Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model

Thomas Lenz, Vesna Krnjic

Research output: Chapter in Book/Report/Conference proceedingConference contributionResearchpeer-review

Abstract

Unique and qualified identification is essential in numerous security-critical areas, like eGovernment, or eBusiness. Therefore, many countries have already deployed eID solutions to confirm identity information of entities and to increase trust into the identity information. Many of these confirmation solutions only support an all-or-nothing disclosure, which means that selective disclosure of single attributes is not possible. Some other work has dealt with this privacy issue by using anonymous credentials or malleable signatures. However, all of these solutions lacks in flexible generation of qualified and provable pseudonyms that based on confirmed eID information. In this paper, we propose an advanced and lightweight model for user-centric and qualified identity information that facilitates selective disclosure and domain-specific altering of single identity attributes in order to protect the citizen's privacy. We illustrate the practical applicability of our model by implementing all components as prototype applications. Finally, we evaluate our model and compare it with other approaches for selective disclosure.
Original languageEnglish
Title of host publication2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE)
PublisherIEEE Computer Society
Pages1157-1163
ISBN (Electronic)978-1-5386-4388-4
ISBN (Print)978-1-5386-4389-1
DOIs
Publication statusPublished - 6 Sep 2018
Event17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018 - New York, United States
Duration: 31 Jul 20183 Aug 2018

Conference

Conference17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018
CountryUnited States
CityNew York
Period31/07/183/08/18

Fingerprint

Identification (control systems)

Keywords

  • privacy
  • Digital signatures
  • Smart devices
  • Cryptography
  • Stakeholders
  • authentication
  • Data models

Cite this

Lenz, T., & Krnjic, V. (2018). Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model. In 2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE) (pp. 1157-1163). IEEE Computer Society. https://doi.org/10.1109/TrustCom/BigDataSE.2018.00160

Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model. / Lenz, Thomas; Krnjic, Vesna.

2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE). IEEE Computer Society, 2018. p. 1157-1163.

Research output: Chapter in Book/Report/Conference proceedingConference contributionResearchpeer-review

Lenz, T & Krnjic, V 2018, Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model. in 2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE). IEEE Computer Society, pp. 1157-1163, 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018, New York, United States, 31/07/18. https://doi.org/10.1109/TrustCom/BigDataSE.2018.00160
Lenz T, Krnjic V. Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model. In 2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE). IEEE Computer Society. 2018. p. 1157-1163 https://doi.org/10.1109/TrustCom/BigDataSE.2018.00160
Lenz, Thomas ; Krnjic, Vesna. / Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model. 2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE). IEEE Computer Society, 2018. pp. 1157-1163
@inproceedings{6b09b53e538d495ea9b32b24cf41d01f,
title = "Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model",
abstract = "Unique and qualified identification is essential in numerous security-critical areas, like eGovernment, or eBusiness. Therefore, many countries have already deployed eID solutions to confirm identity information of entities and to increase trust into the identity information. Many of these confirmation solutions only support an all-or-nothing disclosure, which means that selective disclosure of single attributes is not possible. Some other work has dealt with this privacy issue by using anonymous credentials or malleable signatures. However, all of these solutions lacks in flexible generation of qualified and provable pseudonyms that based on confirmed eID information. In this paper, we propose an advanced and lightweight model for user-centric and qualified identity information that facilitates selective disclosure and domain-specific altering of single identity attributes in order to protect the citizen's privacy. We illustrate the practical applicability of our model by implementing all components as prototype applications. Finally, we evaluate our model and compare it with other approaches for selective disclosure.",
keywords = "privacy, Digital signatures, Smart devices, Cryptography, Stakeholders, authentication, Data models",
author = "Thomas Lenz and Vesna Krnjic",
year = "2018",
month = "9",
day = "6",
doi = "10.1109/TrustCom/BigDataSE.2018.00160",
language = "English",
isbn = "978-1-5386-4389-1",
pages = "1157--1163",
booktitle = "2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE)",
publisher = "IEEE Computer Society",
address = "United States",

}

TY - GEN

T1 - Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model

AU - Lenz, Thomas

AU - Krnjic, Vesna

PY - 2018/9/6

Y1 - 2018/9/6

N2 - Unique and qualified identification is essential in numerous security-critical areas, like eGovernment, or eBusiness. Therefore, many countries have already deployed eID solutions to confirm identity information of entities and to increase trust into the identity information. Many of these confirmation solutions only support an all-or-nothing disclosure, which means that selective disclosure of single attributes is not possible. Some other work has dealt with this privacy issue by using anonymous credentials or malleable signatures. However, all of these solutions lacks in flexible generation of qualified and provable pseudonyms that based on confirmed eID information. In this paper, we propose an advanced and lightweight model for user-centric and qualified identity information that facilitates selective disclosure and domain-specific altering of single identity attributes in order to protect the citizen's privacy. We illustrate the practical applicability of our model by implementing all components as prototype applications. Finally, we evaluate our model and compare it with other approaches for selective disclosure.

AB - Unique and qualified identification is essential in numerous security-critical areas, like eGovernment, or eBusiness. Therefore, many countries have already deployed eID solutions to confirm identity information of entities and to increase trust into the identity information. Many of these confirmation solutions only support an all-or-nothing disclosure, which means that selective disclosure of single attributes is not possible. Some other work has dealt with this privacy issue by using anonymous credentials or malleable signatures. However, all of these solutions lacks in flexible generation of qualified and provable pseudonyms that based on confirmed eID information. In this paper, we propose an advanced and lightweight model for user-centric and qualified identity information that facilitates selective disclosure and domain-specific altering of single identity attributes in order to protect the citizen's privacy. We illustrate the practical applicability of our model by implementing all components as prototype applications. Finally, we evaluate our model and compare it with other approaches for selective disclosure.

KW - privacy

KW - Digital signatures

KW - Smart devices

KW - Cryptography

KW - Stakeholders

KW - authentication

KW - Data models

U2 - 10.1109/TrustCom/BigDataSE.2018.00160

DO - 10.1109/TrustCom/BigDataSE.2018.00160

M3 - Conference contribution

SN - 978-1-5386-4389-1

SP - 1157

EP - 1163

BT - 2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE)

PB - IEEE Computer Society

ER -