English

Anonymous Single Sign-on with Proxy Re-Verification

Cryptography and Security 2019-04-12 v2

Abstract

An anonymous Single Sign-On (ASSO) scheme allows users to access multiple services anonymously using one credential. We propose a new ASSO scheme, where users can access services anonymously through the use of anonymous credentials and unlinkably through the provision of designated verifiers. Notably, verifiers cannot link service requests of a user even if they collude. The novelty is that when a designated verifier is unavailable, a central authority can authorise new verifiers to authenticate the user on behalf of the original verifier. Furthermore, if required, a central verifier is authorised to deanonymise users and trace their service requests. We formalise the scheme along with a security proof and provide an empirical evaluation of its performance. This scheme can be applied to smart ticketing where minimising the collection of personal information of users is increasingly important to transport organisations due to privacy regulations such as General Data Protection Regulations (GDPR).

Keywords

Cite

@article{arxiv.1811.07642,
  title  = {Anonymous Single Sign-on with Proxy Re-Verification},
  author = {Jinguang Han and Liqun Chen and Steve Schneider and Helen Treharne and Stephan Wesemeyer and Nick Wils},
  journal= {arXiv preprint arXiv:1811.07642},
  year   = {2019}
}

Comments

20 pages, 8 figures, 2 tables

R2 v1 2026-06-23T05:20:21.436Z