Multi-Party Revocation in Sovrin: Performance through Distributed Trust

Publikation: Beitrag in Buch/Bericht/KonferenzbandBeitrag in einem Konferenzband


Accumulators provide compact representations of large sets and compact membership witnesses. Besides constant-size witnesses, public-key accumulators provide efficient updates of both the accumulator itself and the witness. However, bilinear group based accumulators come with drawbacks: they require a trusted setup and their performance is not practical for real-world applications with large sets.
In this paper, we introduce multi-party public-key accumulators dubbed dynamic (threshold) secret-shared accumulators. We present an instantiation using bilinear groups having access to more efficient witness generation and update algorithms that utilize the shares of the secret trapdoors sampled by the parties generating the public parameters. Specifically, for the q-SDH-based accumulators, we provide a maliciously-secure variant sped up by a secure multi-party computation (MPC) protocol (IMACC'19) built on top of SPDZ and a maliciously secure threshold variant built with Shamir secret sharing. For these schemes, a performant proof-of-concept implementation is provided, which substantiates the practicability of public-key accumulators in this setting.
We explore applications of dynamic (threshold) secret-shared accumulators to revocation schemes of group signatures and credentials system. In particular, we consider it as part of Sovrin's system for anonymous credentials where credentials are issued by the foundation of trusted nodes.
TitelTopics in Cryptology
UntertitelCT-RSA 2021 - The Cryptographers Track at the RSA Conference 2021, Proceedings
ErscheinungsortSan Francisco, CA, USA
BandLecture Notes in Computer Science
PublikationsstatusAngenommen/In Druck - 2021
VeranstaltungRSA Conference 2021 - Virtuell
Dauer: 17 Mai 202120 Mai 2021


KonferenzRSA Conference 2021
KurztitelRSAC 2021

Dieses zitieren