An Efficient System for Non-transferable Anonymous Credentials with Optional Anonymity Revocation
A credential system is a system in which users can obtain credentials from organizations and demonstrate possession of these credentials. Such a system is anonymous when transactions carried out by the same user cannot be linked. An anonymous credential system is of significant practical relevance b...
Gespeichert in:
| Hauptverfasser: | , |
|---|---|
| Format: | Buchkapitel |
| Sprache: | eng |
| Schlagworte: | |
| Online-Zugang: | Volltext |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| container_end_page | 118 |
|---|---|
| container_issue | |
| container_start_page | 93 |
| container_title | |
| container_volume | 2045 |
| creator | Camenisch, Jan Lysyanskaya, Anna |
| description | A credential system is a system in which users can obtain credentials from organizations and demonstrate possession of these credentials. Such a system is anonymous when transactions carried out by the same user cannot be linked. An anonymous credential system is of significant practical relevance because it is the best means of providing privacy for users. In this paper we propose a practical anonymous credential system that is based on the strong RSA assumption and the decisional Diffie-Hellman assumption modulo a safe prime product and is considerably superior to existing ones: (1) We give the first practical solution that allows a user to unlinkably demonstrate possession of a credential as many times as necessary without involving the issuing organization. (2) To prevent misuse of anonymity, our scheme is the first to offer optional anonymity revocation for particular transactions. (3) Our scheme offers separability: all organizations can choose their cryptographic keys independently of each other. Moreover, we suggest more effective means of preventing users from sharing their credentials, by introducing all-or-nothing sharing: a user who allows a friend to use one of her credentials once, gives him the ability to use all of her credentials, i.e., taking over her identity. This is implemented by a new primitive, called circular encryption, which is of independent interest, and can be realized from any semantically secure cryptosystem in the random oracle model. |
| doi_str_mv | 10.1007/3-540-44987-6_7 |
| format | Book Chapter |
| fullrecord | <record><control><sourceid>proquest_pasca</sourceid><recordid>TN_cdi_pascalfrancis_primary_787213</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>EBC3073130_13_104</sourcerecordid><originalsourceid>FETCH-LOGICAL-c352t-9da1c28f01e6277b2028600e46a268cdd1a7cc6a1cfed0e2638c98e942d6fc693</originalsourceid><addsrcrecordid>eNotkMuPEzEMxsNTlKVnrpE4B5w4k8exqnYBacVKPM5RmknYgemkJFlQ_3vSbn2xbP_8yf4IecvhPQfQH5ANEpiU1mimnH5CXmNvnGv1lKy44pwhSvuMrK0255kADcNzsgIEwayW-JKs7GAGwQdQr8i61l_QAwVYCSviNwu9TmkKU1wa_XasLe5pyoV-yQtrxS81xeJ3c6SbJS_HfX6odFvi2OnJz5X-m9o9vTu0KS9-vjBTO9Kv8W8O_tR-Q16kTsb1JV-RHzfX37ef2O3dx8_bzS0LOIjG7Oh5ECYBj0povRMgjAKIUnmhTBhH7nUIqkMpjhCFQhOsiVaKUaWgLF6Rd4-6B1-Dn1O_PUzVHcq09-XotNGCY6fYI1X7YPkZi9vl_Ls6Du7kuEPXTXRnh113vPN4US35z0OszcXTQuj_Fz-He39osVSHoJFj18AuI_E_COh_gA</addsrcrecordid><sourcetype>Index Database</sourcetype><iscdi>true</iscdi><recordtype>book_chapter</recordtype><pqid>EBC3073130_13_104</pqid></control><display><type>book_chapter</type><title>An Efficient System for Non-transferable Anonymous Credentials with Optional Anonymity Revocation</title><source>Springer Books</source><creator>Camenisch, Jan ; Lysyanskaya, Anna</creator><contributor>Pfitzmann, Birgit ; Pfitzmann, Birgit</contributor><creatorcontrib>Camenisch, Jan ; Lysyanskaya, Anna ; Pfitzmann, Birgit ; Pfitzmann, Birgit</creatorcontrib><description>A credential system is a system in which users can obtain credentials from organizations and demonstrate possession of these credentials. Such a system is anonymous when transactions