PyTHIA: Towards Anonymity in Authentication
| Autor: | Steven Xarhoulacos, Dimitris Gritzalis, Costas Lambrinoudakis, Kostantinos Moulinos, John Iliadis |
|---|---|
| Rok vydání: | 2001 |
| Předmět: | |
| Zdroj: | IFIP Advances in Information and Communication Technology ISBN: 9780792373896 SEC |
| DOI: | 10.1007/0-306-46998-7_1 |
| Popis: | There is a scale between authentication and anonymity, which is currently leaning towards the side of authentication, when it comes to e-commerce. Service providers and merchants are usually keeping track of user-related information in order to construct behavioral profiles of their customers. Service providers and merchants also correlate profiles of this kind, stemming from different sources, in order to increase their profit. This correlation is usually performed with the use of unified codes. Authentication, confidentiality, integrity, authentication, and non-repudiation are necessary functionalities for enabling e-commerce. Most of the currently used mechanisms that support these services do no provide anonymity. This paper presents PyTHIA, a mechanism, which is based on the use of Message Digest Algorithms and the intermediation of Trusted Third Parties in order to provide anonymity to e-commerce users who have to authenticate themselves in order to access services or buy goods form service providers and merchants respectively. With PyTHIA e-commerce users are able to authenticate without giving away any personal data and without using Unified Codes. In addition, PyTHIA ensures that service providers and merchants can effectively trace a customer in case he behaves maliciously. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|