<div class="csl-bib-body">
<div class="csl-entry">Chase, M., Fuchsbauer, G., Ghosh, E., & Plouviez, A. (2022). Credential Transparency System. In <i>Security and Cryptography for Networks</i> (pp. 313–335). https://doi.org/10.1007/978-3-031-14791-3_14</div>
</div>
-
dc.identifier.uri
http://hdl.handle.net/20.500.12708/142523
-
dc.description.abstract
A major component of the entire digital identity ecosystem are verifiable credentials. However, for users to have complete control and privacy of their digital credentials, they need to be able to store and manage these credentials and associated cryptographic key material on their devices. This approach has severe usability challenges including portability across devises. A more practical solution is for the users to trust a more reliable and available service to manage credentials on their behalf, such as in the case of Single Sign-On (SSO) systems and identity hubs. But the obvious downside of this design is the immense trust that the users need to place on these service providers. In this work, we introduce and formalize a credential transparency system (CTS) framework that adds strong transparency guarantees to a credential management system while preserving privacy and usability features of the system. CTS ensures that if a service provider presents any credential to an honest verifier on behalf of a user, and the user’s device tries to audit all the shows presented on the user’s behalf, the service provider will not be able to drop or modify any show information without getting caught. We define CTS to be a general framework that is compatible with a wide range of credential management systems including SSO and anonymous credential systems. We also provide a CTS instantiation and prove its security formally.
en
dc.description.sponsorship
WWTF Wiener Wissenschafts-, Forschu und Technologiefonds
-
dc.language.iso
en
-
dc.relation.ispartofseries
Lecture Notes in Computer Science
-
dc.subject
accumulators
en
dc.subject
anonymous credentials
en
dc.subject
Credential transparency
en
dc.subject
SSO
en
dc.subject
zero-knowledge proofs
en
dc.subject
zero-knowledge sets
en
dc.title
Credential Transparency System
en
dc.type
Inproceedings
en
dc.type
Konferenzbeitrag
de
dc.contributor.affiliation
Microsoft Research, Redmond, USA
-
dc.contributor.affiliation
Microsoft Research, Redmond, USA
-
dc.contributor.affiliation
ENS INRIA, Paris, France
-
dc.relation.isbn
978-3-031-14791-3
-
dc.description.startpage
313
-
dc.description.endpage
335
-
dc.relation.grantno
Projektnummer VRG18-002
-
dc.type.category
Full-Paper Contribution
-
tuw.booktitle
Security and Cryptography for Networks
-
tuw.container.volume
13409
-
tuw.peerreviewed
true
-
tuw.project.title
Cryptographic Foundations of Privacy in Distributed Ledgers
-
tuw.researchTopic.id
I1
-
tuw.researchTopic.name
Logic and Computation
-
tuw.researchTopic.value
100
-
tuw.publication.orgunit
E192-06 - Forschungsbereich Security and Privacy
-
tuw.publisher.doi
10.1007/978-3-031-14791-3_14
-
dc.description.numberOfPages
23
-
tuw.event.name
13th Conference on Security and Cryptography for Networks (SCN 2022)
en
tuw.event.startdate
12-09-2022
-
tuw.event.enddate
14-09-2022
-
tuw.event.online
On Site
-
tuw.event.type
Event for scientific audience
-
tuw.event.country
IT
-
tuw.event.presenter
Ghosh, Esha
-
wb.sciencebranch
Informatik
-
wb.sciencebranch
Mathematik
-
wb.sciencebranch.oefos
1020
-
wb.sciencebranch.oefos
1010
-
wb.sciencebranch.value
80
-
wb.sciencebranch.value
20
-
item.languageiso639-1
en
-
item.openairetype
conference paper
-
item.grantfulltext
none
-
item.fulltext
no Fulltext
-
item.cerifentitytype
Publications
-
item.openairecristype
http://purl.org/coar/resource_type/c_5794
-
crisitem.author.dept
Microsoft Research, Redmond, USA
-
crisitem.author.dept
E192-06 - Forschungsbereich Security and Privacy
-
crisitem.author.dept
Microsoft Research, Redmond, USA
-
crisitem.author.parentorg
E192 - Institut für Logic and Computation
-
crisitem.project.funder
WWTF Wiener Wissenschafts-, Forschu und Technologiefonds
