Paper 2014/067

Efficient and Strongly Secure Dynamic Domain-Specific Pseudonymous Signatures for ID Documents

Julien Bringer, Hervé Chabanne, Roch Lescuyer, and Alain Patey

Abstract

The notion of domain-specific pseudonymous signatures (DSPS) has recently been introduced for private authentication of ID documents, like passports, that embed a chip with computational abilities. Thanks to this privacy-friendly primitive, the document authenticates to a service provider through a reader and the resulting signatures are anonymous, linkable inside the service and unlinkable across services. A subsequent work proposes to enhance security and privacy of DSPS through group signatures techniques. In this paper, we improve on these proposals in three ways. First, we spot several imprecisions in previous formalizations. We consequently provide a clean security model for \emph{dynamic domain-specific pseudonymous signatures}, where we correctly address the dynamic and adaptive case. Second, we note that using group signatures is somehow an overkill for constructing DSPS, and we provide an optimized construction that achieves the same strong level of security while being more efficient. Finally, we study the implementation of our protocol in a chip and show that our solution is well-suited for these limited environments. In particular, we propose a secure protocol for delegating the most demanding operations from the chip to the reader.

Metadata
Available format(s)
PDF
Category
Public-key cryptography
Publication info
Published elsewhere. MINOR revision.FINANCIAL CRYPTOGRAPHY AND DATA SECURITY 2014
Keywords
ID documentsPrivacy-enhancing cryptographyDomain-specific pseudonymous signatures
Contact author(s)
roch lescuyer @ morpho com
History
2016-03-11: last of 3 revisions
2014-01-30: received
See all versions
Short URL
https://ia.cr/2014/067
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2014/067,
      author = {Julien Bringer and Hervé Chabanne and Roch Lescuyer and Alain Patey},
      title = {Efficient and Strongly Secure Dynamic Domain-Specific Pseudonymous Signatures for ID Documents},
      howpublished = {Cryptology ePrint Archive, Paper 2014/067},
      year = {2014},
      note = {\url{https://eprint.iacr.org/2014/067}},
      url = {https://eprint.iacr.org/2014/067}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.