Efficient Selective Disclosure on Smart Cards Using Idemix
نویسندگان
چکیده
In this paper we discuss an efficient implementation for selective disclosure of attribute-based credentials on smart cards. In this context we concentrate on the implementation of this core feature of IBM’s Identity Mixer (Idemix) technology. Using the MULTOS platform we are the first to provide this feature on a smart card. We compare Idemix with Microsoft’s U-Prove technology, as the latter also offers selective disclosure of attributes and has been implemented on a smart card [9].
منابع مشابه
Efficient Implementation of AND, OR and NOT Operators for ABCs
In the last few years several practitioners have proposed different strategies for implementing Attribute-based credentials (ABCs) on smart cards [3, 4, 20–23]. ABCs allow citizens to prove certain properties about themselves without necessarily revealing their full identity. The Idemix ABC [10] is the most versatile ABC system proposed in the literature, supporting pseudonyms, equality proof o...
متن کاملTowards a Full-Featured Implementation of Attribute Based Credentials on Smart Cards
Attribute-based Credentials (ABCs) allow citizens to prove certain properties about themselves without necessarily revealing their full identity. Smart cards are an attractive container for such credentials, for security and privacy reasons. But their limited processing power and random access storage capacity pose a severe challenge. Recently, we, the IRMA team, managed to fully implement a li...
متن کاملBeyond the selective disclosure of ABCs on RAM-constrained devices
The utilization of private Attribute-based credentials (ABC) in everyday life could enable citizens to only partially reveal their identity in economic transactions and communication with public institutions. This means citizens could control in a practical way the information related to their own life and identity in many contexts. At the time of writing, the Identity Mixer (Idemix) by IBM is ...
متن کاملSecure & privacy-preserving eID systems with Attribute-based credentials
National electronic identification (eID) systems aim to provide universal, unique and reliable identification and authentication mechanisms to the citizens. Many countries in Europe have already introduced or are about to introduce electronic ID cards to their citizens. The increasing number of eID infrastructures and initiatives have been taken to scale the eID systems to support both eGovernm...
متن کاملIntegration of hardware tokens in the Idemix library
The Idemix library provides the implementation of the Camenisch-Lysyanskaya (CL) Attribute-based Credential System (ABC), its protocol extensions and the U-Prove ABC [3, 7]. In the case of the CL ABC, the library can delegate some cryptographic operations to a hardware token (e.g. a smart card). In the last few years several practitioners have proposed different implementations of ABCs in smart...
متن کامل