IDEA-DAC: Integrity-Driven Editing for Accountable Decentralized Anonymous Credentials via ZK-JSON

IACR Cryptology ePrint Archive Pub Date : 2024-05-13 DOI:10.1145/3589334.3645658

Shuhao Zheng, Zonglun Li, Junliang Luo, Ziyue Xin, Xue Liu

{"title":"IDEA-DAC: Integrity-Driven Editing for Accountable Decentralized Anonymous Credentials via ZK-JSON","authors":"Shuhao Zheng, Zonglun Li, Junliang Luo, Ziyue Xin, Xue Liu","doi":"10.1145/3589334.3645658","DOIUrl":null,"url":null,"abstract":"Decentralized Anonymous Credential (DAC) systems are increasingly relevant, especially when enhancing revocation mechanisms in the face of complex traceability challenges. This paper introduces IDEA-DAC , a paradigm shift from the conventional revoke-and-reissue methods, promoting direct and I ntegrity-D riven E diting (IDE) for A ccountable DAC s, which results in better integrity accountability, traceability, and system simplicity. We further incorporate an Edit-bound Conformity Check that ensures tailored integrity standards during credential amendments using R1CS-based ZK-SNARKs. Delving deeper, we propose ZK-JSON , a unique R1CS circuit design tailored for IDE over generic JSON documents. This design imposes strictly 𝑂 ( 𝑁 ) rank-1 constraints for variable-length JSON documents of up to 𝑁 bytes in length, encompassing serialization, encryption, and edit-bound conformity checks. Additionally, our circuits only necessitate a one-time compilation, setup, and smart contract deployment for homogeneous JSON documents up to a specified size. While preserving core DAC features such as selective disclosure, anonymity, and predicate provability, IDEA-DAC achieves precise data modification checks without revealing private content, ensuring only authorized edits are permitted. In summary, IDEA-DAC offers an enhanced methodology for large-scale JSON-formatted credential systems, setting a new standard in decentralized identity management efficiency and precision","PeriodicalId":256404,"journal":{"name":"IACR Cryptology ePrint Archive","volume":"17 5","pages":"1868-1879"},"PeriodicalIF":0.0000,"publicationDate":"2024-05-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"IACR Cryptology ePrint Archive","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3589334.3645658","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Decentralized Anonymous Credential (DAC) systems are increasingly relevant, especially when enhancing revocation mechanisms in the face of complex traceability challenges. This paper introduces IDEA-DAC , a paradigm shift from the conventional revoke-and-reissue methods, promoting direct and I ntegrity-D riven E diting (IDE) for A ccountable DAC s, which results in better integrity accountability, traceability, and system simplicity. We further incorporate an Edit-bound Conformity Check that ensures tailored integrity standards during credential amendments using R1CS-based ZK-SNARKs. Delving deeper, we propose ZK-JSON , a unique R1CS circuit design tailored for IDE over generic JSON documents. This design imposes strictly 𝑂 ( 𝑁 ) rank-1 constraints for variable-length JSON documents of up to 𝑁 bytes in length, encompassing serialization, encryption, and edit-bound conformity checks. Additionally, our circuits only necessitate a one-time compilation, setup, and smart contract deployment for homogeneous JSON documents up to a specified size. While preserving core DAC features such as selective disclosure, anonymity, and predicate provability, IDEA-DAC achieves precise data modification checks without revealing private content, ensuring only authorized edits are permitted. In summary, IDEA-DAC offers an enhanced methodology for large-scale JSON-formatted credential systems, setting a new standard in decentralized identity management efficiency and precision

查看原文本刊更多论文

IDEA-DAC：通过 ZK-JSON 对可问责的去中心化匿名凭证进行完整性驱动的编辑

去中心化匿名凭证（DAC）系统越来越重要，尤其是在面对复杂的可追溯性挑战时加强撤销机制。本文介绍了 IDEA-DAC，这是对传统的撤销和重发方法的范式转变，促进了可问责 DAC 的直接和完整性破坏编辑（IDE），从而实现了更好的完整性问责、可追溯性和系统简易性。我们进一步整合了编辑绑定符合性检查（Edit-bound Conformity Check），确保在使用基于 R1CS 的 ZK-SNARKs 进行凭证修订时采用量身定制的完整性标准。深入研究后，我们提出了 ZK-JSON，一种为通用 JSON 文档 IDE 量身定制的独特 R1CS 电路设计。该设计对长度不超过 𝑁 字节的可变长度 JSON 文档施加严格的 𝑂 ( 𝑁 ) 级-1 约束，包括序列化、加密和编辑绑定一致性检查。此外，我们的电路只需进行一次性编译、设置和智能合约部署，即可处理指定大小的同质 JSON 文档。IDEA-DAC 保留了选择性披露、匿名性和谓词可证明性等核心 DAC 功能，在不泄露隐私内容的情况下实现了精确的数据修改检查，确保只允许授权编辑。总之，IDEA-DAC 为大规模 JSON 格式的凭证系统提供了一种增强的方法，为分散式身份管理的效率和精确性设定了新标准。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

IACR Cryptology ePrint Archive

自引率

0.00%

发文量