Paper 2021/1680

Improved Constructions of Anonymous Credentials From Structure-Preserving Signatures on Equivalence Classes

Aisling Connolly
Pascal Lafourcade
Octavio Perez Kempner

Anonymous attribute-based credentials (ABCs) are a powerful tool allowing users to authenticate while maintaining privacy. When instantiated from structure-preserving signatures on equivalence classes (SPS-EQ) we obtain a controlled form of malleability, and hence increased functionality and privacy for the user. Existing constructions consider equivalence classes on the message space, allowing the joint randomization of credentials and the corresponding signatures on them. In this work, we additionally consider equivalence classes on the signing-key space. In this regard, we obtain a signer-hiding notion, where the issuing organization is not revealed when a user shows a credential. To achieve this, we instantiate the ABC framework of Fuchsbauer, Hanser, and Slamanig (FHS19, Journal of Cryptology '19) with a recent SPS-EQ scheme (ASIACRYPT '19) modified to support a fully adaptive NIZK from the framework of Couteau and Hartmann (CRYPTO '20). We also show how to obtain mercurial signatures (CT-RSA '19), extending the application of our construction to anonymous delegatable credentials. To further increase functionality and efficiency, we augment the set-commitment scheme of FHS19 to support openings on attribute sets disjoint from those possessed by the user, while integrating a proof of exponentiation to allow for a more efficient verifier. Instantiating in the CRS model, we obtain an efficient credential system, anonymous under malicious organization keys, with increased expressiveness and privacy, proven secure in the standard model.

Note: Erratum added regarding the signer-hiding property of the signature construction.

Available format(s)
Public-key cryptography
Publication info
A major revision of an IACR publication in PKC 2022
Anonymous credentials Mercurial signatures SPS-EQ
Contact author(s)
aislingmconnolly @ gmail com
pascal lafourcade @ uca fr
octavio perez kempner @ ens fr
2022-06-06: last of 3 revisions
2021-12-22: received
See all versions
Short URL
Creative Commons Attribution


      author = {Aisling Connolly and Pascal Lafourcade and Octavio Perez Kempner},
      title = {Improved Constructions of Anonymous Credentials From Structure-Preserving Signatures on Equivalence Classes},
      howpublished = {Cryptology ePrint Archive, Paper 2021/1680},
      year = {2021},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.