Publication result detail

Implementation of Revocable Keyed-Verification Anonymous Credentials on Java Card

CASANOVA-MARQUÉS, R.; DZURENDA, P.; HAJNÝ, J.

Original Title

Implementation of Revocable Keyed-Verification Anonymous Credentials on Java Card

English Title

Implementation of Revocable Keyed-Verification Anonymous Credentials on Java Card

Type

Paper in proceedings (conference paper)

Original Abstract

Java Card stands out as a good choice for the development of smart card applications due to the high interoperability between different manufacturers, its security, and wide support of cryptographic algorithms. Despite extensive cryptographic support, current Java Cards do not support non-standard cryptographic algorithms such as post-quantum, secure-multiparty computations, and privacy-enhancing cryptographic schemes. Moreover, Java Card is restricted by the Application Programming Interface (API) in algebraic operations, which are the foundation of modern cryptographic schemes. This paper addresses the issue of developing these modern schemes by exploiting the limited cryptographic API provided by these types of cards. We show how to (ab)use the Java Card's API to perform modular arithmetic operations, as well as basic operations on elliptic curves. Furthermore, we implement an attribute-based privacy-enhancing scheme on an off-the-shelf Java Card. To do so, we use our cryptographic API and several optimization techniques to make the scheme as efficient as possible. To demonstrate the practicality of our solution, we present the implementation results and benchmark tests.

English abstract

Java Card stands out as a good choice for the development of smart card applications due to the high interoperability between different manufacturers, its security, and wide support of cryptographic algorithms. Despite extensive cryptographic support, current Java Cards do not support non-standard cryptographic algorithms such as post-quantum, secure-multiparty computations, and privacy-enhancing cryptographic schemes. Moreover, Java Card is restricted by the Application Programming Interface (API) in algebraic operations, which are the foundation of modern cryptographic schemes. This paper addresses the issue of developing these modern schemes by exploiting the limited cryptographic API provided by these types of cards. We show how to (ab)use the Java Card's API to perform modular arithmetic operations, as well as basic operations on elliptic curves. Furthermore, we implement an attribute-based privacy-enhancing scheme on an off-the-shelf Java Card. To do so, we use our cryptographic API and several optimization techniques to make the scheme as efficient as possible. To demonstrate the practicality of our solution, we present the implementation results and benchmark tests.

Keywords

Identity;Privacy;Cryptography;Elliptic Curves;Smart Cards;Java Card;Microcontrollers

Key words in English

Identity;Privacy;Cryptography;Elliptic Curves;Smart Cards;Java Card;Microcontrollers

Authors

CASANOVA-MARQUÉS, R.; DZURENDA, P.; HAJNÝ, J.

RIV year

2023

Released

23.08.2022

Publisher

ACM

Location

Vienna, Austria

ISBN

978-1-4503-9670-7

Book

ARES '22: Proceedings of the 17th International Conference on Availability, Reliability and Security

Pages from

1

Pages to

8

Pages count

8

URL

https://dl.acm.org/doi/10.1145/3538969.3543798

BibTex

@inproceedings{BUT178400,
  author="Raúl {Casanova-Marqués} and Petr {Dzurenda} and Jan {Hajný}",
  title="Implementation of Revocable Keyed-Verification Anonymous Credentials on Java Card",
  booktitle="ARES '22: Proceedings of the 17th International Conference on Availability, Reliability and Security",
  year="2022",
  pages="1--8",
  publisher="ACM",
  address="Vienna, Austria",
  doi="10.1145/3538969.3543798",
  isbn="978-1-4503-9670-7",
  url="https://dl.acm.org/doi/10.1145/3538969.3543798"
}