Hongxin Zhang,Guanghuan Xie,Xin Zou,Chi Zhang,Zhuo Li,Rui Qin,Gang Xiong,Fei-Yue Wang

DOI: https://doi.org/10.1109/tcss.2022.3230903

2024-01-01

IEEE Transactions on Computational Social Systems

Abstract:Threshold Elliptic Curve Digital Signature Algorithm (ECDSA) has attracted a lot of attention due to the wide applications of ECDSA in crypto asset. Although several variants of threshold signature protocols can provide functions, such as key generation and signing, they suffer from two shortfalls. First, these schemes only discuss a single signature computation task in a synchronous algorithm context, which is difficult to adapt to real crypto-asset applications, such as custody. Second, these schemes are computing intensive and not scalable, hence can hardly support large-scale processing operations in real life even after traditional optimization, such as multithreading, is applied. In this article, we propose an innovative computation method called asynchronous threshold ECDSA with batch processing, based on the interactive threshold signature protocols. The method provides a reliable solution for critical operational scenarios, such as threshold signing and distributed key generation (DKG) in crypto-asset custody, and can be a future reference in secure data distribution mechanisms. The performance and scalability of our methods are validated through a benchmark testing.

Rui Shi,Huamin Feng,Yang Yang,Feng Yuan,Yingjiu Li,Hwee Hwa Pang,Robert H. Deng

DOI: https://doi.org/10.1109/tsc.2023.3280914

IF: 11.019

2023-01-01

IEEE Transactions on Services Computing

Abstract:Threshold attribute-based credentials are suitable for decentralized systems such as blockchains as such systems generally assume that authenticity, confidentiality, and availability can still be guaranteed in the presence of a threshold number of dishonest or faulty nodes. Coconut (NDSS'19) was the first selective disclosure attribute-based credentials scheme supporting threshold issuance. However, it does not support threshold tracing of user identities and threshold revocation of user credentials, which is desired for internal governance such as identity management, data auditing, and accountability. The communication and computation complexities of Coconut for verifying credentials are linear in the number of each user's attributes and thus costly. Addressing these issues, we propose a novel efficient threshold attribute-based anonymous credential scheme. While retaining all the features of Coconut, our scheme supports threshold tracing of user identities and threshold revocation of user credentials, and it significantly reduces the computational and communication complexities of credential verification. In addition, we prove that our scheme enjoys strong security features, including anonymity, blindness, traceability, and non-frameability.

computer science, information systems, software engineering

Liu Duan-yang,Pan Xue-zeng,Ping Ling-di

DOI: https://doi.org/10.1631/jzus.2003.0555

2003-01-01

Abstract:Distributed certification via threshold cryptography is much more secure than other ways to protect certification authority (CA)'s private key, and can tolerate some intrusions. As the original system such as ITTC, etc., is unsafe, inefficient and impracitcal in actual network environment, this paper brings up a new distributed certification scheme, which although it generates key shares concentratively, it updates key shares distributedly, and so, avoids single-point failure like ITTC. It not only enhances robustness with Feldman verification and SSL protocol, but can also change the threshold (t, k) flexibly and robustly, and so, is much more practical. In this work, the authors implement the prototype system of the new scheme and test and analyze its performance.

Zhi-Yu Peng,Shan-Ping Li

DOI: https://doi.org/10.1109/icmlc.2008.4620616

2008-01-01

Abstract:As pervasive computing leading to an increased collection of information in the computational world as well as the real world, privacy leaking becomes a serious issue. Although privacy protection has drawn great attention in recent years, the privacy-preserving trust management has not been brought forward. Credential chain discovery problem is the key issue in trust management, and traditionally credentials are full open in the whole system. This could expose users' access control policies as well as other private information, and leads to a great risk of being cheated by malicious users. This paper advocates a privacy-preserving credential chain discovery mechanism, in which credentials are no longer available to everyone. By merely learning credentials of one's logic neighbors, this mechanism still achieves good results. The simulations show that this mechanism is practical.

