摘要： 为了在自动信任协商(ATN)中实现属性选择性披露，借鉴内容抽取签名的思想，以W3C的XML加密和签名推荐标准为技术支撑，提出一种支持属性选择性披露的ATN证书描述方案，使接收方在收到经过属性加密或移除处理的证书时仍能对其完整性和数字签名进行验证。与SDSA方案相比，该方案具有简单、灵活、计算量小等优点。

关键词: 自动信任协商, 证书描述, 属性选择性披露

Abstract: In order to realize selective attributes disclosure in Automated Trust Negotiation(ATN), by using the thoughts of content extraction signature and W3C XML encryption and signature standards as technical basis, a credential description scheme is designed to support fine-grained property protection function, which makes the receiver be able to check the integrity and signature of the credentials after encryption or removal. Compared with Selectively Disclosing Sensitive Attributes(SDSA) scheme, the new scheme is simpler, more flexible and has less calculation.

Key words: Automated Trust Negotiation(ATN), credential description, selective attributes disclosure

中图分类号: 

• TP309.2