Federation of Attribute Providers for User Self-Sovereign Identity

Coelho, Pedro; Zúquete, André; Gomes, Hélder

doi:10.20897/jisem/3943

Cited by 7 publications

(5 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Being a relatively new notion, the amount of scholarly works on this domain in the academic community is quite minimal. A very few examples of some of the academic works in this domain can be found in [13]- [17]. In [13], the authors explored the concept of self-sovereign identity as well as presented its challenges and opportunities in a rather informal way.…”

Section: A Existing Definitionsmentioning

confidence: 99%

“…On the other hand, the authors in [14] investigated different components of a self-sovereign identity using existing non-academic literature. The main focus of other works in [15]- [17] is on the application of self-sovereign identity, more specifically, to explore how a self-sovereign identity system can be built and developed. Within this aim, they proposed developed different systems.…”

Section: A Existing Definitionsmentioning

confidence: 99%

See 1 more Smart Citation

In Search of Self-Sovereign Identity Leveraging Blockchain Technology

2019

View full text Add to dashboard Cite

In recent times, with the advent of blockchain technology, there is an optimism surrounding the concept of self-sovereign identity which is regarded to have an influential effect on how we interact with each other over the Internet in future. There are a few works in the literature which examine different aspects of self-sovereign identity. Unfortunately, the existing works are not methodological and comprehensive at all. Moreover, there exist different notions of what the term self-sovereign identity means. To exploit its full potential, it is essential to ensure a common understanding in a formal way. This paper aims to achieve this goal by providing the first-ever formal and rigorous treatment of the concept of self-sovereign identity using a mathematical model. This paper examines the properties that a self-sovereign identity should have and explores the impact of self-sovereign identity over the laws of identity. It also highlights the essential life-cycles of an identity management system and inter-relates how the notion of self-sovereign identity can be applied in these life-cycles. In addition, the paper illustrates several envisioned flows involving a self-sovereign identity leveraging blockchain technology covering different aspects of an identity management system. All in all, this paper presents the first formal and comprehensive step toward an academic investigation of self-sovereign identity.INDEX TERMS Identity, identity management system, self-sovereign identity, blockchain.

show abstract

Section: A Existing Definitionsmentioning

confidence: 99%

Section: A Existing Definitionsmentioning

confidence: 99%

In Search of Self-Sovereign Identity Leveraging Blockchain Technology

2019

View full text Add to dashboard Cite

show abstract

“…However, no solution is implemented, and it is not clear how SSI can be applied to access control. Coelho et al detail a self-sovereign identity system [32] using roles, attributes, policies, and user wallets. The proposed system does not support multiple ACMs, and lacks an implementation.…”

Section: Related Workmentioning

confidence: 99%

SSIBAC: Self-Sovereign Identity Based Access Control

Belchior

Putz

Pernul

et al. 2020

2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom)

View full text Add to dashboard Cite

Ineffective data management practices pose serious issues to individuals and companies, e.g., risk of identity theft and online exposure. Self-sovereign identity (SSI) is a new identity management approach that ensures users have full control of their personal data. In this work, we alleviate data breach and user privacy problems by showing how SSI can fit within the context of established enterprise identity and access management technologies. In light of recent endeavors, we explore the use of decentralized identifiers, verifiable credentials, and blockchains that support SSI. We propose Self-Sovereign Identity Based Access Control (SSIBAC), an access control model for cross-organization identity management. SSIBAC leverages conventional access control models and blockchain technology to provide decentralized authentication, followed by centralized authorization. The access control process does not require storing user sensitive data. A prototype was implemented and evaluated, processing 55,000 access control requests per second with a latency of 3 seconds.

show abstract

“…The identity attributes can be stored offline and hashes of certificate are stored in the blockchain upon successful verification between claim-issuer and relaying party [31]. In [32], attribute certification solution for SSI has been provided using blockchain. The attribute certificate requests and certified attributes are centrally stored in a permissioned blockchain and linked to unique user pseudonym and managed through user wallet.…”

Section: B Identity Proofing and Attribute Assurancementioning

confidence: 99%

A Survey on Blockchain-based Identity Management and Decentralized Privacy for Personal Data

Gilani

Bertin

Hatin

et al. 2020

2020 2nd Conference on Blockchain Research &Amp; Applications for Innovative Networks and Services (BRAINS)

View full text Add to dashboard Cite

In the digital revolution, even secure communication between individuals, services and devices through centralized digital entities presents considerable risks. Service providers collect and store information that is used for data mining, profiling and exploitation without users' knowledge or consent. Having service providers continue to offer their centric solutions is inefficient in terms of duplication, has serious security lacunae and is cumbersome to the users. The Self-sovereign Identity (SSI) concept, which includes the individual's consolidated digital identity and verified attributes, enables the users of data to exert their ownership and gain insights from their data's usage. The authentication and verification of digital identity is essential to achieve the privacy and security of distributed digital identities. However, the current literature still lacks the comprehensive study on components of identity management as well as user privacy and data protection mechanisms in identity management architecture. In this paper, we provide a coherent view of the central concepts of SSI, including the components of identity proofing and authentication solutions for different SSI solutions. Firstly, we discussed an overview of Identity management approaches, introducing an architecture overview as well as the relevant actors in such a system and blockchain technology as solution for distributed user-centric identity. Then we analyzed the authentication and verification mechanisms in the context of digital identity. Finally, we discuss the existing solutions and point out the research gaps and elaborate challenges and trade-offs towards building a complete identity management system (IdMs).

show abstract

Federation of Attribute Providers for User Self-Sovereign Identity

Cited by 7 publications

References 0 publications

In Search of Self-Sovereign Identity Leveraging Blockchain Technology

In Search of Self-Sovereign Identity Leveraging Blockchain Technology

SSIBAC: Self-Sovereign Identity Based Access Control

A Survey on Blockchain-based Identity Management and Decentralized Privacy for Personal Data

Contact Info

Product

Resources

About