| 发明名称 | Credential abuse prevention and efficient revocation with oblivious third party | ||
| 摘要 | Aspects relate to a computer implemented anonymous credential method for credential abuse prevention and efficient revocation. The method includes acquiring a credential from an issuer at a user, registering the user and credential with an oblivious monitor, generating a user presentation token at the user using the credential, requesting presentation with the oblivious monitor by the user, wherein the user presentation token is transmitted to the oblivious monitor, verifying the user presentation token, wherein presentation is aborted if verification fails, transmitting, from the oblivious monitor, an oblivious monitor presentation token portion to the user in response to the verification passing, transmitting a combined presentation token to a verifier, wherein the combined presentation token includes the user presentation token and the oblivious monitor presentation token portion, and verifying the combined presentation token at the verifier. | ||
| 申请公布号 | US9608993(B1) | 申请公布日期 | 2017.03.28 |
| 申请号 | US201615012356 | 申请日期 | 2016.02.01 |
| 申请人 | INTERNATIONAL BUSINESS MACHINES CORPORATION | 发明人 | Camenisch Jan L.;Dubovitskaya Maria;Neven Gregory |
| 分类号 | H04L29/06 | 主分类号 | H04L29/06 |
| 代理机构 | Cantor Colburn LLP | 代理人 | Cantor Colburn LLP ;Quinn David |
| 主权项 | 1. A computer implemented anonymous credential method for credential abuse prevention and efficient revocation, the method comprising: acquiring a credential from an issuer at a user; registering the user and credential with an oblivious monitor; embedding a usage limitation value provided by the oblivious monitor into the credential; generating a user presentation token at the user using the credential; requesting presentation with the oblivious monitor by the user, wherein the user presentation token is transmitted to the oblivious monitor; verifying the user presentation token, wherein presentation is aborted if verification fails; transmitting, from the oblivious monitor, an oblivious monitor presentation token portion to the user in response to the verification passing; transmitting a combined presentation token to a verifier, wherein the combined presentation token comprises the user presentation token and the oblivious monitor presentation token portion; and verifying the combined presentation token at the verifier. | ||
| 地址 | Armonk NY US | ||