A warning on how to implement anonymous credential protocols into the information card framework

Ates, Mikaël; Buccafurri, Francesco; Fayolle, Jacques; Lax, Gianluca

doi:10.1007/s10207-011-0150-5

Cited by 6 publications

(2 citation statements)

References 17 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…It is a matter of fact that covert channel can be used to break unlinkability of protocols guaranteeing anonymity (see for example [4]). In the cover channel we can figure out in this case, TTP acts as attacker by using a different pair of asymmetric keys for every voter it wants to trace.…”

Section: Security Analysismentioning

confidence: 99%

Privacy-preserving resource evaluation in social networks

Buccafurri

Fotia

Lax

2012

2012 Tenth Annual International Conference on Privacy, Security and Trust

Self Cite

View full text Add to dashboard Cite

In new generation social networks, we expect that the demand of tools allowing the user to effectively control privacy, without relying on the provider trustworthiness, will be more and more increasing. A lot of precious information is currently released by users with no privacy control whenever they evaluate resources, which, for example, is done in Facebook through the "Like Button". A mechanism allowing the user to express her preferences fully preserving her privacy is thus desired, especially if it is able to protect user privacy also in case of untrustworthy social network provider. In this paper, we propose a solution to this problem, based on a DHT-based P2P social network and on a cryptographic protocol relying on partially blind digital signatures. The protocol is shown to be a solution to the trade-off between feasibility and security, since it guarantees the needed security requirements without including the complex features of existing e-voting systems.

show abstract

Section: Security Analysismentioning

confidence: 99%

Privacy-preserving resource evaluation in social networks

Buccafurri

Fotia

Lax

2012

2012 Tenth Annual International Conference on Privacy, Security and Trust

Self Cite

View full text Add to dashboard Cite

show abstract

“…Information security risk assessment (Bai et al, 2012;Feng and Li, 2011;Ren et al, 2006;Shamala et al, 2013;Zhao et al, 2009), quantifying the view of risk management, analysis the threats various networks and the risk information systems are realized with the use of a suite of various approaches and tools (Armando and Compagna, 2008;Ates et al, 2012;Bolle et al, 2011;Dent, 2008). With the development of computer technology and the internet, new attacks exploiting existing security vulnerabilities are realized.…”

Section: Introductionmentioning

confidence: 99%

A new information security risk analysis method based on membership degree

Chen

Pedrycz

et al. 2014

Kybernetes

View full text Add to dashboard Cite

Purpose -In a risk analysis system, different underlying indices often play different roles in identifying the risk scale of the total target in a system, so a concept of discriminatory weight is introduced first. With the help of discriminatory weight and membership functions, a new method for information security risk analysis is proposed. The purpose of this paper is to discuss the above issues. Design/methodology/approach -First, a concept of discriminatory weight is introduced. Second, with the help of fuzzy sets, risk scales are captured in terms of fuzzy sets (namely their membership functions). Third, a new risk analysis method involving discriminatory weights is proposed to realize a transformation from the membership degrees of the underlying indices to the membership degrees of the total target. At last, an example of information security risk analysis shows the effectiveness and feasibleness of the new method. Findings -The new method generalizes the weighted-average method. The comparative analysis done with respect to other two methods show that the proposed method exhibits higher classification accuracy. Therefore, the proposed method can be applied to other risk analysis system with a hierarchial. Originality/value -This paper proposes a new method for information security risk analysis with the help of membership functions and the concept of discriminatory weight. The new method generalizes the weighted-average method. Comparative analysis done with respect to other two methods show that the proposed method exhibits higher classification accuracy in E-government information security system. What is more, the proposed method can be applied to other risk analysis system with a hierarchial.

show abstract