Paper 2019/1097

Anonymous Transactions with Revocation and Auditing in Hyperledger Fabric

Dmytro Bogatov, Angelo De Caro, Kaoutar Elkhiyaoui, and Björn Tackmann

Abstract

In permissioned blockchain systems, participants are admitted to the network by receiving a credential from a certification authority. Each transaction processed by the network is required to be authorized by a valid participant who authenticates via her credential. Use case settings where privacy is a concern thus require proper privacy-preserving authentication and authorization mechanisms. Anonymous credential schemes allow a user to authenticate while showing only those attributes necessary in a given setting. This makes them a great tool for authorizing transactions in permissioned blockchain systems based on the user's attributes. In most setups, there is one distinct certification authority for each organization in the network. Consequently, the use of plain anonymous credential schemes still leaks the association of a user to the organization that issued her credentials. Camenisch, Drijvers and Dubovitskaya (CCS 2017) therefore suggest the use of a delegatable anonymous credential scheme to also hide that remaining piece of information. In this paper, we propose the revocation and auditability - two functionalities that are necessary for real-world adoption - and integrate them into the scheme. We present a complete protocol, its security definition and the proof, and provide its open-source implementation. Our distributed-setting performance measurements show that the integration of the scheme with Hyperledger Fabric, while incurring an overhead in comparison to the less privacy-preserving solutions, is practical for settings with stringent privacy requirements.

Note: See presentation: https://dbogatov.org/assets/docs/cans-2021-presentation.pdf

Metadata
Available format(s)
PDF
Category
Cryptographic protocols
Publication info
Published elsewhere. Major revision. Cryptology and Network Security
DOI
10.1007/978-3-030-92548-2_23
Keywords
blockchainpermissioned blockchainanonymous credentialshyperledger fabric
Contact author(s)
dmytro @ dbogatov org
History
2022-01-24: last of 10 revisions
2019-09-29: received
See all versions
Short URL
https://ia.cr/2019/1097
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2019/1097,
      author = {Dmytro Bogatov and Angelo De Caro and Kaoutar Elkhiyaoui and Björn Tackmann},
      title = {Anonymous Transactions with Revocation and Auditing in Hyperledger Fabric},
      howpublished = {Cryptology ePrint Archive, Paper 2019/1097},
      year = {2019},
      doi = {10.1007/978-3-030-92548-2_23},
      note = {\url{https://eprint.iacr.org/2019/1097}},
      url = {https://eprint.iacr.org/2019/1097}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.