Inferensys

Glossary

AnonCreds (Anonymous Credentials)

A privacy-preserving credential format utilizing Camenisch-Lysyanskaya signatures that supports selective disclosure and zero-knowledge proofs without revealing a correlatable identifier.
Knowledge engineer constructing knowledge base on laptop, document hierarchy visible, casual office setup.
PRIVACY-PRESERVING CREDENTIAL FORMAT

What is AnonCreds (Anonymous Credentials)?

A technical definition of the AnonCreds format, its underlying cryptographic mechanisms, and its role in enabling unlinkable selective disclosure within sovereign identity systems.

AnonCreds (Anonymous Credentials) is a privacy-preserving credential format that utilizes Camenisch-Lysyanskaya (CL) signatures to enable a holder to prove claims about their attributes without revealing a persistent, correlatable identifier. Unlike simple signed JSON, AnonCreds supports selective disclosure and zero-knowledge proofs (ZKPs) , allowing a verifier to confirm specific attributes—such as being over 18—without learning the holder's exact birthdate or name.

The format achieves unlinkability by generating a unique, one-time presentation proof for every verification event, preventing colluding verifiers from correlating a user's activity. Integrated with revocation registries and Decentralized Identifiers (DIDs) , AnonCreds forms a critical component of Self-Sovereign Identity (SSI) architectures, ensuring high-assurance credentials remain cryptographically sound while maximizing user privacy.

PRIVACY ARCHITECTURE

Key Features of AnonCreds

AnonCreds implements a sophisticated cryptographic framework that enables verifiable credentials with mathematically provable privacy guarantees, fundamentally separating the act of proving from the act of identifying.

02

Selective Disclosure with Predicate Proofs

Holders can reveal only the minimum necessary information from a credential while keeping all other attributes hidden. Beyond simple attribute revelation, AnonCreds supports predicate proofs—cryptographic demonstrations that an attribute satisfies a condition (greater than, less than, within range) without disclosing the actual value.

  • Attribute disclosure: Reveal only expiry_date while hiding name and address
  • Zero-knowledge predicates: Prove age > 21 without revealing exact birthdate
  • Interval proofs: Demonstrate a value falls within a specific range
  • Set membership: Prove an attribute belongs to an allowed set without identifying which element
03

Non-Correlatable Presentations

Every presentation generated from an AnonCred credential uses a freshly generated proof with a unique cryptographic nonce. This ensures that even if the same credential is presented to the same verifier multiple times, the presentations cannot be linked together. This property is known as multi-show unlinkability.

  • Unique proofs per presentation: Each interaction produces cryptographically distinct evidence
  • No common identifier: Unlike X.509 certificates, no serial number or fingerprint is exposed
  • Verifier unlinkability: Two verifiers cannot collude to correlate a user's activity
  • Protection against tracking: Prevents the creation of a behavioral profile across service providers
04

Schema-Based Credential Definition

AnonCreds credentials are defined through a schema that specifies the list of attribute names and their types. An issuer then publishes a credential definition on a Verifiable Data Registry, which includes the cryptographic public key material and revocation registry reference. This layered architecture separates data modeling from cryptographic instantiation.

  • Schema: Declares attribute names (e.g., given_name, family_name, date_of_birth)
  • Credential Definition: Binds the schema to the issuer's public CL signing key
  • Verifiable Data Registry: Stores schemas, credential definitions, and revocation registries immutably
  • Versioning: Schemas can be versioned to support credential evolution without breaking existing holders
05

Privacy-Preserving Revocation

AnonCreds implements revocation using cryptographic accumulators rather than public certificate revocation lists. A holder proves their credential has not been revoked by demonstrating membership in the accumulator without revealing which specific credential they hold. This preserves unlinkability even during revocation checks.

  • Accumulator-based: Uses dynamic accumulators that support efficient membership and non-membership proofs
  • No correlation: Revocation check does not expose a unique credential identifier
  • Revocation Registry: An append-only data structure published to the Verifiable Data Registry
  • Witness updates: Holders periodically update their witness to reflect the latest accumulator state
06

Link Secret Binding

Every AnonCred credential is cryptographically bound to a link secret—a blinding factor known only to the holder. This secret is embedded in the credential during issuance via a blind signing protocol and is proven during presentation without being revealed. The link secret prevents credential sharing and enables proving that multiple credentials belong to the same holder without identifying them.

  • Anti-sharing mechanism: Makes credential transfer practically infeasible
  • Cross-credential binding: Prove ownership of multiple credentials simultaneously
  • Blind issuance: Issuer signs attributes without learning the link secret value
  • Holder binding: Ensures only the original recipient can use the credential
ANONYMOUS CREDENTIALS EXPLAINED

Frequently Asked Questions

Technical answers to the most common questions about AnonCreds, the privacy-preserving credential format that enables selective disclosure and zero-knowledge proofs without revealing correlatable identifiers.

AnonCreds (Anonymous Credentials) is a privacy-preserving verifiable credential format that utilizes Camenisch-Lysyanskaya (CL) signatures to enable selective disclosure and zero-knowledge proofs without revealing a correlatable identifier. Unlike W3C Verifiable Credentials that typically bind to a DID, AnonCreds uses a link secret—a blinding factor known only to the holder—to bind the credential to the holder's wallet. When presenting, the holder generates a zero-knowledge proof demonstrating possession of a validly signed credential and knowledge of the link secret, without revealing the credential's signature value or any undisclosed attributes. This cryptographic construction ensures that even the issuer cannot correlate a presentation back to the original issuance event, providing unlinkability across multiple presentations.

Prasad Kumkar

About the author

Prasad Kumkar

CEO & MD, Inference Systems

Prasad Kumkar is the CEO & MD of Inference Systems and writes about AI systems architecture, LLM infrastructure, model serving, evaluation, and production deployment. Over 5+ years, he has worked across computer vision models, L5 autonomous vehicle systems, and LLM research, with a focus on taking complex AI ideas into real-world engineering systems.

His work and writing cover AI systems, large language models, AI agents, multimodal systems, autonomous systems, inference optimization, RAG, evaluation, and production AI engineering.