Security

Anon-Pass: Practical Anonymous Subscriptions

Free registration required

Executive Summary

The authors present the design, security proof, and implementation of an anonymous subscription service. Users register for the service by providing some form of identity, which might or might not be linked to a real-world identity such as a credit card, a web login, or a public key. A user logs on to the system by presenting a credential derived from information received at registration. Each credential allows only a single login in any authentication window, or epoch. Logins are anonymous in the sense that the service cannot distinguish which user is logging in any better than random guessing.

  • Format: PDF
  • Size: 486.66 KB