IBM Skip to main content  
     Home  |  IBM Research  |  IBM Switzerland  |  Zurich Research Laboratory

idemix- pseudonymity for e-transactions

idemix (identity mixer) is an anonymous credential system (or pseudonym system) that we are developing here. It consists of

  • Theoretical results, i.e., cryptographic algorithms and protocols to realize an efficient anonymous credential system (see publications below).
  • A prototype implementation of the cryptographic protocols, some basic applications logic on the server and the client side, a wallet for users to manage (store, show, and obtain) their credentials, and some demo applications. This prototype has been used by several Universities for their own research such as anonymous access control, identity management, privacy in healh-care, and e-government, to name just a few. idemix will also be used in the FP6 integrated project PRIME (Privacy and Identity Management for Europe). If you are interested in using our prototype for your own research please contact us at idemix (at) zurich.ibm.com.

Finally, idemix has been the basis of the Direct Anonymous Attestation (DAA) protocol that is included in the Trusted Computing Group's specification of the Trusted Platform Module (TPM) v1.2. DAA allows a TPM-equipped platform to convince another platform that it actually contains a genuine TPM in an anonymous way, i.e., without revealing any other information about itself.

scenario

Resources:

- A little text explaining why idemix is necessary :-)

- A set of slides about the idemix technology.

- A set of screenshots of the idemix prototype.

- Some related papers:

[CS03] Jan Camenisch, Victor Shoup: Practical Verifiable Encryption and Decryption of Discrete Logarithms In Advances in Cryptology -- Crypto 2003. Full Version: [pdf]
[CL02b] Jan Camenisch, Anna Lysyanskaya: A Signature Scheme for Efficient Protocols. In Third Conference on Security in Communication Networks, 2002) [pdf]
[CH02] Jan Camenisch, Els Van Herreweghen: Design and Implementation of the Idemix Anonymous Credential System. Research Report RZ 3419, IBM Research Division, June 2002. Also appeared in ACM Computer and Communication Security 2002 [pdf]
[CL02a] Jan Camenisch, Anna Lysyanskaya: Dynamic accumulators and application to efficient revocation of anonymous credentials. In Advances in Cryptology -- Crypto 2002. [pdf]
[CL01] Jan Camenisch, Anna Lysyanskaya: An Identity Escrow Scheme with Appointed Verifiers. In Advances in Cryptology -- Crypto 2001. [pdf]
[CL00] Jan Camenisch, Anna Lysyanskaya: Efficient Non-transferable Anonymous Multi-show Credential System with Optional Anonymity Revocation. (Extended abstract in: Advances in Cryptology -- Eurocrypt 2001, revised full version available here ) [pdf]
  About IBM  |  Privacy  |  Legal  |  Contact