Paper 2024/651

A New Hash-based Enhanced Privacy ID Signature Scheme

Liqun Chen, University of Surrey
Changyu Dong, Guangzhou University
Nada El Kassem, University of Surrey
Christopher J.P. Newton, University of Surrey
Yalan Wang, University of Surrey
Abstract

The elliptic curve-based Enhanced Privacy ID (EPID) signature scheme is broadly used for hardware enclave attestation by many platforms that implement Intel Software Guard Extensions (SGX) and other devices. This scheme has also been included in the Trusted Platform Module (TPM) specifications and ISO/IEC standards. However, it is insecure against quantum attackers. While research into quantum-resistant EPID has resulted in several lattice-based schemes, Boneh et al. have initiated the study of EPID signature schemes built only from symmetric primitives. We observe that for this line of research, there is still room for improvement. In this paper, we propose a new hash-based EPID scheme, which includes a novel and efficient signature revocation scheme. In addition, our scheme can handle a large group size (up to $2^{60}$ group members), which meets the requirements of rapidly developing hardware enclave attestation applications. The security of our scheme is proved under the Universal Composability (UC) model. Finally, we have implemented our EPID scheme, which, to our best knowledge, is the first implementation of EPID from symmetric primitives.

Metadata
Available format(s)
PDF
Category
Cryptographic protocols
Publication info
Published elsewhere. Proceedings of PQCrypto 2024
Keywords
Hash-based signaturesEnhanced Privacy IDSignature-based revocation
Contact author(s)
liqun chen @ surrey ac uk
changyu dong @ gzhu edu cn
nada elkassem @ surrey ac uk
c newton @ surrey ac uk
yalan wang @ surrey ac uk
History
2024-04-29: approved
2024-04-28: received
See all versions
Short URL
https://ia.cr/2024/651
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2024/651,
      author = {Liqun Chen and Changyu Dong and Nada El Kassem and Christopher J.P. Newton and Yalan Wang},
      title = {A New Hash-based Enhanced Privacy ID Signature Scheme},
      howpublished = {Cryptology ePrint Archive, Paper 2024/651},
      year = {2024},
      note = {\url{https://eprint.iacr.org/2024/651}},
      url = {https://eprint.iacr.org/2024/651}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.