1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
991
992
993
994
995
996
997
998
999
1000
1001
1002
1003
1004
1005
1006
1007
1008
1009
1010
1011
1012
1013
1014
1015
1016
1017
1018
1019
1020
1021
1022
1023
1024
1025
1026
1027
1028
1029
1030
1031
1032
1033
1034
1035
1036
1037
1038
1039
1040
1041
1042
1043
1044
1045
1046
1047
1048
1049
1050
1051
1052
1053
1054
1055
1056
1057
1058
1059
1060
1061
1062
1063
1064
1065
1066
1067
1068
1069
1070
1071
1072
1073
1074
1075
1076
1077
1078
1079
1080
1081
1082
1083
1084
1085
1086
1087
1088
1089
1090
1091
1092
1093
1094
1095
1096
1097
1098
1099
1100
1101
1102
1103
1104
1105
1106
1107
1108
1109
1110
1111
1112
1113
1114
1115
1116
1117
1118
1119
1120
1121
1122
1123
1124
1125
1126
1127
1128
1129
1130
1131
1132
1133
1134
1135
1136
1137
1138
1139
1140
1141
1142
1143
1144
1145
1146
1147
1148
1149
1150
1151
1152
1153
1154
1155
1156
1157
1158
1159
1160
1161
1162
1163
1164
1165
1166
1167
1168
1169
1170
1171
1172
1173
1174
1175
1176
1177
1178
1179
1180
1181
1182
1183
1184
1185
1186
1187
1188
1189
1190
1191
1192
1193
1194
1195
1196
1197
1198
1199
1200
1201
1202
1203
1204
1205
1206
1207
1208
1209
1210
1211
1212
1213
1214
1215
1216
1217
1218
1219
1220
1221
1222
1223
1224
1225
1226
1227
1228
1229
1230
1231
1232
1233
1234
1235
1236
1237
1238
1239
1240
1241
1242
1243
1244
1245
1246
1247
1248
1249
1250
1251
1252
1253
1254
1255
1256
1257
1258
1259
1260
1261
1262
1263
1264
1265
1266
1267
1268
1269
1270
1271
1272
1273
1274
1275
1276
1277
1278
1279
1280
1281
1282
1283
1284
1285
1286
1287
1288
1289
1290
1291
1292
1293
1294
1295
1296
1297
1298
1299
1300
1301
1302
1303
1304
1305
1306
1307
1308
1309
1310
1311
1312
1313
1314
1315
1316
1317
1318
1319
1320
1321
1322
1323
1324
1325
1326
1327
1328
1329
1330
1331
1332
1333
1334
1335
1336
1337
1338
1339
1340
1341
1342
1343
1344
1345
1346
1347
1348
1349
1350
1351
1352
1353
1354
1355
1356
1357
1358
1359
1360
1361
1362
1363
1364
1365
1366
1367
1368
1369
1370
1371
1372
1373
1374
1375
1376
1377
1378
1379
1380
1381
1382
1383
1384
1385
1386
1387
1388
1389
1390
1391
1392
1393
1394
1395
1396
1397
1398
1399
1400
1401
1402
1403
1404
1405
1406
1407
1408
1409
1410
1411
1412
1413
1414
1415
1416
1417
1418
1419
1420
1421
1422
1423
1424
1425
1426
1427
1428
1429
1430
1431
1432
1433
1434
1435
1436
1437
1438
1439
1440
1441
1442
1443
1444
1445
1446
1447
1448
1449
1450
1451
1452
1453
1454
1455
1456
1457
1458
1459
1460
1461
1462
1463
1464
1465
1466
1467
1468
1469
1470
1471
1472
1473
1474
1475
1476
1477
1478
1479
1480
1481
1482
1483
1484
1485
1486
1487
1488
1489
1490
1491
1492
1493
1494
1495
1496
1497
1498
1499
1500
1501
1502
1503
1504
1505
1506
1507
1508
1509
1510
1511
1512
1513
1514
1515
1516
1517
1518
1519
1520
1521
1522
1523
1524
1525
1526
1527
1528
1529
1530
1531
1532
1533
1534
1535
1536
1537
1538
1539
1540
1541
1542
1543
1544
1545
1546
1547
1548
1549
1550
1551
1552
1553
1554
1555
1556
1557
1558
1559
1560
1561
1562
1563
1564
1565
1566
1567
1568
1569
1570
1571
1572
1573
1574
1575
1576
1577
1578
1579
1580
1581
1582
1583
1584
1585
1586
1587
1588
1589
1590
1591
1592
1593
1594
1595
1596
1597
1598
1599
1600
1601
1602
1603
1604
1605
1606
1607
1608
1609
1610
1611
1612
1613
1614
1615
1616
1617
1618
1619
1620
1621
1622
1623
1624
1625
1626
1627
1628
1629
1630
1631
1632
1633
1634
1635
1636
1637
1638
1639
1640
1641
1642
1643
1644
1645
1646
1647
1648
1649
1650
1651
1652
1653
1654
1655
1656
1657
1658
1659
1660
1661
1662
1663
1664
1665
1666
1667
1668
1669
1670
1671
1672
1673
1674
1675
1676
1677
1678
1679
1680
1681
1682
1683
1684
1685
1686
1687
1688
1689
1690
1691
1692
1693
1694
1695
1696
1697
1698
1699
1700
1701
1702
1703
1704
1705
1706
1707
1708
1709
1710
1711
1712
1713
1714
1715
1716
1717
1718
1719
1720
1721
1722
1723
1724
1725
1726
1727
1728
1729
1730
1731
1732
1733
1734
1735
1736
1737
1738
1739
|
Network Working Group S. Park
Request for Comments: 5636 H. Park
Category: Experimental Y. Won
J. Lee
KISA
S. Kent
BBN Technologies
August 2009
Traceable Anonymous Certificate
Abstract
This document defines a practical architecture and protocols for
offering privacy for a user who requests and uses an X.509
certificate containing a pseudonym, while still retaining the ability
to map such a certificate to the real user who requested it. The
architecture is compatible with IETF certificate request formats such
as PKCS10 (RFC 2986) and CMC (RFC 5272). The architecture separates
the authorities involved in issuing a certificate: one for verifying
ownership of a private key (Blind Issuer) and the other for
validating the contents of a certificate (Anonymity Issuer). The end
entity (EE) certificates issued under this model are called Traceable
Anonymous Certificates (TACs).
Status of This Memo
This memo defines an Experimental Protocol for the Internet
community. It does not specify an Internet standard of any kind.
Discussion and suggestions for improvement are requested.
Distribution of this memo is unlimited.
Copyright Notice
Copyright (c) 2009 IETF Trust and the persons identified as the
document authors. All rights reserved.
This document is subject to BCP 78 and the IETF Trust's Legal
Provisions Relating to IETF Documents in effect on the date of
publication of this document (http://trustee.ietf.org/license-info).
Please review these documents carefully, as they describe your rights
and restrictions with respect to this document.
