112 results about "Proof of knowledge" patented technology

Systems and methods are provided for a device to engage in a zero-knowledge proof with an entity requiring authentication either of secret material or of the device itself. The device may provide protection of the secret material or its private key for device authentication using a hardware security module (HSM) of the device, which may include, for example, a read-only memory (ROM) accessible or programmable only by the device manufacturer. In the case of authenticating the device itself a zero-knowledge proof of knowledge may be used. The zero-knowledge proof or zero-knowledge proof of knowledge may be conducted via a communication channel on which an end-to-end (e.g., the device at one end and entity requiring authentication at the other end) unbroken chain of trust is established, unbroken chain of trust referring to a communication channel for which endpoints of each link in the communication channel mutually authenticate each other prior to conducting the zero-knowledge proof of knowledge and for which each link of the communication channel is protected by at least one of hardware protection and encryption.

A system for securing information, includes a processor and storage device. The storage device stores information encrypted with one of a first private rolling key and a first public rolling key of an a first asymmetric rolling crypto-key, along with the one first rolling key. The processor has the logic to direct transmission, via a network, of proof of knowledge of the stored one first rolling key to authenticate a user, and of a request for the other of the first private rolling key and the first public rolling key. The processor receives the other first rolling key via the network, responsive to the directed transmission. The processor then decrypts the stored encrypted information with the received other first rolling key, and generates a second asymmetric rolling crypto-key having a second private rolling key and a second public rolling key. The processor encrypts the information with one of the second private rolling key and the second public rolling key. The processor also directs transmission of the other of the second private rolling key and the second public rolling key via the network. The storage device stores the information encrypted with the one second rolling key and the one second rolling key itself.

The invention relates to an authentication method for authenticating a client device having an authentication token generated by means of a pseudo-homomorphic function and based on a secret element (PIN) known only by the client device, to a server, comprising:

• • the generation (A1), by the client device, of proof of knowledge of the secret element based on a proof generation key masked with a first mask data item, said masked proof generation key being dependent on said secret element,
  • the transmission to the server by the client device, of said generated proof of knowledge of the secret element (A2) and of the authentication token (J) masked using the mask data item (A3),
  • the verification of the validity of the masked authentication token (A4) and of the validity of the proof of knowledge by the server (A6) by a zero-knowledge proof, proving the knowledge of said secret element by the client device without revealing it.

The invention provides an identity management and authentication system and method based on a block chain and zero knowledge proof. The identity management and authentication system comprises an on-chain smart contract and an off-chain entity local client. The on-chain intelligent contract comprises the following contracts: an attribute warehouse contract, a knowledge management contract, a knowledge verification contract and a key warehouse contract. The off-chain entity local client comprises the following modules: a UI interface module, a web3.js interface module, a zero knowledge proof module, a communication module and a database module. The identity management and authentication method comprises the steps of attribute token creation, attribute hidden token creation, identity information authentication and attribute token logout. According to the invention, the ownership of the user to the attribute is not disclosed in the blockchain, the problem that the identity management system in the blockchain discloses the mapping relationship between the personal identifier and the personal identity information to the owner is solved, and the privacy of the user identity information isensured.

A method and apparatus for proving and a method and apparatus for verifying that a secret value is a member of a predetermined set of values. The proving mechanism receives a set of signatures which has respective values in the predetermined set signed using a private key. The proving mechanism sends to the verifying mechanism a commitment on the secret value of the proving mechanism. The proving mechanism and verifying mechanism then communicate to implement a proof of knowledge protocol demonstrating knowledge by the proving mechanism of a signature on the secret value committed to in the commitment, thus proving that the secret value is a member of the predetermined set.

