Name
On the application of group signatures to implement authentication, authorization, audit and accountability protocols
Authors
David Arroyo, Sergio Chica, Samira Briongos
Abstract
Distributed Ledger Technologies (DLT) in general, and blockchain, in particular, can help enhance the reliability of authentication, authorisation, audit, and accountability (AAAA) protocols. The use of advanced cryptographic primitives can enable the implementation of AAAA protocols that help strike a balance between security and privacy, anonymity, and accountability. This paper summarises our previous work on group signatures and applies it to privacy-respectful blockchain protocols for identity management and physical asset traceability. Our work on group signatures has been used to design and implement a software library that is easy for cryptographic engineers to deploy. The library provides significant value to the community developing privacy-respectful and secure communication protocols. Given the sensitivity of anonymous identities and the information conveyed using privacy-protected channels, executing those protocols inside a protected environment is necessary. To this end, we present a privacy-respectful blockchain system that executes group signatures inside and outside Trusted Execution Environ- ments (TEEs) to gather information and log identity related activities throughout their entire lifecycle. Thus, this work contributes to overcoming the gap between theoretical research and practical implementation in privacy-respectful authentication.
