Introduction
Main advantages of IRMA cards
Taking it further, and conclusions
Introduction
Main advantages of IRMA cards
Taking it further, and conclusions
Radboud University Nijmegen
Radboud University Nijmegen
Outline
Attributes in Action:
Next Generation of
Electronic Identity Management
Introduction
Bart Jacobs
Main advantages of IRMA cards
Institute for Computing and Information Sciences – Digital Security
Radboud University Nijmegen, The Netherlands
Taking it further, and conclusions
TSCP Workshop, Washington, 25 sept. 2014
Bart Jacobs
TSCP, 25/9/’14
Introduction
Main advantages of IRMA cards
Taking it further, and conclusions
Attributes in Action
1 / 16
Bart Jacobs
Radboud University Nijmegen
Smart card research @Nijmegen, NL
• attribute-based authentication via smart cards
• IRMA = “I Reveal My Attributes”
• it uses advanced crypto (so-called zero-knowledge proofs)
• But also more constructive research on secure, attribute-based
authentication
•
Attributes in Action
4 / 16
• unprecedented privacy protection
• in combination with security, flexibility and enablement
• great functionality, not only for privacy fundamentalists
Bart Jacobs
TSCP, 25/9/’14
Introduction
Main advantages of IRMA cards
Taking it further, and conclusions
Attributes in Action
5 / 16
Radboud University Nijmegen
Identities and attributes
• The underlying crypto was developed by IBM Zürich
• called Idemix; published openly, some 15 years ago
• In many situations (online) it is important to know with
certainty “who is on the other side of the line”
• At Nijmegen University a fast smart card implementation was
• But in many situation only partial information is sufficient
• eg. age verification for buying certain games/movies online
• access to local government facilities (eg. referendum, disposal)
• participation in online discussion groups (eg. medical)
• when someone’s identity needs to be shielded
developed, called IRMA, together with
• Idemix protocol extensions, like tunnels, revocation
• an ecosystem for attribute-based identity management
• All based on open source (and open standards)
• no commercial, only academic, interests
• independent of government activities in this area
TSCP, 25/9/’14
What this technology can do
Radboud University Nijmegen
Background: who did what?
Bart Jacobs
2 / 16
Presenting latest technology
• Vulnerabilities uncovered in many smart cards:
• Mifare Classic
• iClass
• Secure/Crypto-Memory
• Hitag2
• Megamos
TSCP, 25/9/’14
Introduction
Main advantages of IRMA cards
Taking it further, and conclusions
Attributes in Action
Radboud University Nijmegen
What this presentation is about
•
Bart Jacobs
TSCP, 25/9/’14
Introduction
Main advantages of IRMA cards
Taking it further, and conclusions
Attributes in Action
• Attributes support contextual privacy, or different personas
6 / 16
Bart Jacobs
TSCP, 25/9/’14
Attributes in Action
7 / 16
Introduction
Main advantages of IRMA cards
Taking it further, and conclusions
Introduction
Main advantages of IRMA cards
Taking it further, and conclusions
Radboud University Nijmegen
Two main selling points
•
Radboud University Nijmegen
Centralised architecture
Flexibility of attributes
Identity Provider
(versus inflexibility of identities)
• selective disclosure of attributes, depending on context
• eg. for roles (nurse, doctor) or ranks (sergeant, captain)
• usable for identifying (like: SSN) or non-identifying attributes
E•
(like: over 21).
• the sky-is-the-limit in applications
•
#
Decentralised architecture
• attributes are stored on-card, not centrally
• no vulnerable or privacy-unfriendly central hub is needed for
verification
• ideal for international contexts/collaborations (like passports)
Bart Jacobs
TSCP, 25/9/’14
Introduction
Main advantages of IRMA cards
Taking it further, and conclusions
Attributes in Action
User
9 / 16
Identity Provider
•
User
Bart Jacobs
TSCP, 25/9/’14
Introduction
Main advantages of IRMA cards
Taking it further, and conclusions
TSCP, 25/9/’14
Introduction
Main advantages of IRMA cards
Taking it further, and conclusions
•
•
Service providers
Attributes in Action
10 / 16
Radboud University Nijmegen
Security & privacy properties
• Non-transferability: my little nephew should not be able to
get my “over 18” attribute (and go to XXX sites)
• realised via binding to my private cryptographic key in the card
• Issuer-unlinkability: the issuers should not be able to track
where I use which attribute
download
attributes
•
Bart Jacobs
Radboud University Nijmegen
Decentralised architecture
•
•
• realised via blind signatures
2•
• Multi-show unlinkability: service providers should not be able
3•
/•
Service providers
to connect usage (at different providers)
• realised via zero-knowledge proofs
Attributes in Action
• Revocation: rogue attributes (via stolen/lost cards) should be
blockable.
• realised via clever use of “epochs”
11 / 16
Bart Jacobs
Radboud University Nijmegen
What is in it for the military?
TSCP, 25/9/’14
Introduction
Main advantages of IRMA cards
Taking it further, and conclusions
Attributes in Action
12 / 16
Radboud University Nijmegen
Ongoing IRMA pilots
• Chip-company NXP is developing IRMA support in its
high-end smart cards (“SmartMX”)
• The military organisation has many attributes: ranks, roles,
capabilities, clearances, . . .
• National telecom provider KPN is doing a pilot with Nijmegen
to support IRMA on smart phones/tablets
• They like robust, decentralised infrastructure that does not
depend on vulnerable hubs
• via a prototype implementation on SIM-cards
• but also via a trusted execution enironment (TEE, like TPM)
• (and in their volatile international cooperations such shared
hubs may not exist)
• Two dozen Redhat developers worldwide are experimentally
using IRMA cards for authentication and authorisation
• Anonimity can be important, eg. for special forces, intelligence
folks, pilot, . . .
• The computer science student association at Nijmegen is
introducing IRMA cards as membership cards
• but in other cases someone’s identity is relevant: flexibility via
• used for age verification for drinks, and for event registration
• also, Nijmegen university as a whole is looking at IRMA cards,
selective disclosure is required.
both for students and staff (strong authentication)
Bart Jacobs
TSCP, 25/9/’14
Attributes in Action
13 / 16
Bart Jacobs
TSCP, 25/9/’14
Attributes in Action
15 / 16
Introduction
Main advantages of IRMA cards
Taking it further, and conclusions
Radboud University Nijmegen
Conclusions
• Attribute-based identity management is hot
• privacy-friendly, secure, flexible, . . .
• Advanced crypto offers amazing functionality
• that can actually be implemented on smart cards (IRMA)
• (and in principle on secured smart phones too)
• This approach fits in privacy/security-by-design strategies
• our demos lead to higher requirements for privacy protection
• this may be demanded, at some stage, by regulators
• IRMA is an academic, open project, but it is ready for
practical pilots and up-take by industry
• who seizes the opportunities?
• more info at irmacard.org
Bart Jacobs
TSCP, 25/9/’14
Attributes in Action
16 / 16