Anonymous authentication with TLS and DAA

Cesena, Emanuele; Loehr, H.; Ramunno, Gianluca; Sadeghi, A. R.; Vernizzi, Davide

doi:10.1007/978-3-642-13869-0_4

PORTO @ Archivio Istituzionale della Ricerca

IRIS è la soluzione IT che facilita la raccolta e la gestione dei dati relativi alle attività e ai prodotti della ricerca. Fornisce a ricercatori, amministratori e valutatori gli strumenti per monitorare i risultati della ricerca, aumentarne la visibilità e allocare in modo efficace le risorse disponibili.

Anonymous credential systems provide privacy-preserving authentication solutions for accessing services and resources. In these systems, copying and sharing credentials can be a serious issue. As this cannot be prevented in software alone, these problems form a major obstacle for the use of fully anonymous authentication systems in practice. In this paper, we propose a solution for anonymous authentication that is based on a hardware security module to prevent sharing of credentials. Our protocols are based on the standard protocols Transport Layer Security (TLS) and Direct Anonymous Attestation (DAA). We present a detailed description and a reference implementation of our approach based on a Trusted Platform Module (TPM) as hardware security module. Moreover, we discuss drawbacks and alternatives, and provide a pure software implementation to compare with our TPM-based approach.

Titolo:	Anonymous authentication with TLS and DAA
Autori:	CESENA, EMANUELE Loehr H. RAMUNNO, GIANLUCA Sadeghi A. R. VERNIZZI, DAVIDE mostra contributor esterni nascondi contributor esterni
Data di pubblicazione:	2010
Rivista:	LECTURE NOTES IN COMPUTER SCIENCE
Abstract:	Anonymous credential systems provide privacy-preserving authentication solutions for accessing se...rvices and resources. In these systems, copying and sharing credentials can be a serious issue. As this cannot be prevented in software alone, these problems form a major obstacle for the use of fully anonymous authentication systems in practice. In this paper, we propose a solution for anonymous authentication that is based on a hardware security module to prevent sharing of credentials. Our protocols are based on the standard protocols Transport Layer Security (TLS) and Direct Anonymous Attestation (DAA). We present a detailed description and a reference implementation of our approach based on a Trusted Platform Module (TPM) as hardware security module. Moreover, we discuss drawbacks and alternatives, and provide a pure software implementation to compare with our TPM-based approach.
ISBN:	9783642138683
Appare nelle tipologie:	4.1 Contributo in Atti di convegno

File in questo prodotto:

Non ci sono file associati a questo prodotto.

Utilizza questo identificativo per citare o creare un link a questo documento:
http://hdl.handle.net/11583/2318168

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.