Threshold Delegatable Anonymous Credentials with Controlled and Fine-Grained Delegation

Omid Mir, Daniel Slamanig, Rene Mayrhofer

Publikation: Beitrag in FachzeitschriftArtikelBegutachtung


Anonymous credential systems allow users to obtain a credential on multiple attributes from an organization and then present it to verifiers in a way that no information beyond what attributes are required to be shown is revealed. Moreover, multiple uses of the credential cannot be linked. Thus they represent an attractive tool to realize fine-grained privacy-friendly authentication and access control. In order to avoid a single point of trust and failure, decentralized AC systems have been proposed. They eliminate the need for a trusted credential issuer, e.g., by relying on a set of credential issuers that issue credentials in a threshold manner (e.g., t out of n f). In this paper, we present a novel AC system with such a threshold issuance that additionally provides credential delegation. It represents the first decentralized and delegatable AC system. We provide a rigorous formal framework for such threshold delegatable anonymous credentials ( TDAC 's). Our concrete approach departs from previous delegatable ACs and is inspired by the concept of functional credentials. More precisely, we propose a threshold delegatable subset predicate encryption ( TDSPE ) scheme and use TDSPE to construct a TDAC scheme and present a comparison with previous work and performance benchmarks based on a prototype implementation.
Seiten (von - bis)1-16
FachzeitschriftIEEE Transactions on Dependable and Secure Computing (TDSC)
PublikationsstatusVeröffentlicht - 9 Aug. 2023

Research Field

  • Cyber Security


Untersuchen Sie die Forschungsthemen von „Threshold Delegatable Anonymous Credentials with Controlled and Fine-Grained Delegation“. Zusammen bilden sie einen einzigartigen Fingerprint.

Diese Publikation zitieren