论文信息 - Who Am I? Secure Identity Registration on Distributed Ledgers

Who Am I? Secure Identity Registration on Distributed Ledgers

Bitcoin is a decentralized cryptocurrency that uses a ledger (or “blockchain”) to keep track of the transactions made between its users. Because it is a fully decentralized system and anyone can join, every transaction is by necessity public. Thus, to preserve some semblance of privacy, users in the system are represented not by their real-world identities but by pseudonyms. While pseudonyms are acceptable for a standalone cryptocurrency, the emergence of other potential blockchain-based applications — e.g., using them to administer benefits and pensions — poses a need to associate certain attributes with the users of the system. In this paper, we address the question of how to register identities and attributes in a system built on globally visible ledgers. We propose a variety of possible solutions and in each case, we analyze the tradeoff our solution provides between privacy (ensuring that no one can associate the user’s real-world identity with the pseudonym or other attributes they use on the ledger), usability (ensuring that verification of their attributes poses the lowest possible burden to users), and integrity (ensuring that no one can impersonate a user). We also present an implementation of one of our solution using Ethereum.

[1] David Chaum,et al. Security without identification: transaction systems to make big brother obsolete , 1985, CACM.

[2] David Chaum,et al. Blind Signatures for Untraceable Payments , 1982, CRYPTO.

[3] Dragos Velicanu,et al. A Decentralized Public Key Infrastructure with Identity Retention , 2014, IACR Cryptol. ePrint Arch..

[4] Jan Camenisch,et al. Signature Schemes and Anonymous Credentials from Bilinear Maps , 2004, CRYPTO.

[5] Eli Ben-Sasson,et al. Zerocash: Decentralized Anonymous Payments from Bitcoin , 2014, 2014 IEEE Symposium on Security and Privacy.

[6] Mustafa Al-Bassam. SCPKI: A Smart Contract-based PKI and Identity System , 2017 .

[7] Ralf Sasse,et al. ARPKI: Attack Resilient Public-Key Infrastructure , 2014, CCS.

[8] Jan Camenisch,et al. An Efficient System for Non-transferable Anonymous Credentials with Optional Anonymity Revocation , 2001, IACR Cryptol. ePrint Arch..

[9] Mihir Bellare,et al. Lecture Notes on Cryptography , 2001 .

[10] Matthew Green,et al. Decentralized Anonymous Credentials , 2014, NDSS.

[11] George Danezis,et al. Toward Mending Two Nation-Scale Brokered Identification Systems , 2015, Proc. Priv. Enhancing Technol..

[12] Silvio Lattanzi,et al. SoK: The Evolution of Sybil Defense via Social Networks , 2013, 2013 IEEE Symposium on Security and Privacy.