- From: Dave Raggett <dsr@w3.org>
- Date: Tue, 9 Jun 2015 11:56:06 +0100
- To: Manu Sporny <msporny@digitalbazaar.com>
- Cc: Web Payments IG <public-webpayments-ig@w3.org>
- Message-Id: <C91C9B96-C610-4AEF-BB72-825F74CC7AA2@w3.org>
> On 9 Jun 2015, at 06:34, Manu Sporny <msporny@digitalbazaar.com> wrote: > > One of our payment credentials requirements is to enable > privacy-enhancing credentials. The Web Payments CG and Credentials CG > has been searching for solutions in this space for years. We just > stumbled across one that's pretty exciting. > > Thanks to Anders, Tim Holborn, and Eric Korb for pushing on IBM's > BlueMix project. It's led to a pretty exciting discovery called the > Camenisch-Lysyanskaya (CL) signature scheme, which stems from a paper > that's almost 13 years old now: > > An Efficient System for Non-transferable Anonymous Credentials with > Optional Anonymity Revocation > > http://groups.csail.mit.edu/cis/pubs/lysyanskaya/cl01a.pdf > > This could address a number of the privacy concerns that we have around > credentials. IBM based their BlueMix credentialing solution off of it. > > We need to dig a bit deeper to see if it's patent encumbered and speak > with the paper's authors to see if it's practical to apply it to our > work on credentials. The one thing that concerns me is that the > discovery is almost 13 years old at this point. In any case, it's an > exciting lead. FYI — I worked with them (IBM Zurich) on this some years back and applied it to a credential demo based upon Firefox and a JavaScript to Java bridge. See: http://people.w3.org/~dsr/blog/?p=95 <http://people.w3.org/~dsr/blog/?p=95> — Dave Raggett <dsr@w3.org <mailto:dsr@w3.org>>
Received on Tuesday, 9 June 2015 10:56:11 UTC