Threshold Delegatable Anonymous Credentials with Controlled and Fine-Grained Delegation

Omid Mir, Daniel Slamanig, Rene Mayrhofer

Publikation: Beitrag in FachzeitschriftArtikelBegutachtung

Abstract

Anonymous credential systems allow users to obtain a credential on multiple attributes from an organization and then present it to verifiers in a way that no information beyond what attributes are required to be shown is revealed. Moreover, multiple uses of the credential cannot be linked. Thus they represent an attractive tool to realize fine-grained privacy-friendly authentication and access control. In order to avoid a single point of trust and failure, decentralized AC systems have been proposed. They eliminate the need for a trusted credential issuer, e.g., by relying on a set of credential issuers that issue credentials in a threshold manner (e.g., t out of n f). In this paper, we present a novel AC system with such a threshold issuance that additionally provides credential delegation. It represents the first decentralized and delegatable AC system. We provide a rigorous formal framework for such threshold delegatable anonymous credentials ( TDAC 's). Our concrete approach departs from previous delegatable ACs and is inspired by the concept of functional credentials. More precisely, we propose a threshold delegatable subset predicate encryption ( TDSPE ) scheme and use TDSPE to construct a TDAC scheme and present a comparison with previous work and performance benchmarks based on a prototype implementation.
OriginalspracheEnglisch
Seiten (von - bis)1-16
Seitenumfang16
FachzeitschriftIEEE Transactions on Dependable and Secure Computing (TDSC)
Volume20
DOIs
PublikationsstatusVeröffentlicht - 9 Aug. 2023

Research Field

  • Cyber Security

Fingerprint

Untersuchen Sie die Forschungsthemen von „Threshold Delegatable Anonymous Credentials with Controlled and Fine-Grained Delegation“. Zusammen bilden sie einen einzigartigen Fingerprint.

Diese Publikation zitieren