Recently an unlinkable version of the U-Prove attribute-based credential scheme was proposed at Financial Crypto’14 [9]. Unfortunately, the new scheme is forgeable: if sufficiently many users work together then they can construct new credentials, containing any set of attributes of their choice, without any involvement of the issuer. In this note we show how they can achieve this and we point out the error in the unforgeability proof.
CITATION STYLE
Verheul, E., Ringers, S., & Hoepman, J. H. (2017). The self-blindable U-prove scheme from FC’14 is forgeable (short paper). In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 9603 LNCS, pp. 339–345). Springer Verlag. https://doi.org/10.1007/978-3-662-54970-4_20
Mendeley helps you to discover research relevant for your work.