Revocation of credentials in Secret Handshakes is a difficult challenge, as it mixes the conflicting requirements of tracing revoked users and of the untraceability and unlinkability of legitimate protocol players. The schemes proposed in the literature are either limited versions of secret handshake supporting revocation, or they support more complete versions of secret handshake with no possibility of introducing revocation. In this paper we present a simple protocol that allows a user to prove to a verifier possession of a credential. Credentials can be revoked simply by publishing a value in a revocation list. This protocol is extremely flexible, as with it, we can achieve revocation for each of the different nuances of Secret Handshakes known in the literature. We prove the security of the new scheme without random oracles.
Secret handshakes with revocation support
ICISC 2009, 12th International Conference on Information Security and Cryptology, December 2-4, 2009, Seoul, Korea / Also published in "Lecture Notes in Computer Science", Vol 5984/2010
Type:
Conférence
City:
Seoul
Date:
2009-12-02
Department:
Sécurité numérique
Eurecom Ref:
2923
Copyright:
© Springer. Personal use of this material is permitted. The definitive version of this paper was published in ICISC 2009, 12th International Conference on Information Security and Cryptology, December 2-4, 2009, Seoul, Korea / Also published in "Lecture Notes in Computer Science", Vol 5984/2010 and is available at : http://dx.doi.org/10.1007/978-3-642-14423-3_19
See also:
PERMALINK : https://www.eurecom.fr/publication/2923