingly utilized in people’s daily lives to achieve various functionalities. Trustworthiness has become a critical factor for service provision and governance. The lack of effective trust establishment mechanisms impedes the deployment of diverse trust models for web services. One important issue is that collaborating organizations need mechanisms to bridge extant relationships among cooperating parties. Meanwhile, a trust establishment mechanism for web services must ensure privacy and owner control at all times due to the subjectivity of trust relationships. As an alternative and complementary approach to direct trust establishment, we describe an indirect trust establishment mechanism to bridge and build new trust relationships from extant trust relationships with privacy protection. Another issue is the lack of mechanisms that can directly establish trust relationships with privacy-preserving capabilities for web services. Current web service technologies encourage a service requester to reveal all its private attributes in a pre-packaged digital credential to the service provider to fulfill the requirements for verification. This may lead to privacy leakage. We propose a mechanism whereby the service requester discovers the service provider’s requirements from a web service policy document, then formulates a trust primitive by associating a set of attributes in a pre-packaged credential with a semantic name, signed with the requester’s digital signature, to negotiate a trust relationship. Thus the service requester’s privacy is preserved because only those attributes required to build a trust relationship are revealed.

Request Access

You do not own this content. Please login to recommend this title to your institution's librarian or purchase it from the IGI Global bookstore.