Park, et al. Experimental [Page 1]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
Table of Contents
1. Introduction ....................................................2
1.1. Conventions Used in This Document ..........................4
2. General Overview ................................................4
3. Requirements ....................................................5
4. Traceable Anonymous Certificate Model ...........................6
5. Issuing a TAC ...................................................7
5.1. Steps in Issuing a TAC .....................................8
5.2. Mapping a TAC to a User's Real Identity ...................15
5.3. TAC Request Message Format Profile ........................17
5.3.1. PKCS10 Profile .....................................17
5.3.2. CMC Profile ........................................18
6. Security Considerations ........................................19
7. Acknowledgments ................................................21
8. References .....................................................21
8.1. Normative References ......................................21
8.2. Informative References ....................................22
Appendix A. Traceable Anonymous Certificate ASN.1 Modules .........24
Appendix B. TAC Message Exchanges over Transport Layer Security ...26
B.1. Message Exchanges between a User and the BI or the AI .....26
B.2. Message Exchanges between the BI and the AI ...............27
B.3. Message Exchanges between the Aggrieved Party and the AI
or the BI .................................................27
Appendix C. Cryptographic Message Syntax Profile for TAC Token ....28
C.1. Signed-Data Content Type ..................................28
C.1.1. encapContentInfo ...................................29
C.1.2. signerInfos ........................................29
1. Introduction
Public Key Infrastructure (PKI) provides a powerful means of
authenticating individuals, organizations, and computers (e.g., web
servers). However, when individuals use certificates to access
resources on the public Internet, there are legitimate concerns about
personal privacy, and thus there are increasing demands for privacy-
enhancing techniques on the Internet.
In a PKI, an authorized entity such as a Certification Authority (CA)
or a Registration Authority (RA) may be perceived, from a privacy
perspective, as a "big brother", even when a CA issues a certificate
containing a Subject name that is a pseudonym. This is because such
entities can always map a pseudonym in a certificate they issued to
the name of the real user to whom it was issued. This document
defines a practical architecture and protocols for offering privacy
for a user who requests and uses an X.509 certificate containing a
pseudonym, while still retaining the ability to map such a
certificate to the real user who requested it.
Park, et al. Experimental [Page 2]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
A PKI typically serves to identify the holder of a private key (to
the corresponding public key in a certificate), in a standard
fashion. The public key, identity, and related information are
signed by an entity acting as a CA as specified in X.509 [11] and as
profiled for use in the Internet [2]. During the past decade, PKIs
have been widely deployed to support various types of communications
and transactions over the Internet.
However, with regard to privacy on the Internet, a PKI is generally
not supportive of privacy, at least in part because of the following
issues:
- A certificate typically contains in the Subject field the true
identity of the user to whom it was issued. This identity is
disclosed to a relying party (e.g., a web site or the recipient of
an S/MIME message [18]) whenever the certificate holder presents
it in a security protocol that requires a user to present a
certificate. In some protocols, e.g., TLS, a user's certificate
is sent via an unencrypted channel prior to establishing a secure
communication capability.
- A certificate often is published by the CA, for example, in a
directory system that may be widely accessible.
- An anonymous (end entity) certificate [9] is one that indicates
that the holder's true identity is not represented in the subject
field. (Such a certificate might more accurately be called
"pseudonymous" since an X.509 certificate must contain an
identifier to comply with PKI format standards, and a CA must not
issue multiple certificates with the same Subject name to
different entities. However, we use the more common term
"anonymous" throughout this document to refer to such
certificates.) Issuance of anonymous certificates could enhance
user privacy.
There is however, a need to balance privacy and accountability when
issuing anonymous certificates. If a CA/RA is unable to map an
anonymous certificate to the real user to whom it was issued, the
user might abuse the anonymity afforded by the certificate because
there would be no recourse for relying parties.
A CA or RA generally would be able to map an anonymous certificate to
the user to whom it was issued, to avoid such problems. To do so,
the CA/RA would initially identify the user and maintain a database
that relates the user's true identity to the pseudonym carried in the
certificate's Subject field.
Park, et al. Experimental [Page 3]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
In a traditional PKI, there is a nominal separation of functions
between a RA and a CA, but in practice these roles are often closely
coordinated. Thus, either the RA or CA could, in principle,
unilaterally map an autonomous certificate to the real user identity.
The architecture, syntax, and protocol conventions described in this
document allow anonymous certificates to be issued and used in
existing PKIs in a way that provides a balance between privacy and a
conditional ability to map an anonymous certificate to the individual
to whom it was issued.
An anonymous certificate (Traceable Anonymous Certificate) in this
document is issued by a pair of entities that operate in a split
responsibility mode: a Blind Issuer (BI) and an Anonymity Issuer
(AI). The conditional traceability offered by this model assumes
strong separation between the RA and CA roles, and employs technical
means (threshold cryptography and "blinded" signatures), to
facilitate that separation. (A blinded signature is one in which the
value being signed is not made visible to the signer, via
cryptographic means. Additional details are provided later.)
The AI has knowledge of the certificate issued to the user, but no
knowledge of the user's real identity. The BI knows the user's real
identity, but has no knowledge of the certificate issued to that
user. Only if the AI and BI collaborate can they map the TAC issued
to a user to the real identity of that user.
1.1. Conventions Used in This Document
The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT",
"SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this
document are to be interpreted as described in RFC 2119 [1].
2. General Overview
This section defines the notion of a Traceable Anonymous Certificate
(referred to as TAC or anonymous certificate in this document). It
is distinguished from a conventional pseudonymous certificate [8, 9]
in that a TAC containing a pseudonym in the Subject field will be
conditionally traceable (as defined that it is not trivial to design
a system that issues anonymous certificates, consistent with Internet
PKI standards, when additional constraints are imposed, as
illustrated by the following scenarios.
- If a CA issues an anonymous certificate without verifying a true
identity, it is untraceable, which provides inadequate recourse if
the user to whom the certificate was issued abuses the anonymity
it provides. (Even without the ability to trace an anonymous
Park, et al. Experimental [Page 4]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
certificate to the corresponding user, the certificate can always
be revoked, but this may not be a sufficient response to abuse.)
- If a CA issues an anonymous certificate but verifies the real
identity and maintains a record of that identity, the CA can link
the pseudonym in the Subject field to the real identity, hence a
potential "big brother" problem [12].
- If the CA issues a certificate with a certificate containing a
user-selected Subject name, and does not verify the user's
identity, the certificate is effectively untraceable.
- If the CA issues an anonymous certificate using a blind signature
(see below), the CA cannot verify the contents of the certificate,
making the certificate untraceable and essentially forgeable. (If
a CA signs a certificate without examining its content, even after
verifying a user's identity, certificates issued by the CA are
essentially forgeable.)
To address the issues described above, we extend the simple
separation-of-authority concept already defined in the RA/CA PKI
model. First we restate the requirements in a more precise and
concise fashion, and introduce a basic model for achieving the goals
from a more general perspective [16].
3. Requirements
This document describes a new separation-of-authority model and
protocols for certificate issuance in a way that enables issuing
Traceable Anonymous Certificates, while maintaining compatibility
with the standards used in existing PKIs. To do this, the following
requirements must be satisfied.
- The Traceable Anonymous Certificate MUST be a syntactically valid
X.509 certificate in which the Subject field contains a pseudonym.
- There must be technical means to counter a claim by a malicious
user who later denies having participated in the activities that
resulted in issuing a TAC. Specifically, when a user is
identified and requests issuance of a TAC, the mechanisms employed
MUST ensure that the user to whom the TAC is issued is the one who
requested the TAC (unless that user transfers the private key to
another party, unknown to the RA/CA).
