Toggle Main Menu Toggle Search

Open Access padlockePrints

MoniPoly---An Expressive q-SDH-Based Anonymous Attribute-Based Credential System [Extended Version]

Lookup NU author(s): Dr Syh Yuan TanORCiD, Professor Thomas Gross

Downloads


Licence

This is the authors' accepted manuscript of a report published in its final definitive form in 2020. For re-use rights please refer to the publishers terms and conditions.


Abstract

Modern attribute-based anonymous credential (ABC) systems benefit from special encodings that yield expressive and highly efficient show proofs on logical statements. The technique was first proposed by Camenisch and Groß, who constructed an SRSA-based ABC system with prime-encoded attributes that offers efficient AND, OR and NOT proofs. While other ABC frameworks have adopted constructions in the same vein, the Camenisch-Groß ABC has been the most expressive and asymptotically most efficient proof system to date, even if it was constrained by the requirement of a trusted message-space setup and an inherent restriction to finite-set attributes encoded as primes. In this paper, combining a new set commitment scheme and a SDH-based signature scheme, we present a provably secure ABC system that supports show proofs for complex statements. This construction is not only more expressive than existing approaches, it is also highly efficient under unrestricted attribute space due to its ECC protocols only requiring a constant number of bilinear pairings by the verifier; none by the prover. Furthermore, we introduce strong security models for impersonation and unlinkability under adaptive active and concurrent attacks to allow for the expressiveness of our ABC as well as for a systematic comparison to existing schemes. Given this foundation, we are the first to comprehensively formally prove the security of an ABC with expressive show proofs. Specifically, we prove the security against impersonation under the qq-(co-)SDH assumption with a tight reduction. Besides the set commitment scheme, which may be of independent interest, our security models can serve as a foundation for the design of future ABC systems.


Publication metadata

Author(s): Tan SY, Gross T

Publication type: Report

Publication status: Published

Series Title:

Type: ePrint Report

Year: 2020

Pages: 1-62

Online publication date: 15/06/2020

Acceptance date: 18/05/2020

Report Number: 2020/587

Place Published: Cryptology ePrint Archive

URL: https://eprint.iacr.org/2020/587


Share