Hidden Issuer Anonymous Credential

Bosk, Daniel; Frey, Davide; Gestin, Mathieu; Piolle, Guillaume

doi:10.56553/popets-2022-0123

Cited by 6 publications

(3 citation statements)

References 29 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Bosk et al identifies the problem that a traditional DID exposes the Issuer's identity to all participants, leading to data breaches. They propose a new anonymous credential using NIZK, a modified PS (Pointcheval Sanders) Signature, and Aggregate, allowing the Holder to hide the Issuer of credentials while ensuring trust in a trustless setting [33]. However, it is not secure when it comes to Sybil attacks, as attackers can create multiple fake identities and exert undue influence within the DID.…”

Section: Scheme Of Anonymity In Didmentioning

confidence: 99%

“…When creating a single VP based on n VCs for a delegation to provide delegation to m Delegatees, the existing schemes [21,22,32,33] generate with the size being the number of VC for delegation (n) * the number of Delegatee (m) + n * m * VC for delegation. The existing scheme requires m separate original VCs rather than VCs for delegation.…”

Section: Optimization Of Vc Managementmentioning

confidence: 99%

See 1 more Smart Citation

A Comprehensive Approach to User Delegation and Anonymity within Decentralized Identifiers for IoT

Kim,

Seo,

Kim

et al. 2024

Sensors

View full text Add to dashboard Cite

Decentralized Identifiers have recently expanded into Internet of Things devices and are crucial in securing users’ digital identities and data. However, Decentralized Identifiers face challenges in scenarios necessitating authority delegation and anonymity, such as when dealing with legal guardianship for minors, device loss or damage, and specific medical contexts involving patient information. This paper aims to strengthen data sovereignty within the Decentralized Identifier system by implementing a secure authority delegation and anonymity scheme. It suggests optimizing verifiable presentations by utilizing a sequential aggregate signature, a Non-Interactive Zero-Knowledge Proof, and a Merkle tree to prevent against linkage and Sybil attacks while facilitating delegation. This strategy mitigates security risks related to delegation and anonymity, efficiently reduces the computational and verification efforts for signatures, and reduces the size of verifiable presentations by about 1.2 to 2 times.

show abstract

Section: Scheme Of Anonymity In Didmentioning

confidence: 99%

Section: Optimization Of Vc Managementmentioning

confidence: 99%

A Comprehensive Approach to User Delegation and Anonymity within Decentralized Identifiers for IoT

Kim,

Seo,

Kim

et al. 2024

Sensors

View full text Add to dashboard Cite

show abstract

“…Private authentication was introduced by Abadi [17], where the identity of each protocol participant will not be revealed to its peers unless authorized by the participant. There are several techniques that can be applied to achieve private authentication, e.g., secret handshakes [18], that allow members of a group to identify each other privately; hidden credentials [19] that enable the sender to send encrypted messages; mechanisms that ensure that only recipients who meet certain access policies can decrypt the message; and attribute-based encryption schemes [20] that support fine-grained access control over decryption capabilities.…”

Section: Related Workmentioning

confidence: 99%

Private and Mutual Authentication Protocols for Internet of Things

Jiang

Cui

2023

Mathematics

View full text Add to dashboard Cite

The Internet of Things (IoT) consists of a range of devices that communicate with other devices that are surrounding them. Secure communications between IoT devices have been an essential requirement. However, most existing authentication protocols fail to provide privacy protection for devices such that sensitive information including device owner’s identity and device type can be leaked. In this paper, based on attribute-based encryption (ABE), we propose two private and mutual authentication protocols to protect the privacy of IoT devices. The first protocol is a three-message key exchange protocol, following the public-key encryption mode of the Internet Key Exchange (IKE). The second protocol is a one-round key exchange protocol, thereby providing simplicity and efficiency of messages communicated between the participants. Both of our protocols can be proved secure in the defined model. Finally, we implement the two protocols in an open source framework.

show abstract