An anonymous reputation system with reputation secrecy for manager

Toru Nakanishi, Tomoya Nomura, Nobuo Funabiki

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

In anonymous reputation systems, where after an interaction between anonymous users, one of the user evaluates the peer by giving a rating. Ratings for a user are accumulated, which becomes the reputation of the user. By using the reputation, we can know the reliability of an anonymous user. Previously, anonymous reputation systems have been proposed, using an anonymous e-cash scheme. However, in the ecash-based systems, the bank grasps the accumulated reputations for all users, and the fluctuation of reputations. These are private information for users. Furthermore, the timing attack using the deposit times is possible, which makes the anonymity weak. In this paper, we propose an anonymous reputation system, where the reputations of users are secret for even the reputation manager such as the bank. Our approach is to adopt an anonymous credential certifying the accumulated reputation of a user. Initially a user registers with the reputation manager, and is issued an initial certificate. After each interaction with a rater, the user as the ratee obtains an updated certificate certifying the previous reputation summed up by the current rating. The update protocol is based on the zero-knowledge proofs, and thus the reputations are secret for the reputation manager. On the other hand, due to the certificate, the user cannot maliciously alter his reputation.

Original languageEnglish
Title of host publicationInformation Security and Cryptology - ICISC 2013 - 16th International Conference, Revised Selected Papers
PublisherSpringer Verlag
Pages363-378
Number of pages16
Volume8565
ISBN (Print)9783319121598
DOIs
Publication statusPublished - 2014
Event10th IFIP WG 11.9 International Conference on Digital Forensics - Vienna, Austria
Duration: Jan 8 2014Jan 10 2014

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume8565
ISSN (Print)03029743
ISSN (Electronic)16113349

Other

Other10th IFIP WG 11.9 International Conference on Digital Forensics
CountryAustria
CityVienna
Period1/8/141/10/14

Fingerprint

Reputation System
Managers
Certificate
Deposits
Reputation
Timing Attack
Zero-knowledge Proof
Private Information
Anonymity
Interaction

Keywords

  • Anonymity
  • Anonymous credentials
  • Pairings
  • Reputation system

ASJC Scopus subject areas

  • Computer Science(all)
  • Theoretical Computer Science

Cite this

Nakanishi, T., Nomura, T., & Funabiki, N. (2014). An anonymous reputation system with reputation secrecy for manager. In Information Security and Cryptology - ICISC 2013 - 16th International Conference, Revised Selected Papers (Vol. 8565, pp. 363-378). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 8565). Springer Verlag. https://doi.org/10.1007/978-3-319-12160-4_22

An anonymous reputation system with reputation secrecy for manager. / Nakanishi, Toru; Nomura, Tomoya; Funabiki, Nobuo.

Information Security and Cryptology - ICISC 2013 - 16th International Conference, Revised Selected Papers. Vol. 8565 Springer Verlag, 2014. p. 363-378 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 8565).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Nakanishi, T, Nomura, T & Funabiki, N 2014, An anonymous reputation system with reputation secrecy for manager. in Information Security and Cryptology - ICISC 2013 - 16th International Conference, Revised Selected Papers. vol. 8565, Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 8565, Springer Verlag, pp. 363-378, 10th IFIP WG 11.9 International Conference on Digital Forensics, Vienna, Austria, 1/8/14. https://doi.org/10.1007/978-3-319-12160-4_22
Nakanishi T, Nomura T, Funabiki N. An anonymous reputation system with reputation secrecy for manager. In Information Security and Cryptology - ICISC 2013 - 16th International Conference, Revised Selected Papers. Vol. 8565. Springer Verlag. 2014. p. 363-378. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). https://doi.org/10.1007/978-3-319-12160-4_22
Nakanishi, Toru ; Nomura, Tomoya ; Funabiki, Nobuo. / An anonymous reputation system with reputation secrecy for manager. Information Security and Cryptology - ICISC 2013 - 16th International Conference, Revised Selected Papers. Vol. 8565 Springer Verlag, 2014. pp. 363-378 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).
@inproceedings{671b41e973044f1fbe5361ff70de9b0a,
title = "An anonymous reputation system with reputation secrecy for manager",
abstract = "In anonymous reputation systems, where after an interaction between anonymous users, one of the user evaluates the peer by giving a rating. Ratings for a user are accumulated, which becomes the reputation of the user. By using the reputation, we can know the reliability of an anonymous user. Previously, anonymous reputation systems have been proposed, using an anonymous e-cash scheme. However, in the ecash-based systems, the bank grasps the accumulated reputations for all users, and the fluctuation of reputations. These are private information for users. Furthermore, the timing attack using the deposit times is possible, which makes the anonymity weak. In this paper, we propose an anonymous reputation system, where the reputations of users are secret for even the reputation manager such as the bank. Our approach is to adopt an anonymous credential certifying the accumulated reputation of a user. Initially a user registers with the reputation manager, and is issued an initial certificate. After each interaction with a rater, the user as the ratee obtains an updated certificate certifying the previous reputation summed up by the current rating. The update protocol is based on the zero-knowledge proofs, and thus the reputations are secret for the reputation manager. On the other hand, due to the certificate, the user cannot maliciously alter his reputation.",
keywords = "Anonymity, Anonymous credentials, Pairings, Reputation system",
author = "Toru Nakanishi and Tomoya Nomura and Nobuo Funabiki",
year = "2014",
doi = "10.1007/978-3-319-12160-4_22",
language = "English",
isbn = "9783319121598",
volume = "8565",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer Verlag",
pages = "363--378",
booktitle = "Information Security and Cryptology - ICISC 2013 - 16th International Conference, Revised Selected Papers",