Jianqing Fu,Jian Chen,Rong Fan,XiaoPing Chen,Lingdi Ping

DOI: https://doi.org/10.1109/wcse.2009.731

2009-01-01

Abstract:With the widespread use of mobile devices, authentication and privacy of identification become important issues. We analyzed the security flaws and shortcomings of a delegation-based authentication protocol which was proposed by Caimu Tang, et al., and provided an improved protocol. We use elliptic-curve cryptography and hash chain to ensure the safety of system in our scheme. The research results reveal that the improved protocol can not only corrects the security flaws but also improve the efficiency of key management and reduce the computational load.

ZHU Chang-sheng,LIU Peng-hui,WANG Qing-rong,CAO Lai-cheng

DOI: https://doi.org/10.3724/sp.j.1087.2011.01862

2011-01-01

Journal of Computer Applications

Abstract:How to keep mutual anonymity between two entities is one of the critical issues for Trusted Computation(TC).According to the characteristics of TC,an efficient password-based authenticated key exchange scheme was proposed.Adopting threshold cryptography and fuzzy ID set,the scheme achieved mutual anonymity between user and server sharing ID set.On the premise of secure hashing,the analysis and the proving procedure based on the Random Oracle Model(ROM) show this scheme is secure against dictionary attack and resource-depletion DoS(Denial-of-Service) attack under the computational Diffie-Hellman intractability assumption.This scheme effectively preserves the user's privacy and server's privacy,and compared with other schemes such as VIET et al.'s scheme,it is more efficient.

B Li,SS Zhang,KF Chen

2002-01-01

Abstract:The change on membership of participants and its impact on the application of threshold cryptography are seldom considered in literature. However, it is a very important problem in secure dynamic cooperation in modern business environment. In this paper, a scalable threshold scheme is proposed as preliminary study on this field. Our proposal is to put together multiple simple Shamir's threshold schemes to realize a scalable one, without requiring any cryptographic assumption and a trusted third party.

Long Yu,Cao Zhenfu

DOI: https://doi.org/10.3969/j.issn.1000-3428.2005.12.056

2005-01-01

Abstract:The paper proposes a dynamic(k,n) threshold key escrow scheme. Based on the difficulty of discrete logarithm problem. This scheme ischarge of such characters: (1) every escrow agent’s secret can be remained unchanged when the system’s secret is renewed. (2) it can add or drop aescrow agent without changing other members’ secret key. (3) this is a robust threshold key escrow scheme. It discusses the security, dynamic androbustness of this scheme at the end of this paper.

Changshe Ma,Kefei Chen,Dong Zheng,Shengli Liu

DOI: https://doi.org/10.1007/11556992_17

2005-01-01

Abstract:To make the system more secure and robust, threshold schemes are proposed to avoid single point failure. At the same time, there are more and more applications which utilize the two basic blocks encryption and digital signature to secure message delivery (such as SSL, SSH). Combining the three tools organically leads to an interesting security tool termed as threshold signcryption which can be used in distributed systems especially the mobile networks. In this paper, we present an efficient threshold signcryption scheme. The scheme is designed for an asynchronous network model which may better present practical distributed systems, especially Internet or mobile ad hoc networks. In order to resist mobile attacks, we add proactive property to our scheme. To the best of our knowledge, the proposed scheme is the first threshold signcryption scheme which is noninteractive, proactive and provably secure and works on asynchronous network models.

