Anonymous Revocable Attestation
نویسندگان
چکیده
There are hardware devices that need to attest by digital signature to their belonging to a particular class but that need, for reasons of privacy, to operate anonymously. Should such a device be compromised, its attestation key should be revoked. Through conventional techniques it is difficult to achieve both anonymity and revocation, although either is easily achievable by itself. In this paper we present a new mechanism, attestation pools, to accomplish both goals simultaneously. We also give equations for guiding an implementer in choosing parameters the use of attestation pools.
منابع مشابه
Formal Analysis of Anonymity in ECC-Based Direct Anonymous Attestation Schemes
A definition of user-controlled anonymity is introduced for Direct Anonymous Attestation schemes. The definition is expressed as an equivalence property suited to automated reasoning using ProVerif and the practicality of the definition is demonstrated by examining the ECC-based Direct Anonymous Attestation protocol by Brickell, Chen & Li. We show that this scheme is secure under the assumption...
متن کاملFormal analysis of privacy in Direct Anonymous Attestation schemes
This article introduces a definition of privacy for Direct Anonymous Attestation schemes. The definition is expressed as an equivalence property which is suited to automated reasoning using Blanchet’s ProVerif. The practicality of the definition is demonstrated by analysing the RSA-based Direct Anonymous Attestation protocol by Brickell, Camenisch & Chen. The analysis discovers a vulnerability ...
متن کاملConversion Schemes for Unlinkable Signatures That Include Revocable Unlinkability
This paper introduces the concept of “revocable unlinkability” for unlinkable anonymous signatures and proposes a generalized scheme that modifies the signatures to include revocable unlinkability. Revocable unlinkability provides a condition in which multiple messages signed using an unlinkable anonymous signature are unlinkable for anyone except the unlinkability revocation manager. Noteworth...
متن کاملCovert Identity Information in Direct Anonymous Attestation (DAA)
Direct anonymous attestation (DAA) is a practical and efficient protocol for authenticated attestation with satisfaction of strong privacy requirements. This recently developed protocol is already adopted by the Trusted Computing Group and included in the standardized trusted platform module TPM. This paper shows that the main privacy goal of DAA can be violated by the inclusion of covert ident...
متن کاملA Method to Implement Direct Anonymous Attestation
In this report we present an efficient anonymous authentication scheme that works in a manner similarly to the so-called Direct Anonymous Attestation in the setting of the Trusted Computing Platform. Our construction implements features such as total anonymity, variable anonymity, and rogue TPM tagging. The new scheme is significantly simpler, and more efficient than the current solution that h...
متن کامل