南京大学计算机软件新技术国家重点实验室软件新技术与产业化协同创新中心

摘 要：

Anonymous Single-Sign-On authentication schemes have been proposed to allow users to access a service protected by a verifier without revealing their identity. This has become more important with the introduction of strong privacy regulations. In this talk, I will present a new approach whereby anonymous authentication to different verifiers is achieved via authorisation tags and pseudonyms. The particular innovation of our scheme is that authentication can occur only between a user and its designated verifier for a service, and the verification cannot be performed by any other verifier. The benefit of this authentication approach is that it prevents information leakage of a user’s service access information, even if the verifiers for these services collude. Our scheme also supports a trusted third party who is authorised to de-anonymise the user and reveal her whole service access information if required. Furthermore, our scheme is lightweight because it does not rely on attribute or policy-based signature schemes to enable access to multiple services.

报告人简介:

Jinguang Han is a lecturer in Centre for Secure Information Technologies (CSIT), School of Electronics, Electrical Engineering and Computer Science (EEECS), Queen's University Belfast (QUB), United Kingdom. He earned his PhD degree from University of Wollongong, Australia, in 2013. His research interests include cryptography, access control, cloud computing and network security. He is a senior member of IEEE and a member of ACM and IACR. He has published 50 academic papers in journals and conferences including IEEE TPDS, IEEE TC, IEEE TIFS, IEEE TSC, ESORICS, etc. He was a program committee co-chair of  ProvSec2016, and served as a program committee member of over 70 international conferences including ICICS'19, PST'18, CANS'17, GlobeCom'16, AsiaCCS'15, TrustComm'15, ISPEC'14. He is an associate editor of Soft Computing and a guest editor of FGCS, IJIS, IJFCS, JISA, etc.

时间：8月23日 16:00-17:00

地点：计算机科学技术楼229室