当前位置: X-MOL 学术Int. J. Inf. Secur. › 论文详情
Our official English website, www.x-mol.net, welcomes your feedback! (Note: you will need to create a separate account there.)
Disposable dynamic accumulators: toward practical privacy-preserving mobile eIDs with scalable revocation
International Journal of Information Security ( IF 3.2 ) Pub Date : 2019-07-31 , DOI: 10.1007/s10207-019-00458-7
Michael Hölzl , Michael Roland , Omid Mir , René Mayrhofer

Providing methods to anonymously validate user identity is essential in many applications of electronic identity (eID) systems. A feasible approach to realize such a privacy-preserving eID is the usage of group signature protocols or pseudonym-based signatures. However, providing a revocation mechanism that preserves privacy is often the bottleneck for the scalability of such a system. In order to bridge this gap between practicability and privacy, we propose a new pseudonym-based mobile eID signature scheme suitable for smart cards and secure elements that also enables efficient and scalable revocation checks. By using a pseudorandom function, we derive one-time verification tokens used for identity verification as well as revocation checks and generate proofs of validity using a new method referred to as disposable dynamic accumulators. Our scheme preserves unlinkability and anonymity of the eID holder even beyond revocation and does not require online connectivity to a trusted party for verification and revocation checks.

中文翻译:

一次性动态累加器:面向具有扩展撤销功能的实用的隐私保护移动eID

在电子身份(eID)系统的许多应用中,提供用于匿名验证用户身份的方法至关重要。实现这种保护隐私的eID的可行方法是使用组签名协议或基于假名的签名。但是,提供保留隐私的吊销机制通常是此类系统可伸缩性的瓶颈。为了弥合实用性和隐私之间的差距,我们提出了一种适用于智能卡和安全元素的,基于化名的新移动eID签名方案,该方案还能够进行有效且可扩展的吊销检查。通过使用伪随机函数,我们导出用于身份验证以及吊销检查的一次性验证令牌,并使用称为“一次性动态蓄电池。我们的方案甚至可以保留eID持有者的不可链接性和匿名性,甚至不需要撤销,并且不需要在线连接到受信任方即可进行验证和撤销检查。
更新日期:2019-07-31
down
wechat
bug