Achieving Flexible and Secure Authentication with Strong Privacy in Decentralized Networks

TL;DR

This paper presents IRAC, a novel cryptographic scheme enabling flexible, privacy-preserving, and secure authentication in decentralized networks through issuer-hiding credentials, robust revocation, and attribute privacy.

Contribution

IRAC introduces a flexible credential model, a decentralized revocation mechanism, and enhanced attribute hiding, addressing key limitations of existing anonymous credential schemes in decentralized environments.

Findings

Credential presentation time is approximately 1 second.

IRAC effectively hides issuer identity and attributes.

The scheme supports flexible, privacy-preserving authentication in decentralized networks.

Abstract

Anonymous credentials (ACs) are a crucial cryptographic tool for privacy-preserving authentication in decentralized networks, allowing holders to prove eligibility without revealing their identity. However, a major limitation of standard ACs is the disclosure of the issuer's identity, which can leak sensitive contextual information about the holder. Issuer-hiding ACs address this by making a credential's origin indistinguishable among a set of approved issuers. Despite this advancement, existing solutions suffer from practical limitations that hinder their deployment in decentralized environments: unflexible credential models that restrict issuer and holder autonomy, flawed revocation mechanisms that compromise security, and weak attribute hiding that fails to meet data minimization principles. This paper introduces a new scheme called IRAC to overcome these challenges. We propose a flexible credential model that employs vector commitments with a padding strategy to unify credentials from heterogeneous issuers, enabling privacy-preserving authentication without enforcing a global static attribute set or verifier-defined policies. Furthermore, we design a secure decentralized revocation mechanism where holders prove non-revocation by demonstrating their credential's hash lies within a gap in the issuer's sorted revocation list, effectively decoupling revocation checks from verifier policies while maintaining issuer anonymity. IRAC also strengthens attribute hiding by utilizing zk-SNARKs and vector commitments, allowing holders to prove statements about their attributes without disclosing the attributes themselves or the credential structure. Security analysis and performance evaluations demonstrate its practical feasibility for decentralized networks, where presenting a credential can be finished in 1s.