A pseudonymisation technique based on Merkle trees is described in this paper. More precisely, by exploiting inherent properties of the Merkle trees as cryptographic accumulators, we illustrate how user-generated pseudonyms can be constructed, without the need of a third party. Each such pseudonym, which depends on several user's identifiers, suffices to hide these original identifiers, whilst the unlinkability property between any two different pseudonyms for the same user is retained; at the same time, this pseudonymisation scheme allows the pseudonym owner to easily prove that she owns a pseudonym within a specific context, without revealing information on her original identifiers. Compared to other user-generated pseudonymisation techniques which utilize public key encryption algorithms, the new approach inherits the security properties of a Merkle tree, thus achieving post-quantum security.
翻译:本文描述了基于Merkle树的假名技术。 更确切地说,通过利用Merkle树的固有特性作为加密收集器,我们可以说明如何在不需要第三方的情况下建造用户生成的假名。 每种这种假名都取决于几个用户的身份识别特征,足以隐藏这些原始识别特征,而两种不同的假名之间对于同一用户的不可连接性属性被保留;与此同时,这种假名机制允许假名所有人在特定情况下很容易地证明她拥有一个假名,而没有透露她原有识别特征的信息。 与其他用户生成的假名技术相比,新办法可以继承Merkle树的安全属性,从而实现Quntum后的安全性。