Traceability, Linkability and Policy Hiding in Attribute-Based Signature Schemes

Ali El Kaafarani

Research output: ThesisDoctoral Thesis

Abstract

Often we are less concerned with \emph{who} signed something than with \emph{what} attributes (director of this company etc.) they have.
We propose three Attribute Based Signature schemes, namely, Decentralised Traceable Attribute Based Signatures $\DTABS$, Attribute Based Signatures with User-Controlled Linkability $\ABS$-$\UCL$, and Attribute Based Signatures with Hidden Expressive Policy $\ABS$-$\HEP$.
The \emph{Traceability} assures that signatures in dispute, caused by any misuse/abuse cases, can be traced back to their signers. The judge of public opinion guarantees that no misattribution (framing) can take place. Additionally, \emph{User-Controlled Linkability} gives a lightweight solution to session--style ABS; signers can \emph{choose} to link some of their signatures that are directed to the same verifier, and the verifier will be convinced that those signatures are signed by the same anonymous person.
%have the option to open a session with the same anonymous signer, whereas any signer has the capability to convince a given verifier that a series of signatures directed to it are all signed by the same person.
\emph{Hidden expressive policy} gives the organizations the flexibility to change their signing policies without notifying the outside.

All the three schemes are given and proven generically in a modular way. Instantiations for the first two schemes are also given to show both feasibility and practicality of the proposed schemes.
The first two schemes substantially improve the state-of-the-art of Attribute Based Signatures that use Bilinear maps as a building block and shape it into a practical form, offering a \emph{decentralized} version of ABS where multiple authorities are involved and yet no reliance on a central authority is needed.

In the third scheme, we move ABS into a new stage, where we increase the level of expressiveness of the signing policies to use general circuits, and at the same time, we give the signer the ability to fully hide his signing policy. This scheme makes use of hardness assumptions on the newly realized cryptographic building block, i.e. Multilinear maps.
LanguageEnglish
QualificationPh.D.
Awarding Institution
  • University of Bath
Supervisors/Advisors
  • Davenport, James, Supervisor
  • Bradford, Russell, Supervisor
Award date2 Jun 2015
StatusUnpublished - Feb 2015

Fingerprint

Hardness
Networks (circuits)
Industry

Keywords

  • Digital Signatures

Cite this

Traceability, Linkability and Policy Hiding in Attribute-Based Signature Schemes. / El Kaafarani, Ali.

2015.

Research output: ThesisDoctoral Thesis

@phdthesis{5d576cf0558549cc8995545771dea471,
title = "Traceability, Linkability and Policy Hiding in Attribute-Based Signature Schemes",
abstract = "Often we are less concerned with \emph{who} signed something than with \emph{what} attributes (director of this company etc.) they have.We propose three Attribute Based Signature schemes, namely, Decentralised Traceable Attribute Based Signatures $\DTABS$, Attribute Based Signatures with User-Controlled Linkability $\ABS$-$\UCL$, and Attribute Based Signatures with Hidden Expressive Policy $\ABS$-$\HEP$. The \emph{Traceability} assures that signatures in dispute, caused by any misuse/abuse cases, can be traced back to their signers. The judge of public opinion guarantees that no misattribution (framing) can take place. Additionally, \emph{User-Controlled Linkability} gives a lightweight solution to session--style ABS; signers can \emph{choose} to link some of their signatures that are directed to the same verifier, and the verifier will be convinced that those signatures are signed by the same anonymous person. {\%}have the option to open a session with the same anonymous signer, whereas any signer has the capability to convince a given verifier that a series of signatures directed to it are all signed by the same person. \emph{Hidden expressive policy} gives the organizations the flexibility to change their signing policies without notifying the outside. All the three schemes are given and proven generically in a modular way. Instantiations for the first two schemes are also given to show both feasibility and practicality of the proposed schemes. The first two schemes substantially improve the state-of-the-art of Attribute Based Signatures that use Bilinear maps as a building block and shape it into a practical form, offering a \emph{decentralized} version of ABS where multiple authorities are involved and yet no reliance on a central authority is needed. In the third scheme, we move ABS into a new stage, where we increase the level of expressiveness of the signing policies to use general circuits, and at the same time, we give the signer the ability to fully hide his signing policy. This scheme makes use of hardness assumptions on the newly realized cryptographic building block, i.e. Multilinear maps.",
keywords = "Digital Signatures",
author = "{El Kaafarani}, Ali",
year = "2015",
month = "2",
language = "English",
school = "University of Bath",