Park, et al. Experimental [Page 5]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
- The traceability and revocation functions MUST support the linkage
between a user's true identity and the pseudonym in a certificate
issued to the user. Thus, the solution MUST enable determining a
true identity from the anonymous certificate, upon agreement among
the authorities who collaborated to issue the certificate.
4. Traceable Anonymous Certificate Model
A TAC is an end entity (EE) certificate issued by a pair of entities
that operate in a split responsibility mode: a Blind Issuer (BI) and
an Anonymity Issuer (AI). The pair appear as a single CA to the
outside world, e.g., they are represented by a single CA certificate.
The public key in the CA certificate is used to verify certificates
issued by this CA in the normal fashion, i.e., a relying party
processes a TAC just like any other EE certificates.
In this model, the BI acts as a RA. It interacts with a user to
verify the user's "real" identity, just like a normal RA. The BI
maintains a database that can be used to map a TAC to the user to
whom it was issued, but only with the cooperation of the AI.
This mapping will be initiated only if there is evidence that the
user to whom the TAC was issued has abused the anonymity provided by
the TAC.
The AI acts as a CA. It validates a certificate request submitted by
the user, using a standard certificate request format such as PKCS10.
The AI performs the functions common to a CA, including a private-key
proof-of-possession (PoP) check, a name uniqueness check among all
certificates issued by it, assignment of a serial number, etc. To
effect issuance of the TAC, the AI interacts with the BI, over a
secure channel, to jointly create the signature on the TAC, and sends
the signed TAC to the user.
The AI does this without learning the user's real identity (either
from the user or from the BI).
The result of this split functionality between the BI and the AI is
that neither can unilaterally act to reveal the real user identity.
The AI has knowledge of the certificate issued to the user, but no
knowledge of the user's real identity. The BI knows the user's real
identity, but has no knowledge of the certificate issued to that
user. Only if the AI and BI collaborate can they map the TAC issued
to a user to the real identity of that user.
This system is not perfect. For example, it assumes that the AI and
BI collaborate to reveal a user's real identity only under
appropriate circumstances. The details of the procedural security
Park, et al. Experimental [Page 6]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
means by which this assurance is achieved are outside the scope of
this document. Nonetheless, there are security benefits to adopting
this model described in this document, based on the technical
approach used to enable separation of the BI and AI functions.
For example, the BI and AI can be operated by different organizations
in geographically separate facilities, and managed by different
staff. As a result, one can have higher confidence in the anonymity
offered to a user by the system, as opposed to a monolithic CA
operating model that relies only on procedural security controls to
ensure anonymity.
5. Issuing a TAC
The follow subsections describe the procedures and the protocols
employed to issue a TAC. To begin, BI and AI collaborate to generate
a public key pair (that represents the CA as seen by relying parties)
using a threshold signature scheme. Such schemes have been defined
for RSA. The details of how this is accomplished depend on the
algorithm in question, and thus are not described here. The reader
is referred to [15] where procedures for implementing RSA threshold
signatures are described. A DSA-based threshold signature scheme
will be incorporated into a future version of TAC [14].
Note that this split signing model for certificate issuance is an
especially simple case of a threshold signature; the private key used
to sign a TAC is divided into exactly two shares, one held by the BI
and one held by the AI. Both shares must be used, serially, to
create a signature on a TAC. After the key pair for the (nominal) CA
has been generated and the private key split between the BI and the
AI, the public key is published, e.g., in a self-signed certificate
that represents the TAC CA.
Another public-key cryptographic function that is an essential part
of this system is called "blind signing". To create a blind
signature, one party encrypts a value to be signed, e.g., a hash
value of a certificate, and passes it to the signer. The signer
digitally signs the encrypted value, and returns it to the first
party. The first party inverts the encryption it applied with the
random value in the first place, to yield a signature on the
underlying data, e.g., a hash value.
This technique enables the signer to digitally sign a message,
without seeing the content of the message. This is the simplest
approach to blind signing; it requires that the public key needed to
invert the encryption not be available to the blind signer. Other
blind signing techniques avoid the need for this restriction, but are
more complex.
Park, et al. Experimental [Page 7]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
The tricky part of a cryptographic blinding function is that is must
be associative and commutative, with regard to a public-key signature
function. Let B be a blinding function, B-INV is its inverse, and S
is a public-key signature. The following relationship must hold:
B-INV( S (B (X) ) ) = B-INV( B( S (X) ) ) = S (X). RSA can be used
to blind a value with random value and to sign a blinded value
because the modular exponentiation operation used by RSA for both
signature and for encryption is associative and commutative.
The TAC issuance process described below requires an ability for the
BI, the AI, and the user to employ secure communication channels
between one another.
Use of TLS [17] is one suitable means to establish such channels,
although other options also are acceptable. To this end, this
document assumes TLS as the default secure communication channel, and
thus requires that the BI and the AI have X.509 certificates that
represent them.
These certificates are independent of the certificate that represents
the CA (formed by the BI and the AI) and may be either self-signed or
issued by other CA(s).
Appendix B provides a top-level description of the application of TLS
to these message exchanges.
5.1. Steps in Issuing a TAC
Figure 1 depicts the procedures for issuing a TAC. The lines
represent steps in the issuance process, and the numbers refer to
these steps.
1 +---------------+
+<-------->| Blind |
| 2 | Issuer (BI)|
| +---------------+
+-------+ | ^
| user |<------------>| 4 | 5
+-------+ | v
| 3 +----------------+
+--------->| |
| | Anonymity |
| | Issuer (AI) |
+<-------- | |
6 +----------------+
Figure 1. TAC Issuance Procedures
Park, et al. Experimental [Page 8]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
Step 1:
A user authenticates himself to the BI. This may be effected via
an in-person meeting or electronically. The same sorts of
procedures that RAs use for normal certificate issuance are used
here. Such procedures are not standardized, and thus they are not
described here in detail. For purposes of the TAC architecture,
we require the BI to establish a record in a database for the user
and to generate a (locally) unique identifier, called the UserKey,
that will serve as a (database) key for the record. The UserKey
value MUST NOT be generated in a fashion that permits any external
entity (including the AI) to infer a user's real identity from its
value. (For example, if the user's name is used as an input to a
one-way hash algorithm to generate the UserKey value, then
additional random data must be used as an input to prevent simple
guessing attacks.) Associated with the UserKey in this database is
an expiration time. The expiration time is used by the BI and AI
to reject session-level replay attacks in some exchanges, and to
enable the BI and AI to garbage-collect database records if a user
initiates but does not complete the certificate request process.
It is RECOMMENDED that the UserKey be a random or pseudo-random
value. Whenever the BI passes a UserKey to an external party, or
accepts the UserKey from an external party (e.g., the AI), the
value is embedded in a digitally signed CMS object called a Token,
accompanied by the timestamp noted above. The signature on a
Token is generated by the BI. (Note that the certificate used is
just a certificate suitable for use with CMS, and is NOT the
split-key certificate used to verify TAC.)
The following ASN.1 syntax represents the UserKey and an
expiration time:
UserKey ::= OCTET STRING
Timeout ::= GeneralizedTime
In the context of this specification, the GeneralizedTime value
MUST be expressed in Greenwich Mean Time (Zulu) and MUST include
seconds (YYYYMMDDHHMMSSZ).
