An Accumulator Based on Bilinear Maps and Efficient Revocation for Anonymous Credentials

Jan Camenisch, Markulf Kohlweiss, Claudio Soriente

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

The success of electronic authentication systems, be it e-ID card systems or Internet authentication systems such as CardSpace, highly depends on the provided level of user-privacy. Thereby, an important requirement is an efficient means for revocation of the authentication credentials. In this paper we consider the problem of revocation for certificate-based privacy-protecting authentication systems. To date, the most efficient solutions for revocation for such systems are based on cryptographic accumulators. Here, an accumulate of all currently valid certificates is published regularly and each user holds a witness enabling her to prove the validity of her (anonymous) credential while retaining anonymity. Unfortunately, the users’ witnesses must be updated at least each time a credential is revoked. For the know solutions, these updates are computationally very expensive for users and/or certificate issuers which is very problematic as revocation is a frequent event as practice shows.

In this paper, we propose a new dynamic accumulator scheme based on bilinear maps and show how to apply it to the problem of revocation of anonymous credentials. In the resulting scheme, proving a credential’s validity and updating witnesses both come at (virtually) no cost for credential owners and verifiers. In particular, updating a witness requires the issuer to do only one multiplication per addition or revocation of a credential and can also be delegated to untrusted entities from which a user could just retrieve the updated witness. We believe that thereby we provide the first authentication system offering privacy protection suitable for implementation with electronic tokens such as eID cards or drivers’ licenses.
Original languageEnglish
Title of host publicationPublic Key Cryptography - PKC 2009, 12th International Conference on Practice and Theory in Public Key Cryptography, Irvine, CA, USA, March 18-20, 2009. Proceedings
PublisherSpringer-Verlag
Pages481-500
Number of pages20
ISBN (Electronic)978-3-642-00468-1
ISBN (Print)978-3-642-00467-4
DOIs
Publication statusPublished - 2009
Event12th International Conference on Practice and Theory in Public Key Cryptography - Bren School of Information and Computer Sciences, University of California, Irvine, United States
Duration: 18 Mar 200920 Mar 2009
https://www.iacr.org/workshops/pkc2009/index.html

Conference

Conference12th International Conference on Practice and Theory in Public Key Cryptography
Abbreviated titlePKC 2009
Country/TerritoryUnited States
CityIrvine
Period18/03/0920/03/09
Internet address

Fingerprint

Dive into the research topics of 'An Accumulator Based on Bilinear Maps and Efficient Revocation for Anonymous Credentials'. Together they form a unique fingerprint.

Cite this