Anonymous Single Sign-on with Proxy Re-Verification

Jinguang Han*, Liqun Chen, Steve Schneider, Helen Treharne, Stephan Wesemeyer, Nick Wilson

*Corresponding author for this work

Research output: Contribution to journalArticle

187 Downloads (Pure)

Abstract

An anonymous Single Sign-on (ASSO) scheme allows users to access multiple services anonymously using one credential. We propose a new ASSO scheme, where users can access services anonymously through the use of anonymous credentials and unlinkably through the provision of designated verifiers. Notably, verifiers cannot link a user’s service requests even if they collude. The novelty is that when a designated verifier is unavailable, a central authority can authorise new verifiers to authenticate the user on behalf of the original verifier. Furthermore, a central verifier can also be authorised to deanonymise users and trace their service requests. We formalise the scheme along with a security proof and provide an empirical evaluation of its performance. This scheme can be applied to smart ticketing where minimising the collection of personal information of users is increasingly important to transport organisations due to privacy regulations such as General Data Protection Regulations (GDPR).
Original languageEnglish
JournalIEEE Transactions on Information Forensics and Security
Early online date30 May 2019
DOIs
Publication statusEarly online date - 30 May 2019

Keywords

  • Proxy Verification
  • Anonymous Authentication
  • Designated Verification
  • Service Disruption

Fingerprint Dive into the research topics of 'Anonymous Single Sign-on with Proxy Re-Verification'. Together they form a unique fingerprint.

  • Cite this