{"created":"2025-01-18T23:12:23.099369+00:00","metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00046743","sets":["1164:4088:4089:4093"]},"path":["4093"],"owner":"1","recid":"46743","title":["マジックプロトコル利用によるプライバシーに配慮した Shibboleth 属性交換の拡張"],"pubdate":{"attribute_name":"公開日","attribute_value":"2008-03-06"},"_buckets":{"deposit":"7985dd61-83d0-45c6-b4e3-d50f21664c86"},"_deposit":{"id":"46743","pid":{"type":"depid","value":"46743","revision_id":0},"owners":[1],"status":"published","created_by":1},"item_title":"マジックプロトコル利用によるプライバシーに配慮した Shibboleth 属性交換の拡張","author_link":["0","0"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"マジックプロトコル利用によるプライバシーに配慮した Shibboleth 属性交換の拡張"},{"subitem_title":"Privacy Oriented Attribute Exchange in Shibboleth Using Magic Protocols","subitem_title_language":"en"}]},"item_type_id":"4","publish_date":"2008-03-06","item_4_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"京都大学情報学研究科"},{"subitem_text_value":"京都大学学術情報メディアセンター"},{"subitem_text_value":"京都大学学術情報メディアセンター"},{"subitem_text_value":"京都大学学術情報メディアセンター"}]},"item_4_text_4":{"attribute_name":"著者所属(英)","attribute_value_mlt":[{"subitem_text_value":"Graduate School of Informatics, Kyoto University","subitem_text_language":"en"},{"subitem_text_value":"Academic Center for Computing and Media Studies, Kyoto University","subitem_text_language":"en"},{"subitem_text_value":"Academic Center for Computing and Media Studies, Kyoto University","subitem_text_language":"en"},{"subitem_text_value":"Academic Center for Computing and Media Studies, Kyoto University","subitem_text_language":"en"}]},"item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_publisher":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会","subitem_publisher_language":"ja"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/46743/files/IPSJ-QAI08026007.pdf"},"date":[{"dateType":"Available","dateValue":"2010-03-06"}],"format":"application/pdf","billing":["billing_file"],"filename":"IPSJ-QAI08026007.pdf","filesize":[{"value":"592.6 kB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"660","billingrole":"5"},{"tax":["include_tax"],"price":"330","billingrole":"6"},{"tax":["include_tax"],"price":"0","billingrole":"43"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_date","version_id":"3b293cb3-0d5b-4317-9232-5a236110d958","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2008 by the Information Processing Society of Japan"}]},"item_4_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"高木, 俊宏"},{"creatorName":"古村, 隆明"},{"creatorName":"宮崎, 修一"},{"creatorName":"岡部, 寿男"}],"nameIdentifiers":[{}]}]},"item_4_creator_6":{"attribute_name":"著者名(英)","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"Toshihiro, Takagi","creatorNameLang":"en"},{"creatorName":"Takaaki, Komura","creatorNameLang":"en"},{"creatorName":"Shuichi, Miyazaki","creatorNameLang":"en"},{"creatorName":"Yasuo, Okabe","creatorNameLang":"en"}],"nameIdentifiers":[{}]}]},"item_4_source_id_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_source_identifier":"AA12326962","subitem_source_identifier_type":"NCID"}]},"item_4_textarea_12":{"attribute_name":"Notice","attribute_value_mlt":[{"subitem_textarea_value":"SIG Technical Reports are nonrefereed and hence may later appear in any journals, conferences, symposia, etc."}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_18gh","resourcetype":"technical report"}]},"item_4_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"本研究では、Web サービスにおいて連携アイデンティティを実現する枠組みである Shibboleth における属性交換について、従来の手法では属性あるいは認可のための条件を直接やりとりするために、プライバシーが必要以上に漏れる危険があることを指摘した．その上で、これを解決するためにマジックプロトコルを利用した属性交換手法を設計した．また本手法は通信によって交換される情報が暗号化されているにも関わらず、不正が行われた場合に、のちの検証で不正者が特定できるように設計した．","subitem_description_type":"Other"}]},"item_4_description_8":{"attribute_name":"論文抄録(英)","attribute_value_mlt":[{"subitem_description":"In frameworks for Shibboleth, there are cases where users must present detailed privacy information which Service Provider (SP) does not actually require to authorize them. We propose an extension of the attribute exchange protocol between an Identity Provider (IdP) and an SP in Shibboleth. While in the conventional framework of Shibboleth attributes are exchanged in immediate values, in our new extension an SP and an IdP exchange attributes according to the protocol for Millionaire's Problem and the protocols for Oblivious Transfer (these protocols are known as \"Magic Protocols\"'). This extension enables the SP to know whether user's attributes meet the requirement for authorization, without the SP and the IdP revealing their confidential information.  We also show how we can detect cheating in execution of this protocol, e.g. the IdP tells an another value instead of a true value to the SP in malice.","subitem_description_type":"Other"}]},"item_4_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"42","bibliographic_titles":[{"bibliographic_title":"情報処理学会研究報告インターネットと運用技術（IOT）"}],"bibliographicPageStart":"37","bibliographicIssueDates":{"bibliographicIssueDate":"2008-03-06","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"15(2008-QAI-026)","bibliographicVolumeNumber":"2008"}]},"relation_version_is_last":true,"weko_creator_id":"1"},"id":46743,"updated":"2025-01-22T09:19:04.594005+00:00","links":{}}