Credential-based systems for the anonymous delegation of rights

An anonymous delegation system enables individuals to retrieve rights and to delegate different subparts of these rights to different entities. The delegation procedure is anonymous, such that no collusion of entities can track an individual’s delegation behavior. On the other hand, it is ensured that a user cannot abuse her delegation capabilities. This paper introduces a general delegation model and presents three implementations. Our implementations are based on credential systems and provide both anonymity for the individual and security for the organizations. The implementations are compared based on their functionality, privacy and security characteristics. Additionally, some guidelines are given for choosing a particular implementation based on the application’s requirements. CR Subject Classification : E.3 [Data]: Data Encryption – Public key cryptosystems. Credential-based systems for the anonymous delegation of rights Liesje Demuynck Bart De Decker