Wenhui Kong,Pengfei Wen,Xinran Zheng,Shuo Yang,Ning Hu,Xingjun Wang

DOI: https://doi.org/10.1109/wcnc57260.2024.10570881

2024-01-01

Abstract:Vehicular Ad Hoc Network(VANET) is a hot topic, how to design an efficient authentication scheme is the core problem in this field. With the considerable progress in computing capability and side-channel attack capability, some seemingly safe third parties have also become less safe. Our paper focuses on weakening the use of trusted authority(TA) and improving the fault tolerance of authentication schemes. At first, all private keys are generated by users. Next, the ephemeral Diffie-Hellman key exchange scheme is used to construct a PID authentication. Moreover, we build a partial key delivery method without a secure channel. In the batch message authentication part, we use the Shamir secret share method to build a (t, n) threshold signature scheme that guarantees batch signatures cannot be tampered with fewer than t people involved. Finally, we make a comparison of time cost and communication cost with the other four schemes. Our scheme has a remarkable advantage over other schemes by comparing experimental data.

Jing Tian,Yanqi Zhao,Xiaoyi Yang,Xuan Zhao,Ruonan Chen,Yong Yu

DOI: https://doi.org/10.1016/j.hcc.2024.100271

2024-01-01

High-Confidence Computing

Abstract:Identity-based threshold signature (IDTHS) allows a threshold number of signers to generate signatures to improve the deterministic wallet in the blockchain. However, the IDTHS scheme cannot determine the identity of malicious signers in case of misinformation. To solve this challenge, we propose an identity-based threshold (multi) signature with private accountability (for short AIDTHS) for privacy-preserving blockchain. From the public perspective, AIDTHS is completely private and no user knows who participated in generating the signature. At the same time, when there is a problem with the transaction, a trace entity can trace and be accountable to the signers. We formally define the syntax and security model of AIDTHS. To address the issue of identifying malicious signers, we improve upon traditional identity-based threshold signatures by incorporating zero-knowledge proofs as part of the signature and leveraging a tracer holding tracing keys to identify all signers. Additionally, to protect the privacy of signers, the signature is no longer achievable by anyone, which requires a combiner holding the keys to produce a valid signature. We give a concrete construction of AIDTHS and prove its security.Finally, we implement the AIDTHS scheme and compare it with existing schemes. The key distribution algorithm of AIDTHS takes 34.60 μs and the signature algorithm takes 13.04 ms. The verification algorithm takes 1 s, which is one-third of the time the TAPS scheme uses.

Lan Nguyen

DOI: https://doi.org/10.1007/11958239_6

2006-01-01

Abstract:In k-times anonymous authentication (k-TAA) schemes, members of a group can be anonymously authenticated to access applications for a bounded number of times determined by application providers. Dynamick-TAA allows application providers to independently grant or revoke group members from accessing their applications. Dynamic k-TAA can be applied in several scenarios, such as k-show anonymous credentials, digital rights management, anonymous trial of Internet services, e-voting, e-coupons etc. This paper proposes the first provably secure dynamic k-TAA scheme, where authentication costs do not depend on k. This efficiency is achieved by using a technique called “efficient provable e-tag”, which could be applicable to other e-tag systems.

Yu Long,Ke-fei Chen,Xian-ping Mao

DOI: https://doi.org/10.1007/s12204-014-1520-8

2014-01-01

Abstract:This study deals with the dynamic property of threshold cryptosystem. A dynamic threshold cryptosystem allows the sender to choose the authorized decryption group and the threshold value for each message dynamically. We first introduce an identity based dynamic threshold cryptosystem, and then use the Canetti-Halevi-Katz (CHK) transformation to transform it into a fully secure system in the traditional public key setting. Finally, the elegant dual system encryption technique is applied to constructing a fully secure dynamic threshold cryptosystem with adaptive security.

Song Luo,Jianbin Hu,Zhong Chen

DOI: https://doi.org/10.1109/ETCS.2010.437

2010-01-01

Abstract:User authentication is very important mechanism in computer network systems for preventing unauthorized network access. In recent years, the bilinear pairings have been found to be very useful in various applications in cryptography and have allowed us to construct new cryptographic primitives. In 2006, Das et al. proposed an identity-based remote user authentication scheme with smart cards using bilinear pairings. Unfortunately, their scheme is insecure against forgery attack. In this paper, we propose a (t, n) threshold distributed authentication scheme using the bilinear pairings with smart cards which needs at least t authentication servers to collaboratively authenticate the remote user. Our scheme makes some improvements from Das's scheme and is expanded to a multi-server environment in distributed networks. Based on the Computational Diffie-Hellman Problem, we show that the proposed scheme is secure against forgery attack and identity attack under the random oracle model.