The present invention provides an anonymous selectable credential system and method therefor. In the system, a credential authority issues root credentials to a user for certain user rights. The user generates an anonymous selectable credential from the root credentials that correspond to a selected set of user rights, and presents the anonymous selectable credential to a service. Using the anonymous selectable credential, the user can prove to the service through a knowledge proof that the selected set of user rights was granted by the credential authority. Then the service may provide service to the user according to the verified user rights. By generating and presenting different anonymous selectable credentials, the user could remain anonymous no matter how many times he/she accessed one or more services. The user can selectively prove any portion of his/her full set of rights, and no matter how many rights is to be proved, the computational cost is basically the same as that for proving only one right.

The embodiment of the invention provides a zero-knowledge proof data interaction method, which is used for a trust challenge node and comprises the following steps of sending a zero-knowledge challenge request to a trust challenged node, wherein the challenge request comprises a random number and specified position data, so that the trusted challenged node signs the data of the specified positionby using a trusted platform module (TPM) of the trusted challenged node and the random number to obtain specified position signature data; receiving the specified position signature data sent by the trusted challenged node, and a measurement log ML and an AIK certificate recorded by the trusted platform module TPM; verifying whether the trust challenge node verifies that the specified position signature data and the measurement log ML recorded by the trusted platform module TPM are consistent with the AIK certificate or not; and according to the verification result, determining whether the trusted challenged node is trusted or not, so as to determine whether to transmit the (pk, vk) in the zero-knowledge verification application stored in the TEE security area to the trusted challenged node or not.

The invention discloses a collaborative fine-grained access control method based on a block chain. According to the invention, identities and attribute certificates of entities in a system are managedby utilizing a blockchain-based identity management technology, so the method does not depend on TP; each entity in the system can manage own identity and attribute certificate in a self-organizing manner; the overall safety of the system is improved; in addition, technologies such as zero knowledge proof and ring signature are utilized, so it is ensured that identity privacy of the user cannot be leaked in the transaction process; under the condition that a trusted center does not exist, the system master key is generated by negotiation of all resource managers in the system, an attribute cryptographic mechanism of a multi-attribute authoritative key strategy under the condition of not depending on credible authority is solved, cooperative key generation and resource access based on a block chain are realized, and the security of each entity in the system is greatly improved.

The invention relates to privacy-preserving metering. Privacy protecting metering is described such as for electricity, gas or water metering, metering use of cloud computing resources, traffic congestion charging and other metering applications. In examples, fine grained user consumption data is kept private and not disclosed to a provider of a resource consumed by the user. In examples, a bill generator receives certified meter readings and a certified pricing policy and generates a bill which omits fine grained user consumption data. For example, the bill generator generates a zero knowledge proof that the bill is correct and sends that proof to a provider together with the bill. In examples a provider is able to check that the bill is correct using the zero knowledge proof without finding out the user's private consumption data. In an embodiment the pricing policy is stored as signed rows of a table to enable efficient generation of the zero knowledge proof.

The invention provides a supervisable blockchain construction method based on group signature. A group administrator, a blockchain user and a blockchain verification node are included, wherein the blockchain user needs to register to the group administrator to obtain a user private key; a group signature is generated by using the user private key, and a knowledge proof is generated by using a local secret number; and the blockchain verification node verifies the group signature by using the group public key and verifies the knowledge proof in the transaction, thereby ensuring that the transactions of all blockchains are generated by registered users, preventing the users from being blurred, and enabling a group administrator to recover the identities of the users through the group privatekey and the group signature to realize supervision. According to the method, the traceability, the non-linkability and the supervisibility of user transaction can be realized at the same time, the supervisibility problem of the blockchain is solved, the method is directly applied to the blockchain adopting a UTXO mode, and the supervisibility is provided by performing adaptive transformation on the block chain.

