Publication Type
Conference Proceeding Article
Version
submittedVersion
Publication Date
3-2007
Abstract
Credentials are an indispensable means for service access control in electronic commerce. However, regular credentials such as X.509 certificates and SPKI/SDSI certificates do not address user privacy at all, while anonymous credentials that protect user privacy are complex and have compatibility problems with existing PKIs. In this paper we propose privacy-preserving credentials, a concept between regular credentials and anonymous credentials. The privacy-preserving credentials enjoy the advantageous features of both regular credentials and anonymous credentials, and strike a balance between user anonymity and system complexity. We achieve this by employing computer servers equipped with TPMs (Trusted Platform Modules). We present a detailed construction for ElGamal encryption credentials. We also present XML-based specification for the privacy-preserving credentials.
Discipline
Information Security
Research Areas
Cybersecurity
Publication
Information Security Practice and Experience: Third International Conference, ISPEC 2007, Hong Kong, China, May 7-9: Proceedings
Volume
4464
First Page
177
Last Page
192
ISBN
9783540721635
Identifier
10.1007/978-3-540-72163-5_15
Publisher
Springer
City or Country
Berlin
Citation
YANG, Yanjiang; DENG, Robert H.; and BAO, Feng.
Privacy-Preserving Credentials Upon Trusted Computing Augmented Servers. (2007). Information Security Practice and Experience: Third International Conference, ISPEC 2007, Hong Kong, China, May 7-9: Proceedings. 4464, 177-192.
Available at: https://ink.library.smu.edu.sg/sis_research/388
Copyright Owner and License
Publisher
Creative Commons License
This work is licensed under a Creative Commons Attribution-NonCommercial-No Derivative Works 4.0 International License.
Additional URL
https://doi.org/10.1007/978-3-540-72163-5_15