Paper 2011/101

Lightweight Anonymous Authentication with TLS and DAA for Embedded Mobile Devices

Liqun Chen, Kurt Dietrich, Hans Löhr, Ahmad-Reza Sadeghi, Christian Wachsmann, and Johannes Winter

Abstract

Although anonymous authentication has been extensively studied, so far no scheme has been widely adopted in practice. A particular issue with fully anonymous authentication schemes is that users cannot easily be prevented from copying and sharing credentials. In this paper, we propose an anonymous authentication scheme for mobile devices that prevents copying and sharing of credentials based on hardware security features. Our system is an optimized adaptation of an existing direct anonymous attestation (DAA) scheme, specifically designed for resource-constrained mobile devices. Our solution provides (i) anonymity and untraceability of mobile embedded devices against service providers, (ii) secure device authentication even against collusions of malicious service providers, and (iii) allows for revocation of authentication credentials. We present a new cryptographic scheme with a proof of security, as well as an implementation on ARM TrustZone. Moreover, we evaluate the efficiency of our approach and demonstrate its suitability for mobile devices.

Note: This is the full version of the ISC 2010 paper including detailed security proofs.

Metadata
Available format(s)
PDF
Category
Cryptographic protocols
Publication info
Published elsewhere. Full version of ISC 2010 paper.
Keywords
Mobile PhonesPrivacyAnonymityARM TrustZone
Contact author(s)
christian wachsmann @ trust cased de
History
2011-03-02: received
Short URL
https://ia.cr/2011/101
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2011/101,
      author = {Liqun Chen and Kurt Dietrich and Hans Löhr and Ahmad-Reza Sadeghi and Christian Wachsmann and Johannes Winter},
      title = {Lightweight Anonymous Authentication with {TLS} and {DAA} for Embedded Mobile Devices},
      howpublished = {Cryptology {ePrint} Archive, Paper 2011/101},
      year = {2011},
      url = {https://eprint.iacr.org/2011/101}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.