Qualified eID Derivation into a Distributed Ledger Based IdM System

Andreas Abraham, Kevin Theuermann, Emanuel Kirchengast

Research output: Chapter in Book/Report/Conference proceedingConference contributionResearchpeer-review

Abstract

Traditional identity management systems (IdMS) suffer from significant weaknesses, such as the reliance on a single central entity that provides the identity data or the users lack control over their identity data. The introduction of qualified self-sovereign identities (SSIs) for eGovernment systems can strengthen the privacy of citizens. Furthermore, it is possible to solve fundamental trust issues of traditional IdMS by utilizing distributed ledger technology (DLT) together with performing a consensus algorithm. The contribution of this paper is twofold. First, this paper proposes a solution for the derivation of qualified electronic identities (eIDs), issued by a traditional IdMS, into a distributed ledger (DL) based IdMS that enables SSIs. Second, we have implemented a proof-of-concept (PoC) realizing qualified eID derivation into an SSI system based on the DLT. This PoC was realized, among others, by introducing an agent that represents the interface between the traditional IdM and the SSI system as well as by extending the consensus algorithm. The proposed approach used for eID derivation ensures the maintenance of the trust as well as the quality of the identity data.

Original languageEnglish
Title of host publicationProceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018
PublisherInstitute of Electrical and Electronics Engineers
Pages1406-1412
Number of pages7
ISBN (Print)9781538643877
DOIs
Publication statusPublished - 5 Sep 2018
Event17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018 - New York, United States
Duration: 31 Jul 20183 Aug 2018

Conference

Conference17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018
CountryUnited States
CityNew York
Period31/07/183/08/18

Fingerprint

Identity management
Management system
Electronic government
Privacy

Keywords

  • Distributed Ledger
  • Distributed Trust
  • Identity Derivation
  • Qualified Electronic Identities
  • Redundant Byzantine Fault Tolerance Protocol
  • Self Sovereign Identity

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Hardware and Architecture
  • Information Systems
  • Information Systems and Management
  • Safety, Risk, Reliability and Quality

Cite this

Abraham, A., Theuermann, K., & Kirchengast, E. (2018). Qualified eID Derivation into a Distributed Ledger Based IdM System. In Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018 (pp. 1406-1412). [8456064] Institute of Electrical and Electronics Engineers. https://doi.org/10.1109/TrustCom/BigDataSE.2018.00195

Qualified eID Derivation into a Distributed Ledger Based IdM System. / Abraham, Andreas; Theuermann, Kevin; Kirchengast, Emanuel.

Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018. Institute of Electrical and Electronics Engineers, 2018. p. 1406-1412 8456064.

Research output: Chapter in Book/Report/Conference proceedingConference contributionResearchpeer-review

Abraham, A, Theuermann, K & Kirchengast, E 2018, Qualified eID Derivation into a Distributed Ledger Based IdM System. in Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018., 8456064, Institute of Electrical and Electronics Engineers, pp. 1406-1412, 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018, New York, United States, 31/07/18. https://doi.org/10.1109/TrustCom/BigDataSE.2018.00195
Abraham A, Theuermann K, Kirchengast E. Qualified eID Derivation into a Distributed Ledger Based IdM System. In Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018. Institute of Electrical and Electronics Engineers. 2018. p. 1406-1412. 8456064 https://doi.org/10.1109/TrustCom/BigDataSE.2018.00195
Abraham, Andreas ; Theuermann, Kevin ; Kirchengast, Emanuel. / Qualified eID Derivation into a Distributed Ledger Based IdM System. Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018. Institute of Electrical and Electronics Engineers, 2018. pp. 1406-1412
@inproceedings{6ae70960d67a491788d5118dcdaca165,
title = "Qualified eID Derivation into a Distributed Ledger Based IdM System",
abstract = "Traditional identity management systems (IdMS) suffer from significant weaknesses, such as the reliance on a single central entity that provides the identity data or the users lack control over their identity data. The introduction of qualified self-sovereign identities (SSIs) for eGovernment systems can strengthen the privacy of citizens. Furthermore, it is possible to solve fundamental trust issues of traditional IdMS by utilizing distributed ledger technology (DLT) together with performing a consensus algorithm. The contribution of this paper is twofold. First, this paper proposes a solution for the derivation of qualified electronic identities (eIDs), issued by a traditional IdMS, into a distributed ledger (DL) based IdMS that enables SSIs. Second, we have implemented a proof-of-concept (PoC) realizing qualified eID derivation into an SSI system based on the DLT. This PoC was realized, among others, by introducing an agent that represents the interface between the traditional IdM and the SSI system as well as by extending the consensus algorithm. The proposed approach used for eID derivation ensures the maintenance of the trust as well as the quality of the identity data.",
keywords = "Distributed Ledger, Distributed Trust, Identity Derivation, Qualified Electronic Identities, Redundant Byzantine Fault Tolerance Protocol, Self Sovereign Identity",
author = "Andreas Abraham and Kevin Theuermann and Emanuel Kirchengast",
year = "2018",
month = "9",
day = "5",
doi = "10.1109/TrustCom/BigDataSE.2018.00195",
language = "English",
isbn = "9781538643877",
pages = "1406--1412",
booktitle = "Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018",
publisher = "Institute of Electrical and Electronics Engineers",
address = "United States",