Systems and methods for anonymous cryptocurrency transactions are disclosed. A method may include: receiving, from the electronic device associated with a sender of a cryptocurrency transaction, a zero-knowledge statement comprising a shuffled and anonymized list of participants comprising the sender, a receiver of the cryptocurrency transaction, and a plurality of decoy participants, a transfer amount, and a remaining balance, and a secret witness, wherein each participant is associated with an index; generating one-out-of-many proofs for the sender and the receiver based on their associated indices; generating a Basic Zether proof for the transfer amount and the remaining balance; conducting many-out-of-many proofs with parameters chosen for an anonymous payment setting; and constructing a zero-knowledge proof for the zero-knowledge statement. The sender sends an ordered list of the participants and the zero-knowledge proof to a verifier using the FiatShamir transform, and the verifier verifies the zero-knowledge proof.

The invention relates to a power data uploading system and method based on zero knowledge proof. The system comprises a plurality of power utilization unit modules, a plurality of block chain side chains and a block chain main chain; the plurality of power utilization unit modules are respectively connected with the block chain main chain through the corresponding block chain side chains; the power utilization unit module is used for collecting power utilization original data and uploading the original data and a signature to the block chain side chain, and the block chain side chain is used for processing the received original data to obtain statistics/description of the data, generating a zero-knowledge proof, and uploading the statistics/description and the zero-knowledge proof of the data to a block chain main chain; and the block chain main chain is used for receiving the statistics/description of the data and the zero-knowledge proof, verifying the correctness of the zero-knowledge proof through the smart contract, and archiving, recording and displaying the zero-knowledge proof if the verification is passed. According to the invention, the problem of expanding the block chain storage capability and the data credibility in the energy data uploading process can be solved.

The invention provides a method and device for obtaining a zero knowledge proof based on distributed processing, a computer readable storage medium and a system for storing data in a blockchain. The method comprises the following steps: a proof node sends input information to a plurality of processing nodes; the first processing node performs FFT calculation of zero knowledge proof based on the input information, and determines one of the first to fourth components of the zero knowledge proof; other processing nodes except the first node in the plurality of processing nodes determine one of the first to fourth components of the zero knowledge proof in parallel; each of the plurality of processing nodes determines one part of a fifth component of the zero knowledge proof based on a result of the FFT calculation; and the proof node determines the first to fifth components based on the respective parts of the first to fifth components of the zero knowledge proof of the plurality of processing nodes, thereby obtaining the zero knowledge proof.

The invention discloses a zero-knowledge proof method and device, electronic equipment and a storage medium, and the method comprises the steps: selecting a data processing relation, and processing private data and public data to obtain a calculation result; according to commitment parameters generated by a trusted third party, carrying out commitment on the privacy data and the calculation result, obtaining a first commitment value and a second commitment value, and generating the commitment parameters by a trusted third party; and generating a non-interactive zero-knowledge proof according to the data processing relationship, wherein the commitment parameter, the first commitment value and the second commitment value are used for a verifier to verify the non-interactive zero-knowledge proof. According to the invention, the technical problem that the method cannot be used in a scene in which bilinear pairing cannot be used in the prior art is solved.

The invention discloses a supervisable zero-knowledge proof method and device based on discrete logarithm equality proof, and the method comprises the steps: obtaining a public parameter of a supervisable zero-knowledge proof system, a public key and a private key for data encryption and extraction, and a committed generator, and disclosing the public parameter, the public key and the generator; enabling the proving party to encrypt the private data; enabling the proving party to perform commitment and zero-knowledge proving on the private data; enabling the proving party to generate discrete logarithm equality proving for the ciphertext and the commitment; enabling the proving party to send the commitment and zero knowledge proof broadcast, the ciphertext and the equality proof to the supervising party; enabling the verification party to verify the zero-knowledge proof and verifies the validity of the data; enabling the supervisor to verify the discrete logarithm equality proof and judge whether the data encrypted by the proof party is uplink data or not; and enabling the supervisor to extract the data in the ciphertext according to the equality proof verification result and audits the data. According to the method, an efficient supervision scheme without interaction is constructed by adopting asymmetric encryption, and the supervision requirement of a supervisor is met in a scene of protecting data privacy by using zero knowledge proof.