A secure and practical approach for providing anonymity protection for trusted platforms

Authors:
Kurt Dietrich;Johannes Winter
Affiliations:
Institute for Applied Information Processing and Communications, University of Technology Graz, Graz, Austria;Institute for Applied Information Processing and Communications, University of Technology Graz, Graz, Austria
Venue:
ICICS'10 Proceedings of the 12th international conference on Information and communications security
Year:
2010

Citing 9
Cited 0

ASN.1: communication between heterogeneous systems

ASN.1: communication between heterogeneous systems
Efficient Identification and Signatures for Smart Cards

CRYPTO '89 Proceedings of the 9th Annual International Cryptology Conference on Advances in Cryptology
How to Leak a Secret

ASIACRYPT '01 Proceedings of the 7th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology
1-out-of-n Signatures from a Variety of Keys

ASIACRYPT '02 Proceedings of the 8th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology
Direct anonymous attestation

Proceedings of the 11th ACM conference on Computer and communications security
Property-Based Attestation without a Trusted Third Party

ISC '08 Proceedings of the 11th international conference on Information Security
A practical approach for establishing trust relationships between remote platforms using trusted computing

TGC'07 Proceedings of the 3rd conference on Trustworthy global computing
Short linkable ring signatures for e-voting, e-cash and attestation

ISPEC'05 Proceedings of the First international conference on Information Security Practice and Experience
Ring signatures of sub-linear size without random oracles

ICALP'07 Proceedings of the 34th international conference on Automata, Languages and Programming

Quantified Score

Hi-index	0.00

Visualization

Abstract

Two different anonymisation schemes for Trusted Computing platforms have been proposed by the Trusted Computing Group - the PrivacyCA scheme and the Direct Anonymous Attestation scheme. These schemes rely on trusted third parties that issue either temporary one-time certificates or group credentials to trusted platforms which enable these platforms to create anonymous signatures on behalf of a group. Moreover, the schemes require trust in these third parties and the platforms have to be part of their groups. However, there are certain use-cases where group affiliation is either not preferred or cannot be established. Hence, these existing schemes cannot be used in all situations where anonymity is needed and a new scheme without a trusted third party would be required. In order to overcome these problems, we present an anonymity preserving approach that allows trusted platforms to protect their anonymity without involvement of a trusted third party. We show how this new scheme can be used with existing Trusted Platform Modules version 1.2 and provide a detailed discussion of our proof-of-concept prototype implementation.