PAPR: Publicly Auditable Privacy Revocation for Anonymous Credentials

Joakim Brorsson, Bernardo David, Lorenzo Gentile, Elena Pagnin, Paul Stankovski Wagner

Forskningsoutput: Kapitel i bok/rapport/Conference proceedingKonferenspaper i proceedingPeer review

Sammanfattning

We study the notion of anonymous credentials with Publicly Auditable Privacy Revocation (PAPR). PAPR credentials simultaneously provide conditional user privacy and auditable privacy revocation. The first property implies that users keep their identity private when authenticating unless and until an appointed authority requests to revoke this privacy, retroactively. The second property enforces that auditors can verify whether or not this authority has revoked privacy from an issued credential (i.e. learned the identity of the user who owns that credential), holding the authority accountable. In other words, the second property enriches conditionally anonymous credential systems with transparency by design, effectively discouraging such systems from being used for mass surveillance. In this work, we introduce the notion of a PAPR anonymous credential scheme, formalize it as an ideal functionality, and present constructions that are provably secure under standard assumptions in the Universal Composability framework. The core tool in our PAPR construction is a mechanism for randomly selecting an anonymous committee which users secret share their identity information towards, while hiding the identities of the committee members from the authority. As a consequence, in order to initiate the revocation process for a given credential, the authority is forced to post a request on a public bulletin board used as a broadcast channel to contact the anonymous committee that holds the keys needed to decrypt the identity connected to the credential. This mechanism makes the user de-anonymization publicly auditable.

Originalspråkengelska
Titel på värdpublikationTopics in Cryptology – CT-RSA 2023 - Cryptographers’ Track at the RSA Conference 2023, Proceedings
RedaktörerMike Rosulek
FörlagSpringer Science and Business Media B.V.
Sidor163-190
Antal sidor28
ISBN (tryckt)9783031308710
DOI
StatusPublished - 2023
EvenemangCryptographers’ Track at the RSA Conference, CT-RSA 2023 - San Francisco, USA
Varaktighet: 2023 apr. 242023 apr. 27

Publikationsserier

NamnLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volym13871 LNCS
ISSN (tryckt)0302-9743
ISSN (elektroniskt)1611-3349

Konferens

KonferensCryptographers’ Track at the RSA Conference, CT-RSA 2023
Land/TerritoriumUSA
OrtSan Francisco
Period2023/04/242023/04/27

Ämnesklassifikation (UKÄ)

  • Datavetenskap (datalogi)

Fingeravtryck

Utforska forskningsämnen för ”PAPR: Publicly Auditable Privacy Revocation for Anonymous Credentials”. Tillsammans bildar de ett unikt fingeravtryck.

Citera det här