Logo image
Anonymous Self-Credentials and their Application to Single-Sign-On
Preprint   Open access

Anonymous Self-Credentials and their Application to Single-Sign-On

Jayamine Alupotha, Mariarosaria Barbaraci, Ioannis Kaklamanis, Abhimanyu Rawat and Christian Cachin
Cryptology ePrint Archive , Vol.11 April 2025
International Association for Cryptologic Research (IACR)
2025
pdf
2025-6181.26 MBDownloadView
Preprint Version Open Access CC BY V4.0
url
https://eprint.iacr.org/2025/618View
Preprint Version Open

Abstract

Modern life makes having a digital identity no longer optional, whether one needs to manage a bank account or subscribe to a newspaper. As the number of online services increases, it is fundamental to safeguard user privacy and equip service providers (SP) with mechanisms enforcing Sybil resistance, i.e., preventing a single entity from showing as many. Current approaches, such as anonymous credentials and self-sovereign identities, typically rely on identity providers or identity registries trusted not to track users' activities. However, this assumption of trust is no longer appropriate in a world where user data is considered a valuable asset. To address this challenge, we introduce a new cryptographic notion, Anonymous Self-Credentials (ASC) along with two implementations. This approach enables users to maintain their privacy within an anonymity set while allowing SPs to obtain Sybil resistance. Then, we present a User-issued Unlinkable Single Sign-On (U2SSO) implemented from ASC that solely relies on an identity registry to immutably store identities. A U2SSO solution allows users to generate unlinkable child credentials for each SP using only one set of master credentials. We demonstrate the practicality and efficiency of our U2SSO solution by providing a complete proof-of-concept.

Details

Metrics

1 Record Views
Logo image