Anonymous credentials: an illustrated primer (Part 2)
Summary
Part 2 of Matthew Green's illustrated primer explains anonymous credentials in real deployments, focusing on Privacy Pass, its two issuance modes (publicly verifiable blind signatures and privately verifiable EC-based tokens), session-specific credentials, and practical trade-offs, including real-time issuance and timing concerns. The post also discusses Google's forthcoming zero-knowledge credentials as a future direction and highlights deployment at Cloudflare, Apple, Google, and others.