Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model

Thomas Lenz, Vesna Krnjic

Publikation: Beitrag in Buch/Bericht/KonferenzbandBeitrag in einem KonferenzbandForschungBegutachtung

Abstract

Unique and qualified identification is essential in numerous security-critical areas, like eGovernment, or eBusiness. Therefore, many countries have already deployed eID solutions to confirm identity information of entities and to increase trust into the identity information. Many of these confirmation solutions only support an all-or-nothing disclosure, which means that selective disclosure of single attributes is not possible. Some other work has dealt with this privacy issue by using anonymous credentials or malleable signatures. However, all of these solutions lacks in flexible generation of qualified and provable pseudonyms that based on confirmed eID information. In this paper, we propose an advanced and lightweight model for user-centric and qualified identity information that facilitates selective disclosure and domain-specific altering of single identity attributes in order to protect the citizen's privacy. We illustrate the practical applicability of our model by implementing all components as prototype applications. Finally, we evaluate our model and compare it with other approaches for selective disclosure.
Originalspracheenglisch
Titel2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE)
Herausgeber (Verlag)IEEE Computer Society
Seiten1157-1163
ISBN (elektronisch)978-1-5386-4388-4
ISBN (Print)978-1-5386-4389-1
DOIs
PublikationsstatusVeröffentlicht - 6 Sep 2018
Veranstaltung17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018 - New York, USA / Vereinigte Staaten
Dauer: 31 Jul 20183 Aug 2018

Konferenz

Konferenz17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018
LandUSA / Vereinigte Staaten
OrtNew York
Zeitraum31/07/183/08/18

Fingerprint

Identification (control systems)

Schlagwörter

    Dies zitieren

    Lenz, T., & Krnjic, V. (2018). Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model. in 2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE) (S. 1157-1163). IEEE Computer Society. https://doi.org/10.1109/TrustCom/BigDataSE.2018.00160

    Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model. / Lenz, Thomas; Krnjic, Vesna.

    2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE). IEEE Computer Society, 2018. S. 1157-1163.

    Publikation: Beitrag in Buch/Bericht/KonferenzbandBeitrag in einem KonferenzbandForschungBegutachtung

    Lenz, T & Krnjic, V 2018, Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model. in 2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE). IEEE Computer Society, S. 1157-1163, New York, USA / Vereinigte Staaten, 31/07/18. https://doi.org/10.1109/TrustCom/BigDataSE.2018.00160
    Lenz T, Krnjic V. Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model. in 2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE). IEEE Computer Society. 2018. S. 1157-1163 https://doi.org/10.1109/TrustCom/BigDataSE.2018.00160
    Lenz, Thomas ; Krnjic, Vesna. / Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model. 2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE). IEEE Computer Society, 2018. S. 1157-1163
    @inproceedings{6b09b53e538d495ea9b32b24cf41d01f,
    title = "Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model",
    abstract = "Unique and qualified identification is essential in numerous security-critical areas, like eGovernment, or eBusiness. Therefore, many countries have already deployed eID solutions to confirm identity information of entities and to increase trust into the identity information. Many of these confirmation solutions only support an all-or-nothing disclosure, which means that selective disclosure of single attributes is not possible. Some other work has dealt with this privacy issue by using anonymous credentials or malleable signatures. However, all of these solutions lacks in flexible generation of qualified and provable pseudonyms that based on confirmed eID information. In this paper, we propose an advanced and lightweight model for user-centric and qualified identity information that facilitates selective disclosure and domain-specific altering of single identity attributes in order to protect the citizen's privacy. We illustrate the practical applicability of our model by implementing all components as prototype applications. Finally, we evaluate our model and compare it with other approaches for selective disclosure.",
    keywords = "privacy, Digital signatures, Smart devices, Cryptography, Stakeholders, authentication, Data models",
    author = "Thomas Lenz and Vesna Krnjic",
    year = "2018",
    month = "9",
    day = "6",
    doi = "10.1109/TrustCom/BigDataSE.2018.00160",
    language = "English",
    isbn = "978-1-5386-4389-1",
    pages = "1157--1163",
    booktitle = "2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE)",
    publisher = "IEEE Computer Society",
    address = "United States",

    }

    TY - GEN

    T1 - Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model

    AU - Lenz, Thomas

    AU - Krnjic, Vesna

    PY - 2018/9/6

    Y1 - 2018/9/6

    N2 - Unique and qualified identification is essential in numerous security-critical areas, like eGovernment, or eBusiness. Therefore, many countries have already deployed eID solutions to confirm identity information of entities and to increase trust into the identity information. Many of these confirmation solutions only support an all-or-nothing disclosure, which means that selective disclosure of single attributes is not possible. Some other work has dealt with this privacy issue by using anonymous credentials or malleable signatures. However, all of these solutions lacks in flexible generation of qualified and provable pseudonyms that based on confirmed eID information. In this paper, we propose an advanced and lightweight model for user-centric and qualified identity information that facilitates selective disclosure and domain-specific altering of single identity attributes in order to protect the citizen's privacy. We illustrate the practical applicability of our model by implementing all components as prototype applications. Finally, we evaluate our model and compare it with other approaches for selective disclosure.

    AB - Unique and qualified identification is essential in numerous security-critical areas, like eGovernment, or eBusiness. Therefore, many countries have already deployed eID solutions to confirm identity information of entities and to increase trust into the identity information. Many of these confirmation solutions only support an all-or-nothing disclosure, which means that selective disclosure of single attributes is not possible. Some other work has dealt with this privacy issue by using anonymous credentials or malleable signatures. However, all of these solutions lacks in flexible generation of qualified and provable pseudonyms that based on confirmed eID information. In this paper, we propose an advanced and lightweight model for user-centric and qualified identity information that facilitates selective disclosure and domain-specific altering of single identity attributes in order to protect the citizen's privacy. We illustrate the practical applicability of our model by implementing all components as prototype applications. Finally, we evaluate our model and compare it with other approaches for selective disclosure.

    KW - privacy

    KW - Digital signatures

    KW - Smart devices

    KW - Cryptography

    KW - Stakeholders

    KW - authentication

    KW - Data models

    U2 - 10.1109/TrustCom/BigDataSE.2018.00160

    DO - 10.1109/TrustCom/BigDataSE.2018.00160

    M3 - Conference contribution

    SN - 978-1-5386-4389-1

    SP - 1157

    EP - 1163

    BT - 2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE)

    PB - IEEE Computer Society

    ER -