}

TY - GEN

T1 - An anonymous reputation system with reputation secrecy for manager

AU - Nakanishi, Toru

AU - Nomura, Tomoya

AU - Funabiki, Nobuo

PY - 2014

Y1 - 2014

N2 - In anonymous reputation systems, where after an interaction between anonymous users, one of the user evaluates the peer by giving a rating. Ratings for a user are accumulated, which becomes the reputation of the user. By using the reputation, we can know the reliability of an anonymous user. Previously, anonymous reputation systems have been proposed, using an anonymous e-cash scheme. However, in the ecash-based systems, the bank grasps the accumulated reputations for all users, and the fluctuation of reputations. These are private information for users. Furthermore, the timing attack using the deposit times is possible, which makes the anonymity weak. In this paper, we propose an anonymous reputation system, where the reputations of users are secret for even the reputation manager such as the bank. Our approach is to adopt an anonymous credential certifying the accumulated reputation of a user. Initially a user registers with the reputation manager, and is issued an initial certificate. After each interaction with a rater, the user as the ratee obtains an updated certificate certifying the previous reputation summed up by the current rating. The update protocol is based on the zero-knowledge proofs, and thus the reputations are secret for the reputation manager. On the other hand, due to the certificate, the user cannot maliciously alter his reputation.

AB - In anonymous reputation systems, where after an interaction between anonymous users, one of the user evaluates the peer by giving a rating. Ratings for a user are accumulated, which becomes the reputation of the user. By using the reputation, we can know the reliability of an anonymous user. Previously, anonymous reputation systems have been proposed, using an anonymous e-cash scheme. However, in the ecash-based systems, the bank grasps the accumulated reputations for all users, and the fluctuation of reputations. These are private information for users. Furthermore, the timing attack using the deposit times is possible, which makes the anonymity weak. In this paper, we propose an anonymous reputation system, where the reputations of users are secret for even the reputation manager such as the bank. Our approach is to adopt an anonymous credential certifying the accumulated reputation of a user. Initially a user registers with the reputation manager, and is issued an initial certificate. After each interaction with a rater, the user as the ratee obtains an updated certificate certifying the previous reputation summed up by the current rating. The update protocol is based on the zero-knowledge proofs, and thus the reputations are secret for the reputation manager. On the other hand, due to the certificate, the user cannot maliciously alter his reputation.

KW - Anonymity

KW - Anonymous credentials

KW - Pairings

KW - Reputation system

UR - http://www.scopus.com/inward/record.url?scp=84911145534&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84911145534&partnerID=8YFLogxK

U2 - 10.1007/978-3-319-12160-4_22

DO - 10.1007/978-3-319-12160-4_22

M3 - Conference contribution

AN - SCOPUS:84911145534

SN - 9783319121598

VL - 8565

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 363

EP - 378

BT - Information Security and Cryptology - ICISC 2013 - 16th International Conference, Revised Selected Papers

PB - Springer Verlag

ER -