carried out by the same user cannot be linked. An anonymous credential system is of significant practical relevance because it is the best means of providing privacy for users. In this paper we propose a practical anonymous credential system that is based on the strong RSA assumption and the decisional Diffie-Hellman assumption modulo a safe prime product and is considerably superior to existing ones: (1) We give the first practical solution that allows a user to unlinkably demonstrate possession of a credential as many times as necessary without involving the issuing organization. (2) To prevent misuse of anonymity, our scheme is the first to offer optional anonymity revocation for particular transactions. (3) Our scheme offers separability: all organizations can choose their cryptographic keys independently of each other. Moreover, we suggest more effective means of preventing users from sharing their credentials, by introducing all-or-nothing sharing: a user who allows a friend to use one of her credentials once, gives him the ability to use all of her credentials, i.e., taking over her identity. This is implemented by a new primitive, called circular encryption, which is of independent interest, and can be realized from any semantically secure cryptosystem in the random oracle model.</description><identifier>ISSN: 0302-9743</identifier><identifier>ISBN: 9783540420705</identifier><identifier>ISBN: 3540420703</identifier><identifier>EISSN: 1611-3349</identifier><identifier>EISBN: 3540449876</identifier><identifier>EISBN: 9783540449874</identifier><identifier>DOI: 10.1007/3-540-44987-6_7</identifier><identifier>OCLC: 958521506</identifier><identifier>LCCallNum: QA268</identifier><language>eng</language><publisher>Germany: Springer Berlin / Heidelberg</publisher><subject>Applied sciences ; blind signatures ; circular encryption ; credential system ; Cryptography ; e-cash ; Exact sciences and technology ; Information, signal and communications theory ; key-oblivious encryption ; Privacy protection ; pseudonym system ; Signal and communications theory ; Telecommunications and information theory</subject><ispartof>Advances in Cryptology - EUROCRYPT 2001, 2001, Vol.2045, p.93-118</ispartof><rights>Springer-Verlag Berlin Heidelberg 2001</rights><rights>2001 INIST-CNRS</rights><lds50>peer_reviewed</lds50><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed><citedby>FETCH-LOGICAL-c352t-9da1c28f01e6277b2028600e46a268cdd1a7cc6a1cfed0e2638c98e942d6fc693</citedby><relation>Lecture Notes in Computer Science</relation></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Uhttps://ebookcentral.proquest.com/covers/3073130-l.jpg</thumbnail><linktopdf>$$Uhttps://link.springer.com/content/pdf/10.1007/3-540-44987-6_7$$EPDF$$P50$$Gspringer$$H</linktopdf><linktohtml>$$Uhttps://link.springer.com/10.1007/3-540-44987-6_7$$EHTML$$P50$$Gspringer$$H</linktohtml><link.rule.ids>309,310,779,780,784,789,790,793,4050,4051,27925,38255,41442,42511</link.rule.ids><backlink>$$Uhttp://pascal-francis.inist.fr/vibad/index.php?action=getRecordDetail&idt=787213$$DView record in Pascal Francis$$Hfree_for_read</backlink></links><search><contributor>Pfitzmann, Birgit</contributor><contributor>Pfitzmann, Birgit</contributor><creatorcontrib>Camenisch, Jan</creatorcontrib><creatorcontrib>Lysyanskaya, Anna</creatorcontrib><title>An Efficient System for Non-transferable Anonymous Credentials with Optional Anonymity Revocation</title><title>Advances in Cryptology - EUROCRYPT 2001</title><description>A credential system is a system in which users can obtain credentials from organizations and demonstrate possession of these credentials. Such a system is anonymous when transactions carried out by the same user cannot be linked. An anonymous credential system is of significant practical relevance because it is the best means of providing privacy for users. In this paper we propose a