Portal: Time-Bound and Replay-Resistant Zero-Knowledge Proofs for Single Sign-On

Jan Lauinger; Serhat Bezmez; Jens Ernstberger; Sebastian Steinhorst

Portal: Time-Bound and Replay-Resistant Zero-Knowledge Proofs for Single Sign-On

Jan Lauinger, Serhat Bezmez, Jens Ernstberger, Sebastian Steinhorst

Published: 01 Jan 2024, Last Modified: 13 Nov 2024ICBC 2024EveryoneRevisionsBibTeXCC BY-SA 4.0

Abstract: Latest identity systems rely on public blockchains to enhance user autonomy and reduce tracking from conventional identity providers. At the same time, identity systems integrate novel technologies such as zero-knowledge proofs (ZKPs) to improve data privacy and data compliance. We show that a naive verification of ZKPs at smart contracts enables replay attacks: Attackers can replay ZKPs at arbitrary times without having access to the private inputs that are required for the computation of the ZKP. To solve this problem, we construct a transaction sequence which verifies time-bound and replay-resistant ZKPs at smart contracts. Our construction introduces an additional but constant fee of 0.14${\$}$ per verification of a ZKP on the public blockchain Ethereum. With our new construction, we propose Portal, a novel identity system for decentralized single sign-on.

Loading