Title

Privacy-Preserving Credentials Upon Trusted Computing Augmented Servers

Publication Type

Conference Proceeding Article

Publication Date

3-2007

Abstract

Credentials are an indispensable means for service access control in electronic commerce. However, regular credentials such as X.509 certificates and SPKI/SDSI certificates do not address user privacy at all, while anonymous credentials that protect user privacy are complex and have compatibility problems with existing PKIs. In this paper we propose privacy-preserving credentials, a concept between regular credentials and anonymous credentials. The privacy-preserving credentials enjoy the advantageous features of both regular credentials and anonymous credentials, and strike a balance between user anonymity and system complexity. We achieve this by employing computer servers equipped with TPMs (Trusted Platform Modules). We present a detailed construction for ElGamal encryption credentials. We also present XML-based specification for the privacy-preserving credentials.

Discipline

Information Security

Research Areas

Information Security and Trust

Publication

Information Security Practice and Experience: Third International Conference, ISPEC 2007, Hong Kong, China, May 7-9: Proceedings

Volume

4464

First Page

177

Last Page

192

ISBN

9783540721635

Identifier

10.1007/978-3-540-72163-5_15

Publisher

Springer Verlag

City or Country

Hong Kong

Additional URL

http://dx.doi.org/10.1007/978-3-540-72163-5_15