Cristin-resultat-ID: 2110969
Sist endret: 19. januar 2023, 22:33
Resultat
Vitenskapelig foredrag
2022

A Privacy-Preserving and Transparent Certification System for Digital Credentials

Bidragsytere:
  • Rodrigo Queiroz Saramago

Presentasjon

Navn på arrangementet: 26th International Conference on Principles of Distributed Systems (OPODIS 2022)
Sted: Brussels, Belgium
Dato fra: 14. desember 2022
Dato til: 15. desember 2022

Arrangør:

Arrangørnavn: OPODIS

Om resultatet

Vitenskapelig foredrag
Publiseringsår: 2022

Klassifisering

Vitenskapsdisipliner

Datateknologi • Algoritmer og beregnbarhetsteori • Sikkerhet og sårbarhet

Beskrivelse Beskrivelse

Tittel

A Privacy-Preserving and Transparent Certification System for Digital Credentials

Sammendrag

A certification system is responsible for issuing digital credentials, which attest claims about a subject, e.g., an academic diploma. Such credentials are valuable for individuals and society, and widespread adoption requires a trusted certification system. Trust can be gained by being transparent when issuing and verifying digital credentials. However, there is a fundamental tradeoff between privacy and transparency. For instance, admitting a student to an academic program must preserve the student’s privacy, i.e., the student’s grades must not be revealed to unauthorized parties. At the same time, other applicants may demand transparency to ensure fairness in the admission process. Thus, building a certification system with the right balance between privacy and transparency is challenging. This paper proposes a novel design for a certification system that provides sufficient transparency and preserves privacy through selective disclosure of claims such that authorized parties can verify them. Moreover, unauthorized parties can also verify the correctness of the certification process without compromising privacy. We achieve this using an incremental Merkle tree of cryptographic commitments to users’ credentials. The commitments are added to the tree based on verifying zero-knowledge issuance proofs. Users store credentials off-chain and can prove the ownership and authenticity of credentials without revealing their commitments. Further, our approach enables users to prove statements about the credential’s claims in zero-knowledge. Our design offers a cost-efficient solution, reducing the amount of linkable on-chain data by up to 79 % per credential compared to prior work, while maintaining transparency.

Bidragsytere

Rodrigo Queiroz Saramago

  • Tilknyttet:
    Forfatter
    ved Institutt for data- og elektroteknologi ved Universitetet i Stavanger
1 - 1 av 1