Step 2:
BI presents to the user a data structure called a Token. The
Token must be conveyed to the user via a secure channel, e.g., in
person or via a secure communication channel. The secure channel
is required here to prevent a wiretapper from being able to
Park, et al. Experimental [Page 9]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
acquire the Token. For example, if the user establishes a one-way
authenticated TLS session to the BI in Step 1, this session could
be used to pass the Token back to the user.
The Token serves two purposes. During TAC issuance, the Token is
used to verify that a request to the AI has been submitted by a
user who is registered with the BI (and thus there is a record in
the BI's database with the real identity of the user). This is
necessary to ensure that the TAC can later be traced to the user.
If there is a request to reveal the real identity of a user, the
AI will release the Token to the entity requesting that a TAC be
traced, and that entity will pass the Token to the BI, to enable
tracing the TAC. If the BI does not perform its part of the
certificate issuance procedure (in Step 6) before the Token
expires, the BI can delete the Token from the database as a means
of garbage collection. The timeout value in a Token is selected
by the BI.
The Token is a ContentInfo with a contentType of id-kisa-tac-token
and a content that holds a SignedData of CMS SignedData object
[6], signed by the BI, where the eContent
(EncapsulatedContentInfo) is a SEQUENCE consisting of the UserKey
and Timeout, and eContentType MUST be id-data.
EncapsulatedContentInfo ::= SEQUENCE {
eContentType ContentType, -- OBJECT IDENTIFIER : id-data
eContent [0] EXPLICIT OCTET STRING OPTIONAL }
-- DER encoded with the input of 'SEQUENCE of the UserKey and
-- Timeout'
id-data OBJECT IDENTIFIER ::= { iso(1) member-body(2) us(840)
rsadsi(113549) pkcs(1) pkcs7(7) 1 }
The signature (SignatureValue of SignerInfo) is generated using
the BI's private signature key, corresponding to the public key
present in the BI's certificate. (Note that this certificate is
just a certificate suitable for use with TLS, and is NOT the
split-key certificate used to verify a TAC.) The certificate (or
certificates) MUST be present. Appendix A provides the ASN.1
syntax for the Token, as a profiled CMS ContentInfo object.
Appendix C provides the CMS SignedData object profile for wrapping
the Token.
Token ::= ContentInfo
Upon receipt of the Token, the user SHOULD verify the signature
using the BI public key and note the Timeout value to ensure that
the certificate request process is completed prior to that time.
Park, et al. Experimental [Page 10]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
Step 3:
The user prepares a certificate request in a standard format,
e.g., PKCS10 [3] or CMC [4]. The Subject field of the certificate
contains a pseudonym generated by the user. It is anticipated
that the CA (BI + AI) may provide software for users to employ in
constructing certificate requests.
If so, then this software can generate a candidate Subject name to
minimize the likelihood of a collision. If the user selects a
candidate pseudonym without such support, the likelihood of a
subject name collision probably will be greater, increasing the
likelihood that the certificate request will be rejected or that
the AI will have to generate a pseudonym for the user.
After constructing the certificate request, the user sends it,
along with the Token from Step 2, to the AI, via a secure channel.
This channel MUST be encrypted and one-way authenticated, i.e.,
the user MUST be able to verify that it is communicating with the
AI, but the AI MUST NOT be able to verify the real identity of the
user. Typical use of TLS for secure web site access satisfies
this requirement. The certificate request of PKCS10 [3] or CMC
[4] carries the Token from Step 2.
The Token is carried as an attribute in a certificate request
(CertificationRequestInfo.attributes) where the attrType MUST be
id-kisa-tac below in PKCS10 format. The Token is set to
attrValues (Certificate Request Controls) where the attrType MUST
be id-kisa-tac in CMC [4] format. The TAC request message profile
is described in the section 5.3.
Step 4:
The AI, upon receipt of the certificate request containing a
Token, verifies that the request is consistent with the processing
defined for the request format (PKCS10). If a Subject name is
present, it verifies that the proposed pseudonym is unique. The
AI also verifies the signature on the Token and, if it is valid,
checks the Timeout value to reject a replay attack based on a
"timed-out" Token.
A Token with an old Timeout value is rejected out-of-hand by the
AI. (After a Token's Timeout time is reached, the AI deletes the
Token from its cache.) Next, the AI compares the received Token
against a cache of recent (i.e., not "timed out"), validated
Tokens. The AI matches the resubmitted request to the original
request, and responds accordingly. For example, if a duplicate is
detected, the certificate request can be rejected as a replay.
Park, et al. Experimental [Page 11]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
If the Subject field contains a Subject name already issued by the
AI, the AI MUST either reject the certificate request, or
substitute a pseudonym it generates, depending on the policy of
the TAC CA. If the certificate request is acceptable, the AI
assigns a serial number and constructs a tbsCertificate (i.e., the
final form of the certificate payload, ready to be signed).
The AI then computes a hash over this data structure and blinds
the hash value. (The AI blinds the hash value using a key from a
public-key encryption pair where neither key is ever made public.
The other key from this pair is used by the AI in Step 6 to "un-
blind" the signed hash value.)
The AI sends the CMS ContentInfo object of TokenandBlindHash to
the BI, via a two-way authenticated and encrypted channel. The
two-way authentication and encryption is required to ensure that
the AI is sending these values to the BI, to allow the BI to
verify that the values were transmitted by the AI, and to prevent
a wiretapper from acquiring the Token. A TLS session in which
both parties employ certificates to authenticate one another is
the RECOMMENDED way to achieve this communication.
The TokenandBlindHash is a CMS ContentInfo with a contentType of
id-kisa-tac-tokenandblindhash and a content that holds a
SignedData of CMS SignedData object [6], signed by the AI, where
the eContent (EncapsulatedContentInfo) is a SEQUENCE consisting of
the Token and BlindedCertificateHash, and eContentType MUST be
id-data.
EncapsulatedContentInfo ::= SEQUENCE {
eContentType ContentType, -- OBJECT IDENTIFIER : id-data
eContent [0] EXPLICIT OCTET STRING OPTIONAL }
-- DER encoded with the input of 'SEQUENCE of the Token and
-- BlindedCertificateHash'
The signature (SignatureValue of SignerInfo) is generated using
the AI's private signature key, corresponding to the public key
present in the AI's certificate. (Note that this certificate is
just a certificate suitable for use with TLS, and is NOT the
split-key certificate used to issue a TAC.) The certificate (or
certificates) MUST be present.
The following ASN.1 syntax represents the Token and
BlindedCertificateHash:
Token ::= ContentInfo
BlinedCertificateHash ::= OCTET STRING
Park, et al. Experimental [Page 12]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
Token is the value of ContentInfo in the certificate request
message (CertificationRequestInfo.attributes) from Step 3.
BlindedCertificateHash is the blinded hash value for the
tbsCertificate.
Appendix A provides the ASN.1 syntax for the Token, as a profiled
CMS ContentInfo object. Appendix C provides the CMS SignedData
object profile for wrapping the Token.
TokenandBlindHash ::= ContentInfo
Step 5:
The BI receives the Token and blinded certificate hash via the
secure channel described above. First the BI verifies the
signature on the TokenandBlindHash generated by AI and then
verifies the signature on the Token to ensure that it is a
legitimate Token generated by the BI. Next, the BI checks its
database to ensure that the UserKey value from the Token is
present and that the Token has not been used to authorize issuance
of a certificate previously.
