Projects per year
Abstract
Digital identities play a vital role in an increasingly digital world. These identities often rely on central authorities to issue and manage them. Central authorities have the drawback of being a central trusted party, representing a bottleneck and single point of failure with exclusive control of identity-related
data. Self-sovereign identity (SSI) tackles those problems by
utilizing distributed ledger technology and making users the
sovereign owners of their identity data. Nevertheless, SSI, as
recent technology, still lacks qualified identity data. This is
especially a problem since sensitive services like eGovernment
or banking services require identity data issued by a qualified
identity provider; thus, SSI-based identities cannot be used for
these services.
In this paper, we propose a concept for deriving identity data
from an existing identity system into an SSI in a fully privacypreserving
way by additionally supporting offline verification.
This way, we enable a chain of trust from the existing identity
system to the SSI system by introducing a novel trust model.
Our concept utilizes novel cryptographic primitives to support
efficient and privacy-preserving identity showing as well as revocation.
To underline the feasibility of our concept, we implement
a proof system and benchmark the related use cases.
data. Self-sovereign identity (SSI) tackles those problems by
utilizing distributed ledger technology and making users the
sovereign owners of their identity data. Nevertheless, SSI, as
recent technology, still lacks qualified identity data. This is
especially a problem since sensitive services like eGovernment
or banking services require identity data issued by a qualified
identity provider; thus, SSI-based identities cannot be used for
these services.
In this paper, we propose a concept for deriving identity data
from an existing identity system into an SSI in a fully privacypreserving
way by additionally supporting offline verification.
This way, we enable a chain of trust from the existing identity
system to the SSI system by introducing a novel trust model.
Our concept utilizes novel cryptographic primitives to support
efficient and privacy-preserving identity showing as well as revocation.
To underline the feasibility of our concept, we implement
a proof system and benchmark the related use cases.
| Original language | English |
|---|---|
| Title of host publication | Proceedings - 2021 IEEE 20th International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2021 |
| Editors | Liang Zhao, Neeraj Kumar, Robert C. Hsu, Deqing Zou |
| Publisher | IEEE Computer Soc. |
| Pages | 506-513 |
| Number of pages | 8 |
| ISBN (Electronic) | 9781665416580 |
| DOIs | |
| Publication status | Published - 2021 |
| Event | 20th IEEE International Conference on Trust, Security and Privacy in Computing and Communications: TrustCom 2021 - Shenyang, China Duration: 18 Aug 2021 → 20 Aug 2021 Conference number: 20 https://trustcom2021.sau.edu.cn/ |
Publication series
| Name | Proceedings - 2021 IEEE 20th International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2021 |
|---|
Conference
| Conference | 20th IEEE International Conference on Trust, Security and Privacy in Computing and Communications |
|---|---|
| Abbreviated title | TrustCom 2021 |
| Country/Territory | China |
| City | Shenyang |
| Period | 18/08/21 → 20/08/21 |
| Internet address |
Keywords
- Self-Sovereign Identity
- eID derivation
- offline revocation
- zero-knowledge proofs
- self-sovereign identity
ASJC Scopus subject areas
- Information Systems and Management
- Information Systems
- Safety, Risk, Reliability and Quality
- Computer Networks and Communications
Fingerprint
Dive into the research topics of 'Privacy-Preserving eID Derivation to Self-Sovereign Identity Systems with Offline Revocation'. Together they form a unique fingerprint.Projects
- 1 Finished
-
EU - KRAKEN - Brokerage and market platform for personal data
1/12/19 → 30/11/22
Project: Research project