Feng Xu,Yuqi Zhu,Hongxu Ma,Bin Cai

DOI: https://doi.org/10.1080/10798587.2012.10643269

2012-01-01

Intelligent Automation & Soft Computing

Abstract:This paper studies the proper threat of mobile Ad Hoc network, and proposes a threshold authentication scheme without the trusted center based on bilinear pairings. The cost of storage and computational capacity, requiring of each node, can be effectively reduced and security problems such as inner nodes attack, passive attack can be solved. Compared with the existent protocol, this scheme is faster in generating certificate and has lower complexity of computing.

Daniel Slamanig,Sebastian Ramacher,Reyhaneh Rabaninejad,A. Michalas,B. Abdolmaleki

Abstract:. Self-sovereign identity (SSI) systems empower users to (anony-mously) establish and verify their identity when accessing both digital and real-world resources, emerging as a promising privacy-preserving so-lution for user-centric identity management. Recent work by Maram et al. proposes the privacy-preserving Sybil-resistant decentralized SSI sys-tem CanDID (IEEE S&P 2021). While this is an important step, notable shortcomings undermine its efficacy. The two most significant among them being the following: First, unlinkability breaks in the presence of a single malicious issuer. Second, it introduces interactiveness, as the users are required to communicate each time with issuers to collect cre-dentials intended for use in interactions with applications. This contra-dicts the goal of SSI, whose aim is to give users full control over their identities. This paper first introduces the concept of publicly verifiable attribute-based threshold anonymous counting tokens (tACT). Unlike recent approaches confined to centralized settings (Benhamouda et al., ASIACRYPT 2023), tACT operates in a distributed-trust environment. Accompanied by a formal security model and a provably secure instantiation, tACT introduces a novel dimension to token issuance, which, we believe, holds independent interest. Next, the paper leverages the proposed tACT scheme to construct an efficient Sybil-resistant SSI sys-tem. This system supports various functionalities, including threshold issuance, unlinkable multi-show selective disclosure, and non-interactive, non-transferable credentials that offer constant-size credentials. The proposed construction is backed by rigorous security definitions and proofs. Finally, our benchmark results show an efficiency improvement in our construction when compared to CanDID all while accommodating a greater number of issuers and additionally reducing to a one-round protocol that can be run in parallel with all issuers.

Computer Science

Yumeng Xie,Qing Fan,Chuan Zhang,Tong Wu,Yuao Zhou,Debiao He,Liehuang Zhu

DOI: https://doi.org/10.1109/tifs.2024.3428848

IF: 7.231

2024-07-26

IEEE Transactions on Information Forensics and Security

Abstract:Threshold signatures as a method to realize multi-party cooperation and trust distribution in blockchain have been widely studied in recent years. However, among these researches, few threshold signature schemes achieve all the properties of accountability, privacy, and key protection for the EdDSA-based blockchain systems. To fill this gap, we propose an EdDSA-based accountable threshold signature protocol with privacy and proactive refresh, named TAPS-PR. Meanwhile, we define new security models and give a detailed analysis to prove protocol security. In TAPS-PR, the threshold is variable and hidden with the signing quorum from the public view. However, the signing quorum can be traced when threshold signatures related to fraudulent events are generated. We also enhance the key security of each signer by proactive refresh, which realizes updating the private key while the public key remains unchanged. Apart from that, we present ATS-PR with increased efficiency and reduced communication cost at the cost of weaker security. The theoretical analysis and experimental results indicate that our protocols perform efficiently in terms of communication and computation overhead. Furthermore, we use Tezos, a blockchain project employing EdDSA, as a case study to demonstrate the compatibility of our protocol with real-world blockchain applications.

