Improved Identity Management with Verifiable Credentials and FIDO

Chadwick, David; Laborde, Romain; Oglaza, Arnaud; Venant, Rémi; Wazan, Samer; Nijjar, Manreet

doi:10.1109/mcomstd.001.1900020

Cited by 35 publications

(23 citation statements)

References 3 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…At present, there are only few academic papers on the application of SSI in business scenarios. They include the application of SSI in "know-yourcustomer" processes in banking [7], access to public health services [8], remote management of industrial equipment [3], payback programmes in retail [9], student exchange [10], e-petitions [11], assigning medical information to persons without regular identity, e.g. to fight Covid-19 [12].…”

Section: Motivationmentioning

confidence: 99%

“…• User data does not need to be stored at the service provider [7] • Identity issuer is not involved in identity access, verification, and resolution [7], [8], [10] • Identity data integrity and availability is ensured [7] • Privacy of users is ensured [7]- [12] • Users can trade their data for rewards [9] • Users can link different identity attributes from various issuers on their own [10] • Anonymous participation in transactions [11], [12] Besides these, also critical issues were raised that limit the adoption of SSI:…”

Section: Application Of Self-sovereign Identities In Business Scenariosmentioning

confidence: 99%

See 1 more Smart Citation

Exploring Potential Impacts of Self-Sovereign Identity on Smart Service Systems

Richter

Anke

2021

Bus. Inf. Sys.

View full text Add to dashboard Cite

Self-sovereign identity (SSI) is a new paradigm, which puts users back in control of their own digital identity. This does not only strengthen the position of the users but implies new interaction schemes that may improve interoperability and usability. Smart services systems enable the integration of resources and activities and use smart products as boundary objects. As such systems typically involve digital interactions between multiple actors, it can be assumed that utilising SSI has a positive impact on them. To investigate how these potential improvements manifest themselves, we investigate electric vehicle charging as example of a smart service system. At the core of our conceptual analysis is the service process, which we extract from a reference model. Based on a SWOT analysis, we identify areas for transformation and derive an SSI-enabled interaction model for an electric vehicle charging service. The evaluation of the new process shows that SSI can reduce complexity of integration with partners and can provide a better customer experience through simplified registration and authentication. Moreover, SSI might even lead to the disintermediation of actors in the service system. Although SSI is still emerging, our findings underline its relevance as a mechanism to establish trust in smart service systems through the seamless and standardised integration of digital identities for humans, organisations, and things.

show abstract

Section: Motivationmentioning

confidence: 99%

Section: Application Of Self-sovereign Identities In Business Scenariosmentioning

confidence: 99%

Exploring Potential Impacts of Self-Sovereign Identity on Smart Service Systems

Richter

Anke

2021

Bus. Inf. Sys.

View full text Add to dashboard Cite

show abstract

“…Although the W3C Verifiable Credential (VC) data model specification [9] is relatively recent and still evolving, it has already received a spike of attention. Works like [3,7] propose the usage of Verifiable Credentials empowered with other technologies like biometric authentication with FIDO. These solutions, however, are not optimal for privacy heavy scenarios, as they have problems achieving minimal disclosure and unlinkability.…”

Section: Related Workmentioning

confidence: 99%

“…We define a schema for validating our predicate data model using the tools of the JSON core schemas 3 . There are multiple ways to define a schema that fulfils our objective, like trying the "brute force' approach of defining a schema for each possibility and tying them with the "anyOf" keyword.…”

Section: Towards a Data Model For P-abcs In Verifiable Credentialsmentioning

confidence: 99%

See 1 more Smart Citation

Towards a standardized model for privacy-preserving Verifiable Credentials

García-Rodríguez

Moreno

Bernabé

et al. 2021

Proceedings of the 16th International Conference on Availability, Reliability and Security

View full text Add to dashboard Cite

Lack of standardization and the subsequent difficulty of integration has been one of the main reasons for the scarce adoption of privacy-preserving Attribute-Based Credentials (p-ABC). Integration with the W3C's Verifiable Credentials (VC) specification would help by encouraging homogenization between different p-ABC schemes and bringing them all closer to other digital credentials.What is more, p-ABCs can help to solve privacy issues that have been identified in applications of VCs to use cases like vaccination passports. However, there has not been much work focusing on the collaboration between p-ABCs and VCs. We address this topic by establishing initial steps for extra standardization of elements that will help with the integration of p-ABCs into the standard. Namely, we propose a data model for predicates, which are a staple of p-ABC systems, and tools and guidelines to ease the adaptation process like a validation meta-schema. These ideas have been applied in a proof-of-concept implementation of the OLYMPUS distributed p-ABC scheme paired with serialization following the VC data model. CCS Concepts: • Security and privacy → Pseudonymity, anonymity and untraceability.

show abstract

Tokenization and Regulatory Compliance for Art and Collectibles Markets: From Regulators’ Demands for Transparency to Investors’ Demands for Privacy

Barbereau

Sedlmeir

Smethurst

et al. 2022

Blockchains and the Token Economy

View full text Add to dashboard Cite

Art and collectibles markets tend to involve lower liquidity and higher fees than public equity markets. Distributed ledger technology can tokenize artworks and collectibles, so that claims to these assets can be exchanged digitally without intermediaries. Tokenization offers investors access to a global market plus a digitized paper trail, as well as new options for the fractional ownership of artworks, art-collateralized loans, and yield-bearing art assets. The main challenge for tokenization researchers and platform developers is to simultaneously satisfy regulators’ demands for transparency and auditability as well as art investors’ demands for privacy. New technological solutions are required that enable market participants to disclose the absolute minimum amount of information that is demanded by regulators. We investigate how distributed ledger technology, cryptography, and digital identity management can help address this challenge.

show abstract

Improved Identity Management with Verifiable Credentials and FIDO

Abstract: The version in the Kent Academic Repository may differ from the final published version. Users are advised to check http://kar.kent.ac.uk for the status of the paper. Users should always cite the published version of record.

Cited by 35 publications

References 3 publications

Exploring Potential Impacts of Self-Sovereign Identity on Smart Service Systems

Exploring Potential Impacts of Self-Sovereign Identity on Smart Service Systems

Towards a standardized model for privacy-preserving Verifiable Credentials

Tokenization and Regulatory Compliance for Art and Collectibles Markets: From Regulators’ Demands for Transparency to Investors’ Demands for Privacy

Contact Info

Product

Resources

About