Conference ProceedingsOPEN ACCESS

Formal analysis of privacy in Direct Anonymous Attestation schemes

Science of Computer Programming (2015) 111(P2) 300-317
DOI: 10.1016/j.scico.2015.04.004
13Citations
Citations of this article
32Readers
Mendeley users who have this article in their library.

This article is free to access.

Abstract

This article introduces a definition of privacy for Direct Anonymous Attestation schemes. The definition is expressed as an equivalence property which is suited to automated reasoning using Blanchet's ProVerif. The practicality of the definition is demonstrated by analysing the RSA-based Direct Anonymous Attestation protocol by Brickell, Camenisch & Chen. The analysis discovers a vulnerability in the RSA-based scheme which can be exploited by a passive adversary and, under weaker assumptions, corrupt issuers and verifiers. A security fix is identified and the revised protocol is shown to satisfy our definition of privacy.

Author supplied keywords

Cite

CITATION STYLE

APA

Smyth, B., Ryan, M. D., & Chen, L. (2015). Formal analysis of privacy in Direct Anonymous Attestation schemes. In Science of Computer Programming (Vol. 111, pp. 300–317). Elsevier B.V. https://doi.org/10.1016/j.scico.2015.04.004

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free