RE: [credentials] Provable anonymous credentials

Hello!

In essence, ABC4Trust (https://abc4trust.eu/) was all about unifying Jan Camenisch’s Mixes with Stefan Brands’ U-Prove technology. This would probably one of the most current sources for developments on both approaches. I will gladly make contact to the project team members.

Cheers,
                Jörg

From: Dave Raggett [mailto:dsr@w3.org]
Sent: Dienstag, 9. Juni 2015 12:56
To: Manu Sporny
Cc: Web Payments IG
Subject: Re: [credentials] Provable anonymous credentials


On 9 Jun 2015, at 06:34, Manu Sporny <msporny@digitalbazaar.com<mailto:msporny@digitalbazaar.com>> wrote:

One of our payment credentials requirements is to enable
privacy-enhancing credentials. The Web Payments CG and Credentials CG
has been searching for solutions in this space for years. We just
stumbled across one that's pretty exciting.

Thanks to Anders, Tim Holborn, and Eric Korb for pushing on IBM's
BlueMix project. It's led to a pretty exciting discovery called the
Camenisch-Lysyanskaya (CL) signature scheme, which stems from a paper
that's almost 13 years old now:

An Efficient System for Non-transferable Anonymous Credentials with
Optional Anonymity Revocation

http://groups.csail.mit.edu/cis/pubs/lysyanskaya/cl01a.pdf


This could address a number of the privacy concerns that we have around
credentials. IBM based their BlueMix credentialing solution off of it.

We need to dig a bit deeper to see if it's patent encumbered and speak
with the paper's authors to see if it's practical to apply it to our
work on credentials. The one thing that concerns me is that the
discovery is almost 13 years old at this point. In any case, it's an
exciting lead.

FYI — I worked with them (IBM Zurich) on this some years back and applied it to a credential demo based upon Firefox and a JavaScript to Java bridge. See: http://people.w3.org/~dsr/blog/?p=95


—
   Dave Raggett <dsr@w3.org<mailto:dsr@w3.org>>