Home > Resources > papers > FHLL25-AnonCreds-TrustedHW

Device-Bound Anonymous Credentials With(out) Trusted Hardware (Friedrichs, Harding, Lehmann, Lysyanskaya 2025)

URL: https://eprint.iacr.org/2025/1995.pdf

Summary

Formalises device binding for anonymous credentials, where a credential is tied to a secure element (SE) key and each presentation requires a fresh SE contribution. Identifies shortcomings in prior constructions — multiple SE calls, stateful SEs, or privacy that depends on SE honesty — which violate core SE design principles. Proposes new constructions compatible with BBS credentials that require only a single stateless SE call and whose privacy does not rely on SE honesty.

Related resources

• Device Binding for Anonymous Credentials on Legacy Phones (Lehmann, Zacharakis 2026) (paper, 2026)
• Short Group Signatures (Boneh, Boyen, Shacham 2004) (paper, 2004)