This check is performed to ensure that the BI has authenticated
the user and entered the user's real identity into the BI's
database. Each Token authorizes issuance of only one certificate,
so the check also ensures that the same Token has not been used to
authorize issuance of more than one certificate. These checks
ensure that the certificate issued by the AI to this user will be
traceable, if needed.
The BI uses its share of the threshold private signature key to
sign the blinded certificate hash and returns the CMS SignedData
back to the AI. The eContent of the SignedData is a SEQUENCE
consisting of the Token and PartiallySignedCertificateHash.
The following ASN.1 syntax represents the Token and
PartiallySignedCertificateHash:
Token ::= ContentInfo
PartiallySignedCertificateHash ::= OCTET STRING
Token is the token value of the TokenandBlindHash (where the
eContent is a SEQUENCE consisting of the Token and
PartiallySignedCertificateHash) from Step 4.
Park, et al. Experimental [Page 13]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
PartiallySignedCertificateHash is the signature value generated by
BI's share of the threshold private signature key on
BlindedCertificateHash from Step 4.
The TokenandPartiallySignedCertificateHash is a CMS ContentInfo
with a contentType of id-kisa-tac-tokenandpartially and a content
that holds a SignedData of CMS SignedData object [6], signed by
the BI, where the eContent (EncapsulatedContentInfo) is a SEQUENCE
consisting of the Token and PartiallySignedCertificateHash, and
eContentType MUST be id-data.
EncapsulatedContentInfo ::= SEQUENCE {
eContentType ContentType, -- OBJECT IDENTIFIER : id-data
eContent [0] EXPLICIT OCTET STRING OPTIONAL }
-- DER encoded with the input of 'SEQUENCE of the Token and
-- PartiallySignedCertificateHash'
The signature (SignatureValue of SignerInfo) is generated using
the BI's private signature key, corresponding to the public key
present in the BI's certificate. (Note that this certificate is
just a certificate suitable for use with TLS, and is NOT the
split-key certificate used to issue a TAC.) The certificate (or
certificates) MUST be present. Appendix A provides the ASN.1
syntax for the Token, as a profiled CMS SignedData object.
Appendix C provides the CMS SignedData object profile for wrapping
the Token.
TokenandPartiallySignedCertificateHash ::= ContentInfo
Step 6:
Upon receipt of the TokenandPartiallySignedCertificateHash, the AI
verifies the signature on the PartiallySignedCertificateHash,
generated by BI and then matches the Token against its list of
outstanding requests to the BI. The AI then "un-blinds" the
blindHashValue, using the other key from the key pair employed in
Step 4. This reveals the partially signed certificate hash. The
AI then applies its part of the split private key to complete the
signature of the certificate for the user.
It records the certificate and the Token value in its database, to
enable later tracing of the certificate to the real user identity,
if needed. The AI transmits the completed certificate to the
user, via the response message from the request protocol employed
by the user in Step 3, PKCS10.
Park, et al. Experimental [Page 14]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
The user may now employ the certificate with any PKI-enabled
application or protocol that makes use of X.509 certificates
(consistent with the key usage, and Extended Key Usage (EKU)
values in the certificate). Note that the user should be prepared
to accommodate delays in the certificate issuance process. For
example, a connection between the user and the AI might fail
sometime after the user submits a certificate request at the end
of Step 3 and before the AI returns the certificate at the end of
Step 6. If this happens, the user should resubmit the request.
The AI and BI retain sufficient state to be able to match the
resubmitted request to the original request, and respond
accordingly. If the process failed in steps 5 or 6, the AI
returns an error indication to the user.
5.2. Mapping a TAC to a User's Real Identity
If a user to whom a TAC has been issued abuses the anonymity provided
by the TAC, the TAC can be traced to the identity of that user.
Mapping a TAC to a user's real identity is a four-step process,
described below and illustrated in Figure 2.
C +---------------+
+<-------->| Blind |
| D | Issuer (BI)|
| +---------------+
+---------+ |
| Relying |<---------->|
| Party | |
+---------+ |
| A +----------------+
+<-------->| Anonymity |
B | Issuer (AI) |
+----------------+
Figure 2. Revealing a TAC User's Real Identity
Step A:
The AI verifies the assertion by an aggrieved party that a TAC
user has abused the anonymity provided by his TAC. The procedures
used by AI to verify that such abuse has occurred are outside the
scope of this document. No protocol is defined here for the
interaction between the aggrieved party and AI. The only
technical requirement is that the TAC of the offending user be
provided to the AI. If the AI determines that there is sufficient
evidence of abuse to trace the TAC to the user, the AI revokes the
TAC, by listing its serial number on the next Certificate
Revocation List (CRL) issued by the AI.
Park, et al. Experimental [Page 15]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
An AI unilaterally manages the CRL for a TAC. Because RFC 5280
implementations are not required to process indirect CRLs, we
create a second certificate for the CA, under the TAC CA. Revoked
EE certificates issued by the TAC CA are recorded on this CRL and
validated using this second CA certificate.
This CA certificate will have the cRLSign bit set in the KeyUsage
extension, but not the keyCertSign bit. The private key for this
certificate will be held by the AI, so that it can issue CRLs
unilaterally.
The Subject DN (Distinguished Name) will be the same in both CA
certificates, which reinforces the notion that the CRL issuer is
the same entity as the TAC issuer, and that this CRL is not an
indirect CRL. Because the CRL issuer does not issue any
certificates itself, there is no possible serial number conflict.
This will be the only CA certificate issued under the TAC CA
certificate (and thus it will be signed jointly by the BI and AI).
We recommend that the CRL for this CA certificate be similarly
long-lived, as it too needs to be signed by the BI and AI. Each
EE TAC certificate MUST contain a CRL Distribution Point that
points to the CRL issued by this CA, to ensure that relying
parties know to check this CRL vs. the CRL that covers only the
CRL CA. (If the AI uses the Online Certificate Status Protocol
(OCSP) [13] to convey the revocation status of TACs, an equivalent
procedure is employed.) If it is later determined that the
revocation was not warranted, a new TAC can be issued, to preserve
the anonymity of the user in future transactions.
Step B:
The AI searches its database, e.g., based on the serial number in
the TAC, to locate the Token that was passed between the AI and BI
during the issuance process (Steps 5 and 6 above). The AI passes
this Token to the aggrieved party via an encrypted and two-way
authenticated channel. Encryption is required to prevent
disclosure of the Token, and two-way authentication is required to
ensure that the aggrieved party and the AI know that they are
communicating with each other. Two-way authenticated TLS is the
RECOMMENDED means of implementing this channel, though other
approaches are allowed.
Steps C and D:
The aggrieved party transits the Token to the BI, via an encrypted
and two-way authenticated channel. The channel MUST be encrypted
to prevent disclosure of the Token, and two-way authentication is
required to ensure that the aggrieved party and the BI know that
Park, et al. Experimental [Page 16]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
they are communicating with each other. If specified by the
Certificate Policy (CP) for the TAC CA, the BI will independently
determine that there is sufficient evidence of abuse to trace the
TAC to the user, before proceeding. The BI verifies its signature
on the Token, to verify that this is a Token generated by it and
presumably released to the aggrieved party by the AI. Next, the
BI searches its database using the UserKey value extracted from
the Token. The BI retrieves the user's real identity and provides
it to the aggrieved party. (By requiring the aggrieved party to
interact with both the AI and the BI, the BI can verify that it is
dealing with an aggrieved party, not with the AI acting
unilaterally.)