practical anonymous credential system that is based on the strong RSA assumption and the decisional Diffie-Hellman assumption modulo a safe prime product and is considerably superior to existing ones: (1) We give the first practical solution that allows a user to unlinkably demonstrate possession of a credential as many times as necessary without involving the issuing organization. (2) To prevent misuse of anonymity, our scheme is the first to offer optional anonymity revocation for particular transactions. (3) Our scheme offers separability: all organizations can choose their cryptographic keys independently of each other. Moreover, we suggest more effective means of preventing users from sharing their credentials, by introducing all-or-nothing sharing: a user who allows a friend to use one of her credentials once, gives him the ability to use all of her credentials, i.e., taking over her identity. This is implemented by a new primitive, called circular encryption, which is of independent interest, and can be realized from any semantically secure cryptosystem in the random oracle model.</description><subject>Applied sciences</subject><subject>blind signatures</subject><subject>circular encryption</subject><subject>credential system</subject><subject>Cryptography</subject><subject>e-cash</subject><subject>Exact sciences and technology</subject><subject>Information, signal and communications theory</subject><subject>key-oblivious encryption</subject><subject>Privacy protection</subject><subject>pseudonym system</subject><subject>Signal and communications theory</subject><subject>Telecommunications and information theory</subject><issn>0302-9743</issn><issn>1611-3349</issn><isbn>9783540420705</isbn><isbn>3540420703</isbn><isbn>3540449876</isbn><isbn>9783540449874</isbn><fulltext>true</fulltext><rsrctype>book_chapter</rsrctype><creationdate>2001</creationdate><recordtype>book_chapter</recordtype><recordid>eNotkMuPEzEMxsNTlKVnrpE4B5w4k8exqnYBacVKPM5RmknYgemkJFlQ_3vSbn2xbP_8yf4IecvhPQfQH5ANEpiU1mimnH5CXmNvnGv1lKy44pwhSvuMrK0255kADcNzsgIEwayW-JKs7GAGwQdQr8i61l_QAwVYCSviNwu9TmkKU1wa_XasLe5pyoV-yQtrxS81xeJ3c6SbJS_HfX6odFvi2OnJz5X-m9o9vTu0KS9-vjBTO9Kv8W8O_tR-Q16kTsb1JV-RHzfX37ef2O3dx8_bzS0LOIjG7Oh5ECYBj0povRMgjAKIUnmhTBhH7nUIqkMpjhCFQhOsiVaKUaWgLF6Rd4-6B1-Dn1O_PUzVHcq09-XotNGCY6fYI1X7YPkZi9vl_Ls6Du7kuEPXTXRnh113vPN4US35z0OszcXTQuj_Fz-He39osVSHoJFj18AuI_E_COh_gA</recordid><startdate>2001</startdate><enddate>2001</enddate><creator>Camenisch, Jan</creator><creator>Lysyanskaya, Anna</creator><general>Springer Berlin / Heidelberg</general><general>Springer Berlin Heidelberg</general><general>Springer</general><scope>FFUUA</scope><scope>IQODW</scope></search><sort><creationdate>2001</creationdate><title>An Efficient System for Non-transferable Anonymous Credentials with Optional Anonymity Revocation</title><author>Camenisch, Jan ; Lysyanskaya, Anna</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c352t-9da1c28f01e6277b2028600e46a268cdd1a7cc6a1cfed0e2638c98e942d6fc693</frbrgroupid><rsrctype>book_chapters</rsrctype><prefilter>book_chapters</prefilter><language>eng</language><creationdate>2001</creationdate><topic>Applied sciences</topic><topic>blind signatures</topic><topic>circular encryption</topic><topic>credential system</topic><topic>Cryptography</topic><topic>e-cash</topic><topic>Exact sciences and technology</topic><topic>Information, signal and communications theory</topic><topic>key-oblivious encryption</topic><topic>Privacy protection</topic><topic>pseudonym system</topic><topic>Signal and communications theory</topic><topic>Telecommunications and information theory</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Camenisch, Jan</creatorcontrib><creatorcontrib>Lysyanskaya, Anna</creatorcontrib><collection>ProQuest Ebook Central - Book Chapters - Demo use