Minimal disclosure credential verification and revocation

Assignee

• MICROSOFT TECHNOLOGY LICENSING, LLC · US

Inventors

• Tolga Acar · Sammamish, US
• Christian Paquin · Boucherville, CA
• Duy Lan Nguyen · Newcastle, US
• Melissa E. Chase · Seattle, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L9/3218
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

The subject disclosure is directed towards credential verification for accessing a service provider. A user may prove to the service provider the validity of the credential by communicating a non-revocation component that is based upon a prime-order cryptographic group without a bilinear pairing. In order to authenticate the user, a verification mechanism within an identity management system applies private cryptographic data, including a verifier-designated private key to the non-revocation component, which proves that the user's identity and therefore, the credential is not revoked. The presentation proof includes a hash value that is computed using the credential's commitment and the prime-order cryptographic group. By verifying that the hash value was computed using that commitment, the verification mechanism validates the credential and permits access to the service provider.