Concepts and Languages for Privacy-Preserving Attribute-Based Authentication

Camenisch, Jan; Dubovitskaya, Maria; Lehmann, Anja; Neven, Gregory; Paquin, Christian; Preiss, Franz-Stefan

doi:10.1007/978-3-642-37282-7_4

Cited by 39 publications

(25 citation statements)

References 49 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Anonymous credentials [158] allow users to obtain credentials from authorities and use these credentials while ensuring that transactions cannot be linked to each other or to the user. Attribute-based credentials rely on anonymous credentials and add features for revocation and de-anonymization [159]. Attribute-based credentials have many potential uses in smart cities, for example to allow users to authenticate with cloud providers without revealing their identities [19].…”

Section: B Data-oriented Privacy Protectionmentioning

confidence: 99%

“…Even in cases where authentication is required, it is not necessary to create a link between user and transaction. Instead, attribute-based credentials allow the system to cryptographically verify certain of the user's attributes (for example, a student or discounted fares attribute would indicate that the user is entitled to discounted bus fares) without revealing the user identity [159].…”

Section: B Smart Cardsmentioning

confidence: 99%

See 1 more Smart Citation

Privacy in the Smart City—Applications, Technologies, Challenges, and Solutions

Eckhoff

Wagner

2018

IEEE Commun. Surv. Tutorials

222

102

View full text Add to dashboard Cite

Many modern cities strive to integrate information technology into every aspect of city life to create so-called smart cities. Smart cities rely on a large number of application areas and technologies to realize complex interactions between citizens, third parties, and city departments. This overwhelming complexity is one reason why holistic privacy protection only rarely enters the picture. A lack of privacy can result in discrimination and social sorting, creating a fundamentally unequal society. To prevent this, we believe that a better understanding of smart cities and their privacy implications is needed. We therefore systematize the application areas, enabling technologies, privacy types, attackers and data sources for the attacks, giving structure to the fuzzy term "smart city". Based on our taxonomies, we describe existing privacy-enhancing technologies, review the state of the art in real cities around the world, and discuss promising future research directions. Our survey can serve as a reference guide, contributing to the development of privacy-friendly smart cities.

show abstract

Section: B Data-oriented Privacy Protectionmentioning

confidence: 99%

Section: B Smart Cardsmentioning

confidence: 99%

Privacy in the Smart City—Applications, Technologies, Challenges, and Solutions

Eckhoff

Wagner

2018

IEEE Commun. Surv. Tutorials

222

102

View full text Add to dashboard Cite

show abstract

“…Individuals conducting transactions might not need to have accounts to exchange value with each other; we surmise that the regulated intermediary would perform the service for a fee. We also suggest that the intermediary would not be required to carry out strong identification of the sort required by the FATF recommendations (Financial Action Task Force, 2018) but might require a less-stringent form of identification, such as an attribute-backed credential indicating that either the sender or the receiver are eligible to transact (Camenisch et al, 2013). Regulated intermediaries could also provide token mixing services for groups of individuals who satisfy AML criteria, without explicitly requiring knowledge of their unitary identities.…”

Section: Institutionally Mediated Private Value Exchangementioning

confidence: 99%

Can Cryptocurrencies Preserve Privacy and Comply With Regulations?

Goodell

Aste

2019

Front. Blockchain

View full text Add to dashboard Cite

Cryptocurrencies offer an alternative to traditional methods of electronic value exchange, promising anonymous, cash-like electronic transfers, but in practice they fall short for several key reasons. We consider the false choice between total surveillance, as represented by banking as currently implemented by institutions, and impenetrable lawlessness, as represented by privacy-enhancing cryptocurrencies as currently deployed. We identify a range of alternatives between those two extremes, and we consider two potential compromise approaches that offer both the auditability required for regulators and the anonymity required for users.

show abstract

“…Such an architecture may optionally also include an entity that takes care of revocation of credentials, and another entity that can revoke the anonymity of otherwise anonymous users. The main interactions between Privacy-ABCs system entities [7] can be represented by the different stages of its lifecycle, that is, issuance, presentation, inspection, and revocation.…”

Section: Introductionmentioning

confidence: 99%

Evaluation of Privacy-ABC Technologies - a Study on the Computational Efficiency

Veseli

Serna

2016

Trust Management X

View full text Add to dashboard Cite

Privacy-enhancing attribute-based credential (Privacy-ABC) technologies use different cryptographic methods to enhance the privacy of the users. This results in important practical differences between these technologies, especially with regard to efficiency, which have not been studied in depth, but is necessary for assessing their suitability for different user devices and for highly dynamic scenarios. In this paper, we compare the computational efficiency of two prominent Privacy-ABC technologies, IBM's Idemix and Microsoft's U-Prove, covering all known Privacy-ABC features. The results show that overall presentation is in general is more efficient with Idemix, whereas U-Prove is more efficient for the User side (proving) operations during the presentation, and overall when there are more attributes in a credential. For both technologies we confirmed that inspectability, non-revocation proofs, and inequality predicates are costly operations. Interestingly, the study showed that equality predicates, the number of attributes in a credential, and attribute disclosure are done very efficiently. Finally, we identified a number of specific trust issues regarding Privacy-ABC technologies.

show abstract

Concepts and Languages for Privacy-Preserving Attribute-Based Authentication

Cited by 39 publications

References 49 publications

Privacy in the Smart City—Applications, Technologies, Challenges, and Solutions

Privacy in the Smart City—Applications, Technologies, Challenges, and Solutions

Can Cryptocurrencies Preserve Privacy and Comply With Regulations?

Evaluation of Privacy-ABC Technologies - a Study on the Computational Efficiency

Contact Info

Product

Resources

About