Multi-device Anonymous Authentication

  • Kamil Kluczniak
  • Jianfeng Wang
  • Xiaofeng Chen
  • Mirosław Kutyłowski
Conference paper

DOI: 10.1007/978-3-319-46298-1_2

Part of the Lecture Notes in Computer Science book series (LNCS, volume 9955)
Cite this paper as:
Kluczniak K., Wang J., Chen X., Kutyłowski M. (2016) Multi-device Anonymous Authentication. In: Chen J., Piuri V., Su C., Yung M. (eds) Network and System Security. NSS 2016. Lecture Notes in Computer Science, vol 9955. Springer, Cham

Abstract

Recently, a few pragmatic and privacy protecting systems for authentication in multiple systems have been designed. The most prominent examples are Restricted Identification and Pseudonymous Signature schemes designed by the German Federal Office for Information Security for German personal identity cards. The main properties are that a user can authenticate himself with a single private key (stored on a smart-card), but nevertheless the user’s IDs in different systems are unlinkable.

We develop a solution which enables a user to achieve the above mentioned goals while using more than one personal device, each holding a single secret key, but different for each device – as for security reasons no secret key is allowed to leave a secure device. Our solution is privacy preserving: it will remain hidden for the service system which device is used. Nevertheless, if a device gets stolen, lost or compromised, the user can revoke it (leaving his other devices intact).

In particular, in this way we create a strong authentication framework for cloud users, where the cloud does not learn indirectly personal data. In the standard solutions there is no way to avoid leaking information that, for instance, the user is in his office and authenticates via his desktop computer.

Our solution is based on a novel cryptographic primitive, called Pseudonymous Public Key Group Signature.

Keywords

Signature schemes Privacy Pseudonyms Group signature 

Copyright information

© Springer International Publishing AG 2016

Authors and Affiliations

  • Kamil Kluczniak
    • 1
  • Jianfeng Wang
    • 2
  • Xiaofeng Chen
    • 2
  • Mirosław Kutyłowski
    • 1
  1. 1.Department of Computer ScienceWrocław University of Science and TechnologyWrocławPoland
  2. 2.State Key Laboratory of Integrated Service Networks (ISN)Xidian UniversityXi’anChina

Personalised recommendations