TY - GEN
T1 - Portal
T2 - 6th IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024
AU - Lauinger, Jan
AU - Bezmez, Serhat
AU - Ernstberger, Jens
AU - Steinhorst, Sebastian
N1 - Publisher Copyright:
© 2024 IEEE.
PY - 2024
Y1 - 2024
N2 - Latest identity systems rely on public blockchains to enhance user autonomy and reduce tracking from conventional identity providers. At the same time, identity systems integrate novel technologies such as zero-knowledge proofs (ZKPs) to improve data privacy and data compliance. We show that a naive verification of ZKPs at smart contracts enables replay attacks: Attackers can replay ZKPs at arbitrary times without having access to the private inputs that are required for the computation of the ZKP. To solve this problem, we construct a transaction sequence which verifies time-bound and replay-resistant ZKPs at smart contracts. Our construction introduces an additional but constant fee of 0.14 per verification of a ZKP on the public blockchain Ethereum. With our new construction, we propose Portal, a novel identity system for decentralized single sign-on.
AB - Latest identity systems rely on public blockchains to enhance user autonomy and reduce tracking from conventional identity providers. At the same time, identity systems integrate novel technologies such as zero-knowledge proofs (ZKPs) to improve data privacy and data compliance. We show that a naive verification of ZKPs at smart contracts enables replay attacks: Attackers can replay ZKPs at arbitrary times without having access to the private inputs that are required for the computation of the ZKP. To solve this problem, we construct a transaction sequence which verifies time-bound and replay-resistant ZKPs at smart contracts. Our construction introduces an additional but constant fee of 0.14 per verification of a ZKP on the public blockchain Ethereum. With our new construction, we propose Portal, a novel identity system for decentralized single sign-on.
KW - Decentralized Resolution
KW - Single Sign-On
KW - Smart Contracts
KW - Zero-knowledge Proofs
UR - http://www.scopus.com/inward/record.url?scp=85203497551&partnerID=8YFLogxK
U2 - 10.1109/ICBC59979.2024.10634362
DO - 10.1109/ICBC59979.2024.10634362
M3 - Conference contribution
AN - SCOPUS:85203497551
T3 - 2024 IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024
BT - 2024 IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024
PB - Institute of Electrical and Electronics Engineers Inc.
Y2 - 27 May 2024 through 31 May 2024
ER -