Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model

Thomas Lenz; Vesna Krnjic

doi:10.1109/TrustCom/BigDataSE.2018.00160

Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model

Thomas Lenz, Vesna Krnjic

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Abstract

Unique and qualified identification is essential in numerous security-critical areas, like eGovernment, or eBusiness. Therefore, many countries have already deployed eID solutions to confirm identity information of entities and to increase trust into the identity information. Many of these confirmation solutions only support an all-or-nothing disclosure, which means that selective disclosure of single attributes is not possible. Some other work has dealt with this privacy issue by using anonymous credentials or malleable signatures. However, all of these solutions lacks in flexible generation of qualified and provable pseudonyms that based on confirmed eID information. In this paper, we propose an advanced and lightweight model for user-centric and qualified identity information that facilitates selective disclosure and domain-specific altering of single identity attributes in order to protect the citizen's privacy. We illustrate the practical applicability of our model by implementing all components as prototype applications. Finally, we evaluate our model and compare it with other approaches for selective disclosure.

Original language	English
Title of host publication	2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE)
Publisher	IEEE Computer Society
Pages	1157-1163
ISBN (Electronic)	978-1-5386-4388-4
ISBN (Print)	978-1-5386-4389-1
DOIs	https://doi.org/10.1109/TrustCom/BigDataSE.2018.00160
Publication status	Published - 6 Sept 2018
Event	17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering: Trustcom/BigDataSE 2018 - New York, United States Duration: 31 Jul 2018 → 3 Aug 2018

Conference

Conference	17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering
Country/Territory	United States
City	New York
Period	31/07/18 → 3/08/18

Keywords

privacy
Digital signatures
Smart devices
Cryptography
Stakeholders
authentication
Data models

Access to Document

10.1109/TrustCom/BigDataSE.2018.00160

Cite this

Lenz, T., & Krnjic, V. (2018). Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model. In 2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE) (pp. 1157-1163). IEEE Computer Society. https://doi.org/10.1109/TrustCom/BigDataSE.2018.00160

Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model. / Lenz, Thomas; Krnjic, Vesna.
2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE). IEEE Computer Society, 2018. p. 1157-1163.

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Lenz, T & Krnjic, V 2018, Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model. in 2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE). IEEE Computer Society, pp. 1157-1163, 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, New York, United States, 31/07/18. https://doi.org/10.1109/TrustCom/BigDataSE.2018.00160

Lenz T, Krnjic V. Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model. In 2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE). IEEE Computer Society. 2018. p. 1157-1163 doi: 10.1109/TrustCom/BigDataSE.2018.00160

@inproceedings{6b09b53e538d495ea9b32b24cf41d01f,

title = "Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model",

abstract = "Unique and qualified identification is essential in numerous security-critical areas, like eGovernment, or eBusiness. Therefore, many countries have already deployed eID solutions to confirm identity information of entities and to increase trust into the identity information. Many of these confirmation solutions only support an all-or-nothing disclosure, which means that selective disclosure of single attributes is not possible. Some other work has dealt with this privacy issue by using anonymous credentials or malleable signatures. However, all of these solutions lacks in flexible generation of qualified and provable pseudonyms that based on confirmed eID information. In this paper, we propose an advanced and lightweight model for user-centric and qualified identity information that facilitates selective disclosure and domain-specific altering of single identity attributes in order to protect the citizen's privacy. We illustrate the practical applicability of our model by implementing all components as prototype applications. Finally, we evaluate our model and compare it with other approaches for selective disclosure.",

keywords = "privacy, Digital signatures, Smart devices, Cryptography, Stakeholders, authentication, Data models",

author = "Thomas Lenz and Vesna Krnjic",

year = "2018",

month = sep,

day = "6",

doi = "10.1109/TrustCom/BigDataSE.2018.00160",

language = "English",

isbn = "978-1-5386-4389-1",

pages = "1157--1163",

booktitle = "2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE)",

publisher = "IEEE Computer Society",

address = "United States",

note = "17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering : Trustcom/BigDataSE 2018 ; Conference date: 31-07-2018 Through 03-08-2018",

}

TY - GEN

T1 - Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model

AU - Lenz, Thomas

AU - Krnjic, Vesna

PY - 2018/9/6

Y1 - 2018/9/6

N2 - Unique and qualified identification is essential in numerous security-critical areas, like eGovernment, or eBusiness. Therefore, many countries have already deployed eID solutions to confirm identity information of entities and to increase trust into the identity information. Many of these confirmation solutions only support an all-or-nothing disclosure, which means that selective disclosure of single attributes is not possible. Some other work has dealt with this privacy issue by using anonymous credentials or malleable signatures. However, all of these solutions lacks in flexible generation of qualified and provable pseudonyms that based on confirmed eID information. In this paper, we propose an advanced and lightweight model for user-centric and qualified identity information that facilitates selective disclosure and domain-specific altering of single identity attributes in order to protect the citizen's privacy. We illustrate the practical applicability of our model by implementing all components as prototype applications. Finally, we evaluate our model and compare it with other approaches for selective disclosure.

AB - Unique and qualified identification is essential in numerous security-critical areas, like eGovernment, or eBusiness. Therefore, many countries have already deployed eID solutions to confirm identity information of entities and to increase trust into the identity information. Many of these confirmation solutions only support an all-or-nothing disclosure, which means that selective disclosure of single attributes is not possible. Some other work has dealt with this privacy issue by using anonymous credentials or malleable signatures. However, all of these solutions lacks in flexible generation of qualified and provable pseudonyms that based on confirmed eID information. In this paper, we propose an advanced and lightweight model for user-centric and qualified identity information that facilitates selective disclosure and domain-specific altering of single identity attributes in order to protect the citizen's privacy. We illustrate the practical applicability of our model by implementing all components as prototype applications. Finally, we evaluate our model and compare it with other approaches for selective disclosure.

KW - privacy

KW - Digital signatures

KW - Smart devices

KW - Cryptography

KW - Stakeholders

KW - authentication

KW - Data models

U2 - 10.1109/TrustCom/BigDataSE.2018.00160

DO - 10.1109/TrustCom/BigDataSE.2018.00160

M3 - Conference paper

SN - 978-1-5386-4389-1

SP - 1157

EP - 1163

BT - 2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE)

PB - IEEE Computer Society

T2 - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering

Y2 - 31 July 2018 through 3 August 2018

ER -

Towards Domain-Specific and Privacy-Preserving Qualified eID in a User-Centric Identity Model

Abstract

Conference

Keywords

Access to Document

Fingerprint

Cite this