}

TY - THES

T1 - Traceability, Linkability and Policy Hiding in Attribute-Based Signature Schemes

AU - El Kaafarani, Ali

PY - 2015/2

Y1 - 2015/2

N2 - Often we are less concerned with \emph{who} signed something than with \emph{what} attributes (director of this company etc.) they have.We propose three Attribute Based Signature schemes, namely, Decentralised Traceable Attribute Based Signatures $\DTABS$, Attribute Based Signatures with User-Controlled Linkability $\ABS$-$\UCL$, and Attribute Based Signatures with Hidden Expressive Policy $\ABS$-$\HEP$. The \emph{Traceability} assures that signatures in dispute, caused by any misuse/abuse cases, can be traced back to their signers. The judge of public opinion guarantees that no misattribution (framing) can take place. Additionally, \emph{User-Controlled Linkability} gives a lightweight solution to session--style ABS; signers can \emph{choose} to link some of their signatures that are directed to the same verifier, and the verifier will be convinced that those signatures are signed by the same anonymous person. %have the option to open a session with the same anonymous signer, whereas any signer has the capability to convince a given verifier that a series of signatures directed to it are all signed by the same person. \emph{Hidden expressive policy} gives the organizations the flexibility to change their signing policies without notifying the outside. All the three schemes are given and proven generically in a modular way. Instantiations for the first two schemes are also given to show both feasibility and practicality of the proposed schemes. The first two schemes substantially improve the state-of-the-art of Attribute Based Signatures that use Bilinear maps as a building block and shape it into a practical form, offering a \emph{decentralized} version of ABS where multiple authorities are involved and yet no reliance on a central authority is needed. In the third scheme, we move ABS into a new stage, where we increase the level of expressiveness of the signing policies to use general circuits, and at the same time, we give the signer the ability to fully hide his signing policy. This scheme makes use of hardness assumptions on the newly realized cryptographic building block, i.e. Multilinear maps.

AB - Often we are less concerned with \emph{who} signed something than with \emph{what} attributes (director of this company etc.) they have.We propose three Attribute Based Signature schemes, namely, Decentralised Traceable Attribute Based Signatures $\DTABS$, Attribute Based Signatures with User-Controlled Linkability $\ABS$-$\UCL$, and Attribute Based Signatures with Hidden Expressive Policy $\ABS$-$\HEP$. The \emph{Traceability} assures that signatures in dispute, caused by any misuse/abuse cases, can be traced back to their signers. The judge of public opinion guarantees that no misattribution (framing) can take place. Additionally, \emph{User-Controlled Linkability} gives a lightweight solution to session--style ABS; signers can \emph{choose} to link some of their signatures that are directed to the same verifier, and the verifier will be convinced that those signatures are signed by the same anonymous person. %have the option to open a session with the same anonymous signer, whereas any signer has the capability to convince a given verifier that a series of signatures directed to it are all signed by the same person. \emph{Hidden expressive policy} gives the organizations the flexibility to change their signing policies without notifying the outside. All the three schemes are given and proven generically in a modular way. Instantiations for the first two schemes are also given to show both feasibility and practicality of the proposed schemes. The first two schemes substantially improve the state-of-the-art of Attribute Based Signatures that use Bilinear maps as a building block and shape it into a practical form, offering a \emph{decentralized} version of ABS where multiple authorities are involved and yet no reliance on a central authority is needed. In the third scheme, we move ABS into a new stage, where we increase the level of expressiveness of the signing policies to use general circuits, and at the same time, we give the signer the ability to fully hide his signing policy. This scheme makes use of hardness assumptions on the newly realized cryptographic building block, i.e. Multilinear maps.

KW - Digital Signatures

M3 - Doctoral Thesis

ER -