权益分类	功能权益	普通用户	{{item.name}}会员
{{category.name}}	{{benefitItem.name}}

Privacy and Attestation Technologies

隐私和认证技术

基本信息

批准号：
EP/H043454/1
负责人：
Nigel Smart
金额：
$ 63.35万
依托单位：
University of Bristol
依托单位国家：
英国
项目类别：
Research Grant
财政年份：
2010
资助国家：
英国
起止时间：
2010 至无数据
项目状态：
已结题

来源：
https://gtr.ukri.org/projects?ref=EP%2FH043454%2F1
关键词：
Privacy Attestation Technologies

项目摘要

This proposal aims to investigate two related cryptographic protocols. These protocols not only use similar building blocks, but they also have similar aims. Namely to provide strong security gaurantees re authenticity, whilst at the same time ensuring user privacy.Group signatures were introduced in 1991 by Chaum and van Heyst. Such schemes provide for members of a group to anonymously sign a message on behalf of the whole group. As an example application, they allow an employee of a company to sign a document in such a way that the verifier need only know that is was signed by an employee, but not the particular employee involved. Control of the group membership is provided by a group manager, who can add members to the group, and also reveal the identity of signers in the case of disputes. In some situations these two tasks, adding members and revoking anonymity, are separated into two roles.Direct Anonymous Attestation (DAA) is a mechanism for a remote user to provide a verifier with some assurance, via a signature, that he uses software and/or hardware from a trusted sets of software and/or hardware respectively. In addition, the user is able to control if and when a verifier is able to link two such signatures, i.e. to determine whether or not they were produced by the same platform. The verifier is never able to tell which particular platform produced a given signature or pair of signatures. As such this is a very similar anonymity guarantee to that provided by group signatures, In fact, one can think of group signatures as non-interactive versions of DAA schemes which offer in addition to the guarantees of the later the ability to trace users. The close relation between these primitives is also visible in the techniques used for already proposed DAA and group signature schemes which are again quite similar.To understand the uses and importance of DAA protocols consider the following example. A user wants to send a confidential document from his or her desktop to a shared printer. The user wants to be assured that the printer hardware or software has not been tampered with. In particular, the user wants to be assured that a copy of the confidential document does not get sent from the printer to somewhere else, or stored on the printer. In this particular scenario, the printer can use DAA to provide the desktop of the user with some assurance that it has not been tampered with.

该提案旨在研究两个相关的密码协议。这些协议不仅使用相似的构建模块，而且它们也具有相似的目标。即提供强大的安全性guurantees re真实性，同时确保用户隐私。群签名是由Chaum和货车Heyst在1991年提出的。这样的方案允许组的成员代表整个组匿名地签署消息。作为一个示例应用程序，它们允许公司的员工以这样一种方式签署文档，即验证者只需要知道该文档是由员工签署的，而不需要知道所涉及的特定员工。组成员的控制由组管理员提供，组管理员可以向组添加成员，并且在发生争议时还可以显示签名者的身份。在某些情况下，这两个任务，添加成员和撤销匿名，分为两个角色。直接匿名证明（DAA）是一种机制，用于远程用户提供某种保证，通过签名，他使用的软件和/或硬件分别从可信的软件和/或硬件集的验证。此外，用户能够控制验证者是否以及何时能够链接两个这样的签名，即确定它们是否由同一平台产生。验证者永远无法知道哪个特定的平台产生了给定的签名或签名对。因此，这是一个非常类似的匿名保证，提供了由群签名，事实上，人们可以认为群签名的非交互式版本的DAA计划，提供除了后者的保证，能够跟踪用户。这些原语之间的密切关系在已经提出的DAA和群签名方案中也是可见的，它们也非常相似。用户想要将机密文档从他或她的桌面发送到共享打印机。用户希望确保打印机硬件或软件未被篡改。特别是，用户希望确保机密文档的副本不会从打印机发送到其他地方，或者存储在打印机上。在这个特定的场景中，打印机可以使用DAA来向用户的桌面提供它没有被篡改的某种保证。

项目成果

期刊论文数量（10）

专著数量（0）

科研奖励数量（0）

会议论文数量（0）

专利数量（0）

Measuring vote privacy, revisited

DOI：
10.1145/2382196.2382295
发表时间：
2012-10
期刊：
Proceedings of the 2012 ACM conference on Computer and communications security
影响因子：
0
作者：
D. Bernhard;V. Cortier;Olivier Pereira;B. Warinschi
通讯作者：
D. Bernhard;V. Cortier;Olivier Pereira;B. Warinschi

On the Amortized Complexity of Zero-Knowledge Protocols

关于零知识协议的摊销复杂性