Cryptology ePrint Archive: Report 2010/496

Efficient Attributes for Anonymous Credentials (Extended Version)

Jan Camenisch and Thomas Groß

Abstract: We extend the Camenisch-Lysyanskaya anonymous credential system such that selective disclosure of attributes becomes highly efficient. The resulting system significantly improves upon existing approaches, which suffer from a linear complexity in the total number of attributes. This limitation makes them unfit for many practical applications, such as electronic identity cards. Our system can incorporate an large number of binary and finite-set attributes without significant performance impact. Our approach compresses all such attributes into a single attribute base and, thus, boosts the efficiency of \emph{all} proofs of possession. The core idea is to encode discrete binary and finite-set values as prime numbers. We use the divisibility property for efficient proofs of their presence or absence. We contribute efficient methods for conjunctions and disjunctions, in addition. The system builds on the Strong-RSA assumption.

We demonstrate the aptness of our method in realistic application scenarios, such as electronic identity cards and complex/structured credentials. Our method has crucial advantages in devices with restricted computational capabilities, such as smartcards and cell phones.

Category / Keywords: public-key cryptography / Anonymous Credential Systems

Publication Info: Earlier version in ACM CCS 2008

Date: received 24 Sep 2010, last revised 27 Sep 2010

Contact author: tgr at zurich ibm com

Available format(s): PDF | BibTeX Citation

Version: 20100927:130550 (All versions of this report)

Short URL: ia.cr/2010/496

Discussion forum: Show discussion | Start new discussion