TY - JOUR
T1 - Fast Revocation of Attribute-Based Credentials for Both Users and Verifiers
AU - Lueks, Wouter
AU - Alpár, Greg
AU - Hoepman, J-H.
AU - Vullers, P.
PY - 2017/6
Y1 - 2017/6
N2 - Attribute-based credentials allow a user to prove properties about herself anonymously. Revoking such credentials, which requires singling them out, is hard because it is at odds with anonymity. All revocation schemes proposed to date either sacrifice anonymity altogether, require the parties to be online, or put high load on the user or the verifier. As a result, these schemes are either too complicated for low-powered devices such as smart cards or they do not scale. We propose a new revocation scheme that has a very low computational cost for users and verifiers, and does not require users to process updates. We trade only a limited, but well-defined, amount of anonymity to make the first practical revocation scheme that is efficient at large scales and fast enough for smart cards.
AB - Attribute-based credentials allow a user to prove properties about herself anonymously. Revoking such credentials, which requires singling them out, is hard because it is at odds with anonymity. All revocation schemes proposed to date either sacrifice anonymity altogether, require the parties to be online, or put high load on the user or the verifier. As a result, these schemes are either too complicated for low-powered devices such as smart cards or they do not scale. We propose a new revocation scheme that has a very low computational cost for users and verifiers, and does not require users to process updates. We trade only a limited, but well-defined, amount of anonymity to make the first practical revocation scheme that is efficient at large scales and fast enough for smart cards.
U2 - 10.1016/j.cose.2016.11.018
DO - 10.1016/j.cose.2016.11.018
M3 - Article
SN - 0167-4048
VL - 67
SP - 308
EP - 323
JO - Computers & Security
JF - Computers & Security
ER -