computer science, theory & methods,engineering, electrical & electronic

Li Zhiji,Zhiji Li

DOI: https://doi.org/10.4236/jis.2022.132003

2022-01-01

Journal of Information Security

Abstract:Decentralized identity authentication is generally based on blockchain, with the protection of user privacy as the core appeal. But traditional decentralized credential system requires users to show all the information of the entire credential to the verifier, resulting in unnecessary overexposure of personal information. From the perspective of user privacy, this paper proposed a verifiable credential scheme with selective disclosure based on BLS (Bohen- Lynn-Shacham) aggregate signature. Instead of signing the credentials, we sign the claims in the credentials. When the user needs to present the credential to verifier, the user can select a part of but not all claims to be presented. To reduce the number of signatures of claims after selective disclosure, BLS aggregate signature is achieved to aggregate signatures of claims into one signature. In addition, our scheme also supports the aggregation of credentials from different users. As a result, verifier only needs to verify one signature in the credential to achieve the purpose of batch verification of credentials. We analyze the security of our aggregate signature scheme, which can effectively resist aggregate signature forgery attack and credential theft attack. The simulation results show that our selective disclosure scheme based on BLS aggregate signature is acceptable in terms of verification efficiency, and can reduce the storage cost and communication overhead. As a result, our scheme is suitable for blockchain, which is strict on bandwidth and storage overhead.

Yang Liu,Debiao He,Min Luo,Huaqun Wang,Qin Liu

DOI: https://doi.org/10.1109/tvt.2023.3312547

IF: 6.8

2023-01-01

IEEE Transactions on Vehicular Technology

Abstract:With the number of smart vehicle drivers increasing rapidly, privacy-preserving identity management methods in Vehicular Ad-hoc Networks (VANETs) become more imperative and receive much attention from researchers. Since identity leakage or a single point of failure may result in serious consequences in the VANET, the decentralized anonymous credential (DAC) could be a potential approach to construct a robust network. However, the supervision under decentrilized environment could be a necessary and troublesome in the VANETs. In this paper, we present an anonymous traceable and revocable credential system using blockchain, called ATRC, built over a generalized group signature. The underlying group signature not only meets the anonymity requirement but also makes the users master their identities. What's more, to tackle the privacy leakage in the revocation process, we employ the Merkle tree to construct a whitelist, which trades off the efficiency and the privacy. Finally, we gives the comparison and experiment performance to show our scheme holds lightweight on the user side and has fewer computation costs in the show and revocation phase.

telecommunications,engineering, electrical & electronic,transportation science & technology

Haotian Cheng,Xiaofeng Li,He Zhao,Tong Zhou,Bin Yu,Nianzu Sheng

DOI: https://doi.org/10.1016/j.jisa.2024.103735

IF: 4.96

2024-03-09

Journal of Information Security and Applications

Abstract:The popularization of digital credentials brings convenience to people, but it also increases the risks of privacy leakage and capability abuse. Designing an accountable anonymous credential scheme offers a promising solution to this problem. However, most existing schemes of accountable anonymous credentials cannot effectively support both decentralized verification and flexible revocation. In this paper, we present S-Cred, an accountable anonymous credential scheme with decentralized verification and flexible revocation, to provide a delegation issuance method for credentials. The ownership of attributes will be transferred to users' temporary identities on the blockchain. In order to prevent credentials misuse, we also design several constraint mechanisms for tracing misbehaving users and revoking their credentials. We further construct a non-fungible obfuscation mechanism by introducing special roles called cloakers. In addition, this paper conducts analysis on security, functionality, efficiency and performance. The results show that S-Cred combines decentralized authentication and flexible revocation with a low computational cost in verification, which demonstrates the practicality of our solution.

computer science, information systems