当前位置: X-MOL 学术IEEE Trans. Inform. Forensics Secur. › 论文详情
Our official English website, www.x-mol.net, welcomes your feedback! (Note: you will need to create a separate account there.)
PERCE: A Permissioned Redactable Credentials Scheme for a Period of Membership
IEEE Transactions on Information Forensics and Security ( IF 6.3 ) Pub Date : 2023-05-10 , DOI: 10.1109/tifs.2023.3274435
Yang Liu 1 , Debiao He 2 , Qi Feng 2 , Min Luo 2 , Kim-Kwang Raymond Choo 3
Affiliation  

The anonymous credential has broad-ranging applications, for example for the pay-as-you-go strategy in the electronic subscription. However, the ‘plain vanilla’ pay-as-you-go strategy may not be suitable for non-regular users since the latter group is likely to require a tighter identity supervision mechanism. We also note that a key building block in the construction of an anonymous credential system is identity supervision. Since identity supervision is more than revocation, the approach to regulating user behavior needs to be both reasonable and practical. In a situation where the user is allowed to control their own identities, the latter approach could be more flexible compared to the revocation. There are existing works about the limitation on the k-times or epochs. However, due to the weaknesses of these single restrictions, the combination of the customized k-times and epochs is necessary and remains to be done. In this paper, we present a permissioned redactable credentials scheme, which allows fine-grained supervision, user control, and user redaction. In our approach, we choose times and epochs as the regulation dimensions, which limits users invoke the credential show method for customized times in each epoch determined by the certificate authority. The users could also redact their credentials to realize selective disclosure. We then evaluate the proposed scheme’s performance and present a comparative summary to demonstrate potential utility.

中文翻译:


PERCE:一段时期内的许可可编辑凭证计划



匿名凭证具有广泛的应用,例如电子订阅中的即用即付策略。然而,“普通”的即用即付策略可能不适合非普通用户,因为后者可能需要更严格的身份监管机制。我们还注意到,构建匿名凭证系统的一个关键组成部分是身份监管。由于身份监管不仅仅是撤销,因此规范用户行为的方法需要既合理又实用。在允许用户控制自己身份的情况下,与撤销相比,后一种方法可能更灵活。已有关于 k 次或纪元限制的工作。然而,由于这些单一限制的弱点,定制的k次和epoch的组合是必要的并且仍有待完成。在本文中,我们提出了一种经过许可的可编辑凭证方案,该方案允许细粒度的监督、用户控制和用户编辑。在我们的方法中,我们选择时间和纪元作为规则维度,这限制了用户在证书颁发机构确定的每个纪元中调用凭证显示方法的自定义次数。用户还可以编辑他们的凭据以实现选择性披露。然后,我们评估所提出方案的性能并提出比较摘要以证明潜在的效用。
更新日期:2023-05-10
down
wechat
bug