Privacy-Preserving Electronic Ticket Scheme with Attribute-Based Credentials

Jinguang Han*, Liqun Chen, Steve Schneider, Helen Treharne, Steve Wesemeyer

*Corresponding author for this work

Research output: Contribution to journalArticlepeer-review

1 Citation (Scopus)
80 Downloads (Pure)

Abstract

Users accessing services are often required to provide personal information, for example, age, profession and location, in order to satisfy access polices. We propose a privacy-preserving electronic ticket scheme using attribute-based credentials to protect users' privacy. The benefit of our scheme is that the attributes of a user are certified by a trusted third party so that the scheme can provide assurances to a seller that a user's attributes are valid. The scheme makes the following contributions: (1) users can buy different tickets from ticket sellers without releasing their exact attributes; (2) two tickets of the same user cannot be linked; (3) a ticket cannot be transferred to another user; (4) a ticket cannot be double spent. The novelty of our scheme is to enable users to convince ticket sellers that their attributes satisfy the ticket policies and buy discounted tickets anonymously. This is a step towards identifying an e-ticketing scheme that captures user privacy requirements in transport services. The security of our scheme is proved and reduced to a well-known complexity assumption. The scheme is also implemented and its performance is empirically evaluated.
Original languageEnglish
Number of pages14
JournalIEEE Transactions on Dependable and Secure Computing
Early online date12 Sep 2019
DOIs
Publication statusEarly online date - 12 Sep 2019

Keywords

  • Anonymous
  • Attribute-based Credentials
  • Privacy-enhanced Authentication
  • Electronic Ticket

Fingerprint Dive into the research topics of 'Privacy-Preserving Electronic Ticket Scheme with Attribute-Based Credentials'. Together they form a unique fingerprint.

Cite this