5.3. TAC Request Message Format Profile
TAC request MAY use either PKCS10 or CMC. An AI MUST support PKCS10
and MAY support CMC.
5.3.1. PKCS10 Profile
This profile refines the specification in PKCS10 [3], as it relates
to TAC. A Certificate Request Message object, formatted according to
PKCS10, is passed to the AI.
This profile applies the following additional constraints to fields
that may appear in a CertificationRequestInfo:
Version
This field is mandatory and MUST have the value 0.
Subject
This field MUST be present. If the value of this field is
empty, the AI will generate a subject name that is unique in
the context of certificates issued by this issuer. If the
Subject field contains a Subject name already issued by the AI,
the AI MUST either reject the certificate request, or
substitute a pseudonym it generates, depending on the policy of
the TAC CA.
SubjectPublicKeyInfo
This field specifies the subject's public key and the algorithm
with which the key is used.
Attributes
PKCS10 [3] defines the attributes field as key-value pairs
where the key is an OID and the value's structure depends on
the key. The attribute field MUST include the id-kisa-tac
attribute, which holds the Token and is defined below. The
Park, et al. Experimental [Page 17]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
Attributes field MAY also contain X509v3 Certificate Extensions
and any PKCS9 [7] extensionRequest attributes that the
subscriber would like to have included in the certificate. The
profile for extensions in certificate requests is specified in
RFC 5280 [2].
5.3.2. CMC Profile
This profile refines the Certificate Request messages in Certificate
Management over CMS in CMC [4], as they relate to TACs.
A Certificate Request message, formatted according to CMC [4], is
passed to the AI.
With the exception of the public-key-related fields, the CA is
permitted to alter any requested field when issuing a corresponding
certificate.
This profile recommends the full PKI Request of the two types of PKI
requests (Simple or Full PKI Request), and the PKI Request SHOULD be
encapsulated in SignedData with an eContentType of id-cct-PKIData.
This profile applies the following additional constraints to fields
that may appear in a Certificate Request Template of Certificate
Request Message Format (CRMF) [5]:
Version
This field MAY be absent, or MAY specify the request of a
Version 3 Certificate. It SHOULD be omitted.
SerialNumber
As per CRMF [5], this field is assigned by the CA and MUST be
omitted in this profile.
SigningAlgorithm
As per CRMF [5], this field is assigned by the CA and MUST be
omitted in this profile.
Issuer
This field is assigned by the CA and MUST be omitted in this
profile.
Validity
This field MAY be omitted. If omitted, the AI will issue a
Certificate with Validity dates as determined by the TAC CA
policy. If specified, then the CA MAY override the requested
values with dates as determined by the TAC CA policy.
Park, et al. Experimental [Page 18]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
Subject
This field MUST be present. If the value of this field is
empty, the AI MUST generate a subject name that is unique in
the context of certificates issued by this issuer. If the
Subject field contains a Subject name already issued by the AI,
the AI MUST either reject the certificate request, or
substitute a pseudonym it generates, depending on the policy of
the TAC CA.
PublicKey
This field MUST be present.
This profile also refines constraints that may appear in a
Certificate Request controls: The Token is set to attrValues (in
CertRequest.controls) where the attrType MUST be id-kisa-tac.
See Section 5.3.1, "PKCS10 Profile", for the certification request
formats based on PKCS10.
6. Security Considerations
The anonymity provided by the architecture and protocols defined in
this document is conditional. Moreover, if the user employs the same
TAC for multiple transactions (with the same or different parties),
the transactions can be linked through the use of the same TAC.
Thus, the anonymity guarantee is "weak" even though the user's real
identity is still hidden.
To achieve stronger anonymity, a user may acquire multiple TACs,
through distinct iterations of the protocol. Since each TAC is
generated independently, it should not be possible for a relying
party to discover a link between pseudonyms unless the tracing
feature of this scheme is invoked. If the TAC has a long validity
interval, this increases the probability that the identity of a TAC
user will be discovered, e.g., as a result of linking user
transactions across multiple servers. Thus, we recommend that each
TAC CA consider carefully how long the validity for a TAC certificate
should be. In the course of issuing a TAC, the AI and the user
interact directly. Thus, the AI may have access to lower-layer
information (e.g., an IP address) that might reveal the user's
identity. A user concerned about this sort of possible identity
compromise should use appropriate measures to conceal such
information, e.g., a network anonymity service such as Tor [10].
This document makes no provisions for certificate renewal or rekey;
we recommend TAC users acquire new TACs periodically, to further
reduce the likelihood of linkage. It also may be possible to
determine the identity of a user via information carried by lower-
Park, et al. Experimental [Page 19]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
level protocols, or by other, application-specific means. For
example, the IP address of the user might be used to identify him.
For this reason, we recommend that a TAC be used primarily to access
web services with anonymity. Note that the TAC architecture
described in this document is not capable of using certificates for
use with S/MIME, because there is no provision to issue two
certificates (one for encryption and one for signatures) that contain
the same (anonymous) Subject name. An analogous problem might arise
if a user visits a site (and does not conceal his identity), the site
deposits a "cookie" into the user's browser cache, and the user later
visits a site and employs a TAC with the presumption of anonymity.
The use of a TAC is a tool to help a user preserve anonymity, but it
is not, per se, a guarantee of anonymity. We recommend that each TAC
CA issue certificates with only one lifetime, in order to avoid the
complexity that might arise otherwise. If a TAC CA offered
certificates with different lifetimes, then it would need to
communicate this information from the BI to AI in a way that does not
unduly compromise the anonymity of the user.
This architecture uses the UserKey to link a TAC to the corresponding
real user identity. The UserKey is generated in a fashion to ensure
that it cannot be examined to determine a user's real identity.
UserKey values are maintained in two distinct databases: the BI
database maps a UserKey to a real user identity, and the AI database
maps a TAC to a UserKey. The UserKey is always carried in a signed
data object, a Token. The Token is signed to allow the BI to verify
its authenticity, to prevent attacks based on guessing UserKey
values. The Token also carries a Timeout value to allow the AI and
BI to reject session-level replay attacks, and to facilitate garbage
collection of AI and BI databases.
Threshold cryptography is employed to enable strong separation of the
BI and AI functions, and to ensure that both must cooperate to issue
certificates under the aegis of a TAC CA. (The AI and BI must ensure
that the threshold cryptographic scheme they employ does not provide
an advantage to either party based on the way the key-splitting is
effected.) Blind signatures are used with threshold cryptography to
preserve the separation of functions, i.e., to prevent the BI from
learning the hash value of the TAC issued by the AI.
Message exchanges between a user and the BI or the AI, between the AI
and BI, and between an aggrieved party and the AI and BI all make use
of secure channels. These channels are encrypted to prevent
disclosure of the Token value and of the pseudonym in the TAC request
and response and in a tracing request. The channels are two-way
authenticated to allow the AI and BI to verify their respective
identities when communication with one another, and one-way
Park, et al. Experimental [Page 20]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
authenticated to allow the user to verify their identities when he
communicates with them. Two-way authentication is employed for
communication between an aggrieved party and the AI and BI, to allow
all parties to verify the identity of one another.
There is an opportunity for the AI to return the wrong UserKey to
an aggrieved party, which will result in tracing a certificate to
the wrong real user identity. This appears to be unavoidable in
any scheme of this sort, since the database maintained by the BI
is intentionally ignorant of any info relating a UserKey to a TAC.
