Abstract

This article introduces a definition of privacy for Direct Anonymous Attestation schemes. The definition is expressed as an equivalence property which is suited to automated reasoning using Blanchet's ProVerif. The practicality of the definition is demonstrated by analysing the RSA-based Direct Anonymous Attestation protocol by Brickell, Camenisch & Chen. The analysis discovers a vulnerability in the RSA-based scheme which can be exploited by a passive adversary and, under weaker assumptions, corrupt issuers and verifiers. A security fix is identified and the revised protocol is shown to satisfy our definition of privacy.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Lattice-based direct anonymous attestation
-
29 May 2020
The DAA scheme in context
Ernie Brickell ... Jan Camenisch
-
Ernie Brickell, et. al.Ernie Brickell ... Jan Camenisch
01 Jan 2004
A new process and framework for direct anonymous attestation based on symmetric bilinear maps
Liang Tan ... Mingtian Zhou
Wuhan University Journal of Natural Sciences | VOL. 16
Liang Tan, et. al.Liang Tan ... Mingtian Zhou
03 Sep 2011
More efficient, provably-secure direct anonymous attestation from lattices
Nada El Kassem ... Patrick Hough
Future Generation Computer Systems | VOL. 99
Nada El Kassem, et. al.Nada El Kassem ... Patrick Hough
11 May 2019
View more papers

More From: Science of Computer Programming

Paper Title
Journal
Date
Author
API comparison based on the non-functional information mined from Stack Overflow
Zhiqi Chen ... Peng Zhang
Science of Computer Programming | VOL. 241
Zhiqi Chen, et. al.Zhiqi Chen ... Peng Zhang
06 Nov 2024
Preface for “Selected papers from the 26th Ibero-American Conference on Software Engineering (CIbSE 2023)”
Giovanni Giachetti ... Renata Guizzardi
Science of Computer Programming | VOL. -
Giovanni Giachetti, et. al.Giovanni Giachetti ... Renata Guizzardi
01 Nov 2024
Efficient Interaction-Based Offline Runtime Verification of Distributed Systems with Lifeline Removal
Erwan Mahe ... Pascale Le Gall
Science of Computer Programming | VOL. -
Erwan Mahe, et. al.Erwan Mahe ... Pascale Le Gall
01 Nov 2024
Analysis and Formal Specification of OpenJDK's BitSet: Proof files
Andy S Tatman ... Stijn De Gouw
Science of Computer Programming | VOL. -
Andy S Tatman, et. al.Andy S Tatman ... Stijn De Gouw
01 Nov 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.