}

TY - GEN

T1 - Qualified eID Derivation into a Distributed Ledger Based IdM System

AU - Abraham, Andreas

AU - Theuermann, Kevin

AU - Kirchengast, Emanuel

PY - 2018/9/5

Y1 - 2018/9/5

N2 - Traditional identity management systems (IdMS) suffer from significant weaknesses, such as the reliance on a single central entity that provides the identity data or the users lack control over their identity data. The introduction of qualified self-sovereign identities (SSIs) for eGovernment systems can strengthen the privacy of citizens. Furthermore, it is possible to solve fundamental trust issues of traditional IdMS by utilizing distributed ledger technology (DLT) together with performing a consensus algorithm. The contribution of this paper is twofold. First, this paper proposes a solution for the derivation of qualified electronic identities (eIDs), issued by a traditional IdMS, into a distributed ledger (DL) based IdMS that enables SSIs. Second, we have implemented a proof-of-concept (PoC) realizing qualified eID derivation into an SSI system based on the DLT. This PoC was realized, among others, by introducing an agent that represents the interface between the traditional IdM and the SSI system as well as by extending the consensus algorithm. The proposed approach used for eID derivation ensures the maintenance of the trust as well as the quality of the identity data.

AB - Traditional identity management systems (IdMS) suffer from significant weaknesses, such as the reliance on a single central entity that provides the identity data or the users lack control over their identity data. The introduction of qualified self-sovereign identities (SSIs) for eGovernment systems can strengthen the privacy of citizens. Furthermore, it is possible to solve fundamental trust issues of traditional IdMS by utilizing distributed ledger technology (DLT) together with performing a consensus algorithm. The contribution of this paper is twofold. First, this paper proposes a solution for the derivation of qualified electronic identities (eIDs), issued by a traditional IdMS, into a distributed ledger (DL) based IdMS that enables SSIs. Second, we have implemented a proof-of-concept (PoC) realizing qualified eID derivation into an SSI system based on the DLT. This PoC was realized, among others, by introducing an agent that represents the interface between the traditional IdM and the SSI system as well as by extending the consensus algorithm. The proposed approach used for eID derivation ensures the maintenance of the trust as well as the quality of the identity data.

KW - Distributed Ledger

KW - Distributed Trust

KW - Identity Derivation

KW - Qualified Electronic Identities

KW - Redundant Byzantine Fault Tolerance Protocol

KW - Self Sovereign Identity

UR - http://www.scopus.com/inward/record.url?scp=85054090655&partnerID=8YFLogxK

U2 - 10.1109/TrustCom/BigDataSE.2018.00195

DO - 10.1109/TrustCom/BigDataSE.2018.00195

M3 - Conference contribution

SN - 9781538643877

SP - 1406

EP - 1412

BT - Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018

PB - Institute of Electrical and Electronics Engineers

ER -