Authors:
Martin Schanzenbach
;
Thomas Kilian
;
Julian Schütte
and
Christian Banse
Affiliation:
Fraunhofer AISEC, Parkring 4, Garching near Munich and Germany
Keyword(s):
Zero-Knowledge, Attribute-based Credentials, Privacy, Identity and Access Management.
Related
Ontology
Subjects/Areas/Topics:
Data and Application Security and Privacy
;
Data Protection
;
Identification, Authentication and Non-Repudiation
;
Identity Management
;
Information and Systems Security
;
Peer-To-Peer Security
;
Privacy
;
Privacy Enhancing Technologies
;
Security and Privacy in Web Services
;
Security in Distributed Systems
Abstract:
In this paper we present ZKlaims: a system that allows users to present attribute-based credentials in a privacy-preserving way. We achieve a zero-knowledge property on the basis of Succinct Non-interactive Arguments of Knowledge (SNARKs). ZKlaims allow users to prove statements on credentials issued by trusted third parties. The credential contents are never revealed to the verifier as part of the proving process. Further, ZKlaims can be presented non-interactively, mitigating the need for interactive proofs between the user and the verifier. This allows ZKlaims to be exchanged via fully decentralized services and storages such as traditional peer-to-peer networks based on distributed hash tables (DHTs) or even blockchains. To show this, we include a performance evaluation of ZKlaims and show how it can be integrated in decentralized identity provider services.