only</collection><collection>Pascal-Francis</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Camenisch, Jan</au><au>Lysyanskaya, Anna</au><au>Pfitzmann, Birgit</au><au>Pfitzmann, Birgit</au><format>book</format><genre>bookitem</genre><ristype>CHAP</ristype><atitle>An Efficient System for Non-transferable Anonymous Credentials with Optional Anonymity Revocation</atitle><btitle>Advances in Cryptology - EUROCRYPT 2001</btitle><seriestitle>Lecture Notes in Computer Science</seriestitle><date>2001</date><risdate>2001</risdate><volume>2045</volume><spage>93</spage><epage>118</epage><pages>93-118</pages><issn>0302-9743</issn><eissn>1611-3349</eissn><isbn>9783540420705</isbn><isbn>3540420703</isbn><eisbn>3540449876</eisbn><eisbn>9783540449874</eisbn><abstract>A credential system is a system in which users can obtain credentials from organizations and demonstrate possession of these credentials. Such a system is anonymous when transactions carried out by the same user cannot be linked. An anonymous credential system is of significant practical relevance because it is the best means of providing privacy for users. In this paper we propose a practical anonymous credential system that is based on the strong RSA assumption and the decisional Diffie-Hellman assumption modulo a safe prime product and is considerably superior to existing ones: (1) We give the first practical solution that allows a user to unlinkably demonstrate possession of a credential as many times as necessary without involving the issuing organization. (2) To prevent misuse of anonymity, our scheme is the first to offer optional anonymity revocation for particular transactions. (3) Our scheme offers separability: all organizations can choose their cryptographic keys independently of each other. Moreover, we suggest more effective means of preventing users from sharing their credentials, by introducing all-or-nothing sharing: a user who allows a friend to use one of her credentials once, gives him the ability to use all of her credentials, i.e., taking over her identity. This is implemented by a new primitive, called circular encryption, which is of independent interest, and can be realized from any semantically secure cryptosystem in the random oracle model.</abstract><cop>Germany</cop><pub>Springer Berlin / Heidelberg</pub><doi>10.1007/3-540-44987-6_7</doi><oclcid>958521506</oclcid><tpages>26</tpages><oa>free_for_read</oa></addata></record> |
| fulltext | fulltext |
| identifier | ISSN: 0302-9743 |
| ispartof | Advances in Cryptology - EUROCRYPT 2001, 2001, Vol.2045, p.93-118 |
| issn | 0302-9743 1611-3349 |
| language | eng |
| recordid | cdi_pascalfrancis_primary_787213 |
| source | Springer Books |
| subjects | Applied sciences blind signatures circular encryption credential system Cryptography e-cash Exact sciences and technology Information, signal and communications theory key-oblivious encryption Privacy protection pseudonym system Signal and communications theory Telecommunications and information theory |
| title | An Efficient System for Non-transferable Anonymous Credentials with Optional Anonymity Revocation |
| url | https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-02T19%3A14%3A28IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_pasca&rft_val_fmt=info:ofi/fmt:kev:mtx:book&rft.genre=bookitem&rft.atitle=An%20Efficient%20System%20for%20Non-transferable%20Anonymous%20Credentials%20with%20Optional%20Anonymity%20Revocation&rft.btitle=Advances%20in%20Cryptology%20-%20EUROCRYPT%202001&rft.au=Camenisch,%20Jan&rft.date=2001&rft.volume=2045&rft.spage=93&rft.epage=118&rft.pages=93-118&rft.issn=0302-9743&rft.eissn=1611-3349&rft.isbn=9783540420705&rft.isbn_list=3540420703&rft_id=info:doi/10.1007/3-540-44987-6_7&rft_dat=%3Cproquest_pasca%3EEBC3073130_13_104%3C/proquest_pasca%3E%3Curl%3E%3C/url%3E&rft.eisbn=3540449876&rft.eisbn_list=9783540449874&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=EBC3073130_13_104&rft_id=info:pmid/&rfr_iscdi=true |