A TAC CA MUST describe in its CP how long it will retain the data
about certificates it issued, beyond the lifetime of these
certificates. This will help a prospective TAC subject gauge the
likelihood of unauthorized use of his identity as a result of a
compromise of this retained data. It also alerts relying parties of
the timeframe (after expiration of a certificate) in which an alleged
abuse must be brought to the attention of the AI and BI, before the
data linking a certificate to the real user identity is destroyed.
7. Acknowledgments
Tim Polk (NIST), Stefan Santesson (ACC-sec.com), Jim Schaad (Soaring
Hawk), David A. Cooper (NIST), SeokLae Lee, JongHyun Baek, SoonTae
Park (KISA), Taekyoung Kwon (Sejong University), JungHee Cheon (Seoul
National University), and YongDae Kim (Minnesota University) have
significantly contributed to work on the concept of TAC and have
identified security issues. Their comments enhanced the maturity of
the document.
8. References
8.1. Normative References
[1] Bradner, S., "Key words for use in RFCs to Indicate Requirement
Levels", BCP 14, RFC 2119, March 1997.
[2] Cooper, D., Santesson, S., Farrell, S., Boeyen, S., Housley, R.,
and W. Polk, "Internet X.509 Public Key Infrastructure
Certificate and Certificate Revocation List (CRL) Profile", RFC
5280, May 2008.
[3] Nystrom, M. and B. Kaliski, "PKCS #10: Certification Request
Syntax Specification Version 1.7", RFC 2986, November 2000.
[4] Schaad, J. and M. Myers, "Certificate Management over CMS
(CMC)", RFC 5272, June 2008.
Park, et al. Experimental [Page 21]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
[5] Schaad, J., "Internet X.509 Public Key Infrastructure
Certificate Request Message Format (CRMF)", RFC 4211, September
2005.
[6] Housley, R., "Cryptographic Message Syntax (CMS)", RFC 3852,
July 2004.
[7] Nystrom, M. and B. Kaliski, "PKCS #9: Selected Object Classes
and Attribute Types Version 2.0", RFC 2985, November 2000.
8.2. Informative References
[8] S. Brands, "Rethinking public key infrastructures and digital
certificates - Building in Privacy", PhD thesis, Eindhoven
Institute of Technology, Eindhoven, The Netherlands, 1999.
[9] D. Chaum, "Blind signature system", CRYPTO '83, Plenum Press,
page 153, 1984.
[10] "Tor: anonymity online", http://www.torproject.org.
[11] X.509, "Information technology - Open Systems Interconnection -
The Directory: Public-key and attribute certificate frameworks",
ITU-T Recommendation X.509, March 2000. Also available as
ISO/IEC 9594-8, 2001.
[12] S. Rafaeli, M. Rennhard, L. Mathy, B. Plattner, and D.
Hutchison, "An Architecture for Pseudonymous e-Commerce",
AISB'01 Symposium on Information Agents for Electronic Commerce,
pp. 33-41, 2001.
[13] Myers, M., Ankney, R., Malpani, A., Galperin, S., and C. Adams,
"X.509 Internet Public Key Infrastructure Online Certificate
Status Protocol - OCSP", RFC 2560, June 1999.
[14] Philip MacKenzie and Michael K. Reiter, "Two-Party Generation of
DSA Signature", Crypto 2001.
[15] Shaohua Tang, "Simple Threshold RSA Signature Scheme Based on
Simple Secret Sharing", in "Computational Intelligence and
Security", CIS 2005, Part II, Springer, pp. 186-191, 2005.
[16] Taekyoung Kwon, Jung Hee Cheon, Yongdae Kim, Jae-Il Lee,
"Privacy Protection in PKIs: A Separation-of-Authority
Approach", in "Information Security Applications", WISA 2006,
Springer, pp. 297-311, 2007.
Park, et al. Experimental [Page 22]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
[17] Dierks, T. and E. Rescorla, "The Transport Layer Security (TLS)
Protocol Version 1.2", RFC 5246, August 2008.
[18] Ramsdell, B., Ed., "Secure/Multipurpose Internet Mail Extensions
(S/MIME) Version 3.1 Certificate Handling", RFC 3850, July 2004.
Park, et al. Experimental [Page 23]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
Appendix A. Traceable Anonymous Certificate ASN.1 Modules
DEFINITIONS IMPLICIT TAGS ::=
--
-- Copyright (c) 2009 IETF Trust and the persons identified as
-- authors of the code. All rights reserved.
--
-- Redistribution and use in source and binary forms, with or
-- without modification, are permitted provided that the following
-- conditions are met:
--
-- - Redistributions of source code must retain the above
-- copyright notice, this list of conditions and the following
-- disclaimer.
--
-- - Redistributions in binary form must reproduce the above
-- copyright notice, this list of conditions and the following
-- disclaimer in the documentation and/or other materials provided
-- with the distribution.
--
-- - Neither the name of Internet Society, IETF or IETF Trust, nor
-- the names of specific contributors, may be used to endorse or
-- promote products derived from this software without specific
-- prior written permission.
--
--
--
-- THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND
-- CONTRIBUTORS 'AS IS' AND ANY EXPRESS OR IMPLIED WARRANTIES,
-- INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
-- MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
-- DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS
-- BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
-- EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED
-- TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-- DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON
-- ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
-- OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-- OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
-- POSSIBILITY OF SUCH DAMAGE.
--
-- This version of the ASN.1 module is part of RFC 5636;
-- see the RFC itself for full legal notices.
--
Park, et al. Experimental [Page 24]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
BEGIN
-- EXPORTS All
-- The types and values defined in this module are exported for
-- use in the other ASN.1 modules. Other applications may use
-- them for their own purposes.
IMPORTS
-- Imports from RFC 3280 [PROFILE], Appendix A.1
AlgorithmIdentifier, Certificate, CertificateList,
CertificateSerialNumber, Name FROM PKIX1Explicit88
{ iso(1) identified-organization(3) dod(6)
internet(1) security(5) mechanisms(5) pkix(7)
mod(0) pkix1-explicit(18) }
-- Imports from CMS
ContentInfo, SignedData FROM
CryptographicMessageSyntax2004{ iso(1)
member-body(2) us(840) rsadsi(113549) pkcs(1) pkcs-9(9)
smime(16) modules(0) cms-2004(24)}
UserKey ::= OCTET STRING
Timeout ::= GeneralizedTime
BlinedCertificateHash ::= OCTET STRING
PartiallySignedCertificateHash ::= OCTET STRING
EncapsulatedContentInfo ::= SEQUENCE {
eContentType ContentType, -- OBJECT IDENTIFIER : id-data
eContent [0] EXPLICIT OCTET STRING OPTIONAL }
id-data OBJECT IDENTIFIER ::= { iso(1) member-body(2) us(840)
rsadsi(113549) pkcs(1) pkcs7(7) 1 }
Token ::= ContentInfo
TokenandBlindHash ::= ContentInfo
TokenandPartiallySignedCertificateHash ::= ContentInfo
id-KISA OBJECT IDENTIFIER ::= {iso(1) member-body(2) korea(410)
kisa(200004)}
id-npki OBJECT IDENTIFIER ::= {id-KISA 10}
Park, et al. Experimental [Page 25]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
id-attribute OBJECT IDENTIFIER ::= {id-npki 1}
id-kisa-tac OBJECT IDENTIFIER ::= {id-attribute 1}
id-kisa-tac-token OBJECT IDENTIFIER ::= { id-kisa-tac 1}
id-kisa-tac-tokenandblindbash OBJECT IDENTIFIER ::= { id-kisa-tac 2}
id-kisa-tac-tokenandpartially OBJECT IDENTIFIER ::= { id-kisa-tac 3}
END
Appendix B. TAC Message Exchanges over Transport Layer Security
TAC message exchanges between a user and the BI or the AI, between
the AI and BI, and between an aggrieved party and the AI and BI all
make use of secure channels to prevent disclosure of the Token value
and of the pseudonym in the TAC request and response and in a tracing
request. The Transport Layer Security Protocol v1.2 (TLS) [17] is a
suitable security protocol to protect these message exchanges, and
this document recommends use of TLS to protect these exchanges. The
following text describes how the handshake part of TLS should be
employed to protect each type of exchange. Note that no specific
cipher suites are specified for use here; the choice of suites is up
to the client and servers, as is commonly the case.
B.1. Message Exchanges between a User and the BI or the AI
The channels between a User and the BI or the AI are one-way
authenticated to allow the user to verify their identities when he
communicates with them.
User BI or AI
ClientHello -------->
ServerHello
Certificate
<-------- ServerHelloDone
ClientKeyExchange
[ChangeCipherSpec]
Finished -------->
[ChangeCipherSpec]
<--------- Finished
TAC Message <---------> TAC Message
Figure 3. TAC Message exchanges between a User and the BI or the AI
Park, et al. Experimental [Page 26]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
B.2. Message Exchanges between the BI and the AI
The channels between the BI and the AI are two-way authenticated to
allow the AI and BI to verify their respective identities when
communication with one another.
BI AI
ClientHello -------->
ServerHello
Certificate
CertificateRequest
<-------- ServerHelloDone
Certificate
ClientKeyExchange
CertificateVerify
[ChangeCipherSpec]
Finished -------->
[ChangeCipherSpec]
<--------- Finished
TAC Message <---------> TAC Message
Figure 4. TAC Message exchanges between BI and AI
B.3. Message Exchanges between the Aggrieved Party and the AI or the BI
The channels between a User and the BI or the AI are two-way
authenticated, to allow both parties to verify the identity of one
another.
User BI or AI
ClientHello -------->
ServerHello
Certificate
CertificateRequest
<-------- ServerHelloDone
Certificate
ClientKeyExchange
CertificateVerify
[ChangeCipherSpec]
Finished -------->
[ChangeCipherSpec]
<--------- Finished
TAC Message <---------> TAC Message
Figure 5. TAC Message Exchanges between an Aggrieved Party and
the BI or the AI
Park, et al. Experimental [Page 27]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
Appendix C. Cryptographic Message Syntax Profile for TAC Token
Using the Cryptographic Message Syntax(CMS)[6], TAC Token is a type
of signed-data object. The general format of a CMS object is:
ContentInfo ::= SEQUENCE {
contentType ContentType,
content [0] EXPLICIT ANY DEFINED BY contentType }
ContentType ::= OBJECT IDENTIFIER
As a TAC is a signed-data object, it uses the corresponding OID,
1.2.840.113549.1.1.2.
C.1. Signed-Data Content Type
According to the CMS specification, the signed-data content type
shall have ASN.1 type SignedData:
SignedData ::= SEQUENCE {
version CMSVersion,
digestAlgorithms DigestAlgorithmIdentifiers,
encapContentInfo EncapsulatedContentInfo,
certificates [0] IMPLICIT CertificateSet OPTIONAL,
crls [1] IMPLICIT RevocationInfoChoices OPTIONAL,
signerInfos SignerInfos }
DigestAlgorithmIdentifiers ::= SET OF DigestAlgorithmIdentifier
SignerInfos ::= SET OF SignerInfo
The elements of the signed-data content type are as follows:
Version
The version is the syntax version number. It MUST be 3,
corresponding to the signerInfo structure having version number
3.
digestAlgorithms
This field specifies digest Algorithms.
encapContentInfo
This element is defined in Appendix C.1.1.
Park, et al. Experimental [Page 28]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
certificates
The certificates element MUST be included and MUST contain only
the single PKI EE certificate needed to validate this CMS
Object. The CertificateSet type is defined in section 10 of
RFC3852 [6].
crls
The crls element MUST be omitted.
signerInfos
This element is defined in Appendix C.1.2.
C.1.1. encapContentInfo
encapContentInfo is the signed content, consisting of a content type
identifier and the content itself.
EncapsulatedContentInfo ::= SEQUENCE{
eContentType ContentType,
eContent [0] EXPLICIT OCTET STRING OPTIONAL }
ContentType ::= OBJECT IDENTIFIER
The elements of this signed content type are as follows:
eContentType
The ContentType for an TAC Token is id-data and has the
numerical value of 1.2.840.113549.1.7.1.
eContent
The content of a TAC Token is the DER-encoded SEQUENCE of
UserKey and Timeout.
C.1.2. signerInfos
SignerInfo is defined under CMS as:
SignerInfo ::= SEQUENCE {
version CMSVersion,
sid SignerIdentifier,
digestAlgorithm DigestAlgorithmIdentifier,
signedAttrs [0] IMPLICIT SignedAttributes OPTIONAL,
signatureAlgorithm SignatureAlgorithmIdentifier,
signature SignatureValue,
unsignedAttrs [1] IMPLICIT UnsignedAttributes OPTIONAL }
Park, et al. Experimental [Page 29]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
The contents of the SignerInfo element are as follows:
Version
The version number MUST be 3, corresponding with the choice of
SubjectKeyIdentifier for the sid.
sid
The sid is defined as:
SignerIdentifier ::= CHOICE {
issuerAndSerialNumber IssuerAndSerialNumber,
subjectKeyIdentifier [0] SubjectKeyIdentifier }
For a TAC Token, the sid MUST be a SubjectKeyIdentifier.
digestAlgorithm
This field specifies digest Algorithms.
signedAttrs
The signedAttr element MUST be omitted.
SignatureAlgorithm
This field specifies the signature Algorithm.
Signature
The signature value is defined as:
SignatureValue ::= OCTET STRING
The signature characteristics are defined by the digest and
signature algorithms.
UnsignedAttrs
unsignedAttrs MUST be omitted.
Park, et al. Experimental [Page 30]
^L
RFC 5636 Traceable Anonymous Certificate August 2009
Authors' Addresses
SangHwan Park
Korea Internet & Security Agency
78, Garak-Dong, Songpa-Gu, Seoul, Korea
EMail: shpark@kisa.or.kr
Haeryong Park
Korea Internet & Security Agency
78, Garak-Dong, Songpa-Gu, Seoul, Korea
EMail: hrpark@kisa.or.kr
YooJae Won
Korea Internet & Security Agency
78, Garak-Dong, Songpa-Gu, Seoul, Korea
EMail: yjwon@kisa.or.kr
JaeIl Lee
Korea Internet & Security Agency
78, Garak-Dong, Songpa-Gu, Seoul, Korea
EMail: jilee@kisa.or.kr
Stephen Kent
BBN Technologies
10 Moulton Street Cambridge, MA 02138
EMail: kent@bbn.com
Park, et al. Experimental [Page 31]
^L
|
