The restricted identification protocol for the new German identity card basically provides a method to use pseudonyms such that they can be linked by individual service providers, but not across different service providers (even not malicious ones). The protocol can be augmented to allow also for signatures under the pseudonyms. In this paper, we thus view -and define- this idea more abstractly as a new cryptographic signature primitive with some form of anonymity, and use the term domain-specific pseudonymous signatures. We then analyze the restricted identification solutions in terms of the formal security requirements. © 2012 Springer-Verlag.
Bender, J., Dagdelen, Ö., Fischlin, M., & Kügler, D. (2012). Domain-specific pseudonymous signatures for the german identity card. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 7483 LNCS, pp. 104–119). https://doi.org/10.1007/978-3-642-33383-5_7