Improving Unlinkability of Attribute-based Authentication through Game Theory-Reference-Cited by-同舟云学术

Improving Unlinkability of Attribute-based Authentication through Game Theory

Published:2022-03-04 Issue:2 Volume:25 Page:1-36
ISSN:2471-2566
Container-title:ACM Transactions on Privacy and Security
language:en
Short-container-title:ACM Trans. Priv. Secur.

Author:

Zolotavkin Yevhen¹,Jeong Jongkil Jay¹,Kuchta Veronika²^ORCID,Slavnenko Maksym¹^ORCID,Doss Robin¹^ORCID

Affiliation:

1. Deakin University, Geelong, Australia

2. The University of Queensland, St Lucia, Australia

Abstract

This article first formalizes the problem of unlinkable attribute-based authentication in the system where each user possesses multiple assertions and uses them interchangeably. Currently, there are no recommendations for optimal usage of assertions in such authentication systems. To mitigate this issue, we use conditional entropy to measure the uncertainty for a Relying Party who attempts to link observed assertions with user labels. Conditional entropy is the function of usage statistics for all assertions in the system. Personal decisions made by the users about the usage of assertions contribute to these statistics. This collective effect from all the users impacts the unlinkability of authentication and must be studied using game theory. We specify several instances of the game where context information that is provided to the users differs. Through game theory and based on conditional entropy, we demonstrate how each user optimizes usage for the personal set of assertions. In the experiment, we substantiate the advantage of the proposed rational decision-making approaches: Unlinkability that we obtain under Nash equilibrium is higher than in the system where users authenticate using their assertions at random. We finally propose an algorithm that calculates equilibrium and assists users with the selection of assertions. This manifests that described techniques can be executed in realistic settings. This does not require modification of existing authentication protocols and can be implemented in platform-independent identity agents. As a use case, we describe how our technique can be used in Digital Credential Wallets: We suggest that unlinkability of authentication can be improved for Verifiable Credentials.

Funder

Australian Government’s Cooperative Research Centres Program

Publisher

Association for Computing Machinery (ACM)

Subject

Safety, Risk, Reliability and Quality,General Computer Science

Link

https://dl.acm.org/doi/pdf/10.1145/3501260

Reference75 articles.

1. IRMA: Practical, decentralized and privacy-friendly identity management using smartphones;Alpár Gergely;Proceedings of the Hot Topics in Privacy Enhancing Technologies (HotPETs’17),2017

2. Sebastian Angel and Srinath Setty. 2016. Unobservable communication over fully untrusted infrastructure. In Proceedings of the 12th USENIX Symposium on Operating Systems Design and Implementation (OSDI’16). USENIX Association, 551–569. https://www.usenix.org/conference/osdi16/technical-sessions/presentation/angel.

3. A. Beduschi J. Cinnamon J. Langford C. Luo and D. Owen. 2017. Building digital identities: The challenges risks and opportunities of collecting behavioural attributes for new digital identity systems. 40 pages.

4. ATEMA: An attribute enablement module for attribute retrieval and transfer through the eIDAS Network

5. Trust, Reciprocity, and Social History