ATIB: Design and Evaluation of an Architecture for Brokered Self-Sovereign Identity Integration and Trust-Enhancing Attribute Aggregation for Service Provider
Reads0
Chats0
TLDR
In this article, an Attribute Trust-enhancing Identity Broker (ATIB) is proposed to leverage the potential of blockchain-based SSI for trustenhancing attribute aggregation.Abstract:
Identity management is a principle component of securing online services. In the advancement of traditional identity management patterns, the identity provider remained a Trusted Third Party (TTP). The service provider and the user need to trust a particular identity provider for correct attributes amongst other demands. This paradigm changed with the invention of blockchain-based Self-Sovereign Identity (SSI) solutions that primarily focus on the users. SSI reduces the functional scope of the identity provider to an attribute provider while enabling attribute aggregation. Besides that, the development of new protocols, disregarding established protocols and a significantly fragmented landscape of SSI solutions pose considerable challenges for an adoption by service providers. We propose an Attribute Trust-enhancing Identity Broker (ATIB) to leverage the potential of SSI for trust-enhancing attribute aggregation. Furthermore, ATIB abstracts from a dedicated SSI solution and offers standard protocols. Therefore, it facilitates the adoption by service providers. Despite the brokered integration approach, we show that ATIB provides a high security posture. Additionally, ATIB does not compromise the ten foundational SSI principles for the users.read more
Citations
More filters
Journal ArticleDOI
Towards Improving Privacy and Security of Identity Management Systems Using Blockchain Technology: A Systematic Review
Haifa Alanzi,Mohammad Alkhatib +1 more
TL;DR: In this article , the authors present a systematic literature review and analysis for recently proposed solutions that adopt the traditional centralized approach, as well as solutions based on blockchain technology, and highlight the research gaps and open issues related to IDMS and users' privacy.
Journal ArticleDOI
Self-Sovereign Identity: A Systematic Review, Mapping and Taxonomy
TL;DR: Self-Sovereign Identity (SSI) as discussed by the authors is an identity model centered on the user, where the user maintains and controls their data in this model and can share portions of their personal information with service providers, significantly improving user privacy.
Journal ArticleDOI
Reference Service Model Framework for Identity Management
TL;DR: The identity management service model framework (IMSMF) as mentioned in this paper is a reference service model for different I&AM flavors by utilizing modern enterprise architecture management using the framework ArchiMate.
Journal ArticleDOI
Reference Service Model Framework for Identity Management
TL;DR: The identity management service model framework (IMSMF) as discussed by the authors is a reference service model for different I&AM flavors designed with the open enterprise modeling language ArchiMate.
Proceedings ArticleDOI
Elesto Protocol: Self-Sovereign Identity System
TL;DR: The Elesto protocol as mentioned in this paper is an open-source, public permissionless blockchain-based implementation that uses self-sovereign identity (SSI) for identity management for users, organizations, and other entities.
References
More filters
Journal ArticleDOI
A survey of trust and reputation systems for online service provision
TL;DR: Trust and reputation systems represent a significant trend in decision support for Internet mediated service provision as mentioned in this paper, where the basic idea is to let parties rate each other, for example after the completion of a transaction, and use the aggregated ratings about a given party to derive a trust or reputation score.
Ethereum: A Secure Decentralised Generalised Transaction Ledger
TL;DR: Ethereum as mentioned in this paper is a transactional singleton machine with shared state, which can be seen as a simple application on a decentralised, but singleton, compute resource, and it provides a plurality of resources, each with a distinct state and operating code but able to interact through a message-passing framework with others.
Journal ArticleDOI
Review on Computational Trust and Reputation Models
Jordi Sabater,Carles Sierra +1 more
TL;DR: This review wants to offer a panoramic view on current computational trust and reputation models in virtual societies.
Journal ArticleDOI
A survey on essential components of a self-sovereign identity
TL;DR: In this paper, the authors provide an overview of the Self-Sovereign Identity (SSI) concept, focusing on four different components that were identified as essential to the architecture.
Journal ArticleDOI
Bitcoin's academic pedigree
Arvind Narayanan,Jeremy Clark +1 more
TL;DR: Both practitioners and academics would do well to revisit old ideas to glean insights for present systems, as Bitcoin was unusual and successful not because it was on the cutting edge of research on any of its components, but because it combined old ideas from many previously unrelated fields.