ATIB
- Identity management is a principle component of securing online services. In the advancement of traditional identity management patterns, the identity provider remained a Trusted Third Party (TTP). The service provider and the user need to trust a particular identity provider for correct attributes amongst other demands. This paradigm changed with the invention of blockchain-based Self-Sovereign Identity (SSI) solutions that primarily focus on the users. SSI reduces the functional scope of the identity provider to an attribute provider while enabling attribute aggregation. Besides that, the development of new protocols, disregarding established protocols and a significantly fragmented landscape of SSI solutions pose considerable challenges for an adoption by service providers. We propose an Attribute Trust-enhancing Identity Broker (ATIB) to leverage the potential of SSI for trust-enhancing attribute aggregation. Furthermore, ATIB abstracts from a dedicated SSI solution and offers standard protocols. Therefore, it facilitates theIdentity management is a principle component of securing online services. In the advancement of traditional identity management patterns, the identity provider remained a Trusted Third Party (TTP). The service provider and the user need to trust a particular identity provider for correct attributes amongst other demands. This paradigm changed with the invention of blockchain-based Self-Sovereign Identity (SSI) solutions that primarily focus on the users. SSI reduces the functional scope of the identity provider to an attribute provider while enabling attribute aggregation. Besides that, the development