Skip to Main content Skip to Navigation
Conference papers

Direct Anonymous Attestations with Dependent Basename Opening

Nicolas Desmoulins 1 Roch Lescuyer 2 Olivier Sanders 3, 1, 4 Jacques Traoré 1
3 CASCADE - Construction and Analysis of Systems for Confidentiality and Authenticity of Data and Entities
DI-ENS - Département d'informatique de l'École normale supérieure, Inria Paris-Rocquencourt, CNRS - Centre National de la Recherche Scientifique : UMR 8548
Abstract : We introduce a new privacy-friendly cryptographic primitive we call Direct Anonymous Attestations with Dependent Basename Opening (DAA-DBO). Such a primitive is a Direct Anonymous Attestation in which the anonymity can be revoked only if a specific authority, called the admitter, allowed to revoke the DAA signatures that include a specific basename. We also present an efficient scheme that achieves this functionality, secure in the random oracle model. Furthermore, we provide a prototype implementation of an anonymous transit pass system, based on this new primitive. Compared to previous privacy-friendly cryptographic primitives with partial linkability, we provide a way to share the power to open signatures between two entities which is more practical than the use of conventional techniques from threshold cryptography.
Complete list of metadata
Contributor : Olivier Sanders <>
Submitted on : Thursday, December 4, 2014 - 5:29:00 PM
Last modification on : Tuesday, May 4, 2021 - 2:06:02 PM




Nicolas Desmoulins, Roch Lescuyer, Olivier Sanders, Jacques Traoré. Direct Anonymous Attestations with Dependent Basename Opening. Cryptology and Network Security (CANS) 2014, Oct 2014, Heraklion, Greece. ⟨10.1007/978-3-319-12280-9_14⟩. ⟨hal-01091165⟩



Record views