Title
Verifiable Credentials with Privacy-Preserving Tamper-Evident Revocation Mechanism
Author
Xu, Li (Student TU Delft)
Li, T. (TU Delft Cyber Security)
Erkin, Z. (TU Delft Cyber Security)
Date
2023
Abstract
Verifiable Credential (VC) is a new standard proposed by the W3C association to facilitate the expression and verification of third-party-verified credentials on the Internet, such as passports or diplomas. However, the current VC data model lacks an explicit revocation design that guarantees the secure operations of the system, which limits its application. In this paper, we specify the requirements for a tamper-evident and privacy-preserving revocation mechanism, based on which we compare existing solutions and propose our revocation mechanism that satisfies all the requirements. Our design combines a cryptographic accumulator and a role-based blockchain. With zero-knowledge proof, the verifier can operate off-chain computation of the revocation status while ensuring the correctness of revocation information published on the blockchain. Our analysis shows that the proposed revocation mechanism can prevent fraud using forged and revoked credentials and relieve privacy concerns caused by the correlation of digital data. Our proof-of-concept implementation demonstrates that our revocation mechanism adds only 42.86 ms overhead in the presentation and 31.36 ms overhead in the verification of verifiable credentials. We also provide scalability analysis, which illustrates that the throughput of our blockchain can meet real-world needs.
Subject
verifiable credential
revocation
blockchain
zero-knowledge proof
privacy
To reference this document use:
http://resolver.tudelft.nl/uuid:e1548744-24b0-4943-aca9-4fc0b930eeb5
DOI
https://doi.org/10.1109/BCCA58897.2023.10338923
Publisher
IEEE, Danvers
Embargo date
2024-06-11
ISBN
979-8-3503-3924-6
Source
Proceedings of the 2023 Fifth International Conference on Blockchain Computing and Applications (BCCA)
Event
2023 Fifth International Conference on Blockchain Computing and Applications (BCCA), 2023-10-24 → 2023-10-26, Kuwait, Kuwait
Bibliographical note
Green Open Access added to TU Delft Institutional Repository 'You share, we take care!' - Taverne project https://www.openaccess.nl/en/you-share-we-take-care Otherwise as indicated in the copyright section: the publisher is the copyright holder of this work and the author uses the Dutch legislation to make this work public.
Part of collection
Institutional Repository
Document type
conference paper
Rights
© 2023 Li Xu, T. Li, Z. Erkin