The Future of Attribute-based Credentials and Partial Identities for a more Privacy Friendly Internet19.04.2012 09:00-09:30
The Future of Attribute-based Credentials and Partial Identities for a more Privacy Friendly Internet
Internet Applications become more and more personal, which raises major privacy problems. One example is the quest for more and more identification for the use of Internet resources auch as social networks or participation platforms. Anonymous access can address the privacy issues, but in many applications some reputation management is needed. The question is then, who can assure which claims, properties or attributes and which information is given to the relying party to enable the assurance.
Classical trustworthy credentials normally do not respect privacy. They often reveal the identity of the holder even though the respective application often needs only much less information, for instance only confirmation that the holder is a teenager or is eligible for social benefits. In contrast to that, Attribute-based Credentials allow a holder to reveal just the minimal information required by the application, without giving away a full identity. These credentials thus facilitate the implementation of a trustworthy and at the same time privacy-preserving digital society.
However the main existing implementations of ABCs, U-Prove and Idemix, are not really compatible, which makes interoperation and interchangeability difficult. Consequentially concerns about lock-in can hinder the uptake of ABC technologies.
This presentation will give an introduction into ABC4Trust (https://abc4trust.eu), a European Union funded Integrated Project to achieve the federation and interchangeability of ABC technologies. Its objective are:
(1) a common, unified architecture for ABC systems to allow comparing their respective features and combining them on common platforms
(2) open reference implementations of selected ABC systems and
(3) actual production pilots allowing provably accredited members of restricted communities to provide anonymous feedback on their community or its members.
The first pilot application at a Swedish school will involve pseudonymous community access and social networking for school students (pupils). The second pilot application at Patras University (Greece) will involve polling, especially anonymously collection of feedback from authorized students about the courses they took and the respective lecturers.