Visible to the public Practical UC-Secure Delegatable Credentials with Attributes and Their Application to Blockchain

Submitted by grigby1 on Thu, 08/23/2018 - 10:49am
TitlePractical UC-Secure Delegatable Credentials with Attributes and Their Application to Blockchain
Publication TypeConference Paper
Year of Publication2017
AuthorsCamenisch, Jan, Drijvers, Manu, Dubovitskaya, Maria
Conference NameProceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security
PublisherACM
Conference LocationNew York, NY, USA
ISBN Number978-1-4503-4946-8
Keywordsblockchain, composability, composable security, compositionality, Computing Theory, credentials, delegation, hierarchical issuance, privacy-preserving authentication, pubcrawl, zero-knowledge
AbstractCertification of keys and attributes is in practice typically realized by a hierarchy of issuers. Revealing the full chain of issuers for certificate verification, however, can be a privacy issue since it can leak sensitive information about the issuer's organizational structure or about the certificate owner. Delegatable anonymous credentials solve this problem and allow one to hide the full delegation (issuance) chain, providing privacy during both delegation and presentation of certificates. However, the existing delegatable credentials schemes are not efficient enough for practical use. In this paper, we present the first hierarchical (or delegatable) anonymous credential system that is practical. To this end, we provide a surprisingly simple ideal functionality for delegatable credentials and present a generic construction that we prove secure in the UC model. We then give a concrete instantiation using a recent pairing-based signature scheme by Groth and describe a number of optimizations and efficiency improvements that can be made when implementing our concrete scheme. The latter might be of independent interest for other pairing-based schemes as well. Finally, we report on an implementation of our scheme in the context of transaction authentication for blockchain, and provide concrete performance figures.
URLhttp://doi.acm.org/10.1145/3133956.3134025
DOI10.1145/3133956.3134025
Citation Keycamenisch_practical_2017
Groups: