Privacy-preserving credentials upon trusted computing augmented servers

Authors:
Yanjiang Yang;Robert H. Deng;Feng Bao
Affiliations:
School of Information Systems, Singapore Management University, Singapore and Institute for Infocomm Research, Singapore;School of Information Systems, Singapore Management University, Singapore and Institute for Infocomm Research, Singapore;School of Information Systems, Singapore Management University, Singapore and Institute for Infocomm Research, Singapore
Venue:
ISPEC'07 Proceedings of the 3rd international conference on Information security practice and experience
Year:
2007

Citing 18
Cited 0

Security without identification: transaction systems to make big brother obsolete

Communications of the ACM
The knowledge complexity of interactive proof-systems

STOC '85 Proceedings of the seventeenth annual ACM symposium on Theory of computing
The nature of a useable PKI

Computer Networks: The International Journal of Computer and Telecommunications Networking - Special issue on computer network security
Rethinking Public Key Infrastructures and Digital Certificates: Building in Privacy

Rethinking Public Key Infrastructures and Digital Certificates: Building in Privacy
Design and implementation of the idemix anonymous credential system

Proceedings of the 9th ACM conference on Computer and communications security
A Certified Digital Signature

CRYPTO '89 Proceedings of the 9th Annual International Cryptology Conference on Advances in Cryptology
A Unified Scheme for Resource Protection in Automated Trust Negotiation

SP '03 Proceedings of the 2003 IEEE Symposium on Security and Privacy
Secret Handshakes from Pairing-Based Key Agreements

SP '03 Proceedings of the 2003 IEEE Symposium on Security and Privacy
Oblivious signature-based envelope

Proceedings of the twenty-second annual symposium on Principles of distributed computing
Terra: a virtual machine-based platform for trusted computing

SOSP '03 Proceedings of the nineteenth ACM symposium on Operating systems principles
Privacy in electronic commerce and the economics of immediate gratification

EC '04 Proceedings of the 5th ACM conference on Electronic commerce
Hidden Credentials

Proceedings of the 2003 ACM workshop on Privacy in the electronic society
Direct anonymous attestation

Proceedings of the 11th ACM conference on Computer and communications security
Concealing complex policies with hidden credentials

Proceedings of the 11th ACM conference on Computer and communications security
Trusted Computing Platforms: Design and Applications

Trusted Computing Platforms: Design and Applications
Peer-to-peer access control architecture using trusted computing technology

Proceedings of the tenth ACM symposium on Access control models and technologies
Design and implementation of a TCG-based integrity measurement architecture

SSYM'04 Proceedings of the 13th conference on USENIX Security Symposium - Volume 13
OACerts: oblivious attribute certificates

ACNS'05 Proceedings of the Third international conference on Applied Cryptography and Network Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

Credentials are an indispensable means for service access control in electronic commerce. However, regular credentials such as X.509 certificates and SPKI/SDSI certificates do not address user privacy at all, while anonymous credentials that protect user privacy are complex and have compatibility problems with existing PKIs. In this paper we propose privacy-preserving credentials, a concept between regular credentials and anonymous credentials. The privacy-preserving credentials enjoy the advantageous features of both regular credentials and anonymous credentials, and strike a balance between user anonymity and system complexity. We achieve this by employing computer servers equipped with TPMs (Trusted Platform Modules). We present a detailed construction for ElGamal encryption credentials. We also present XMLbased specification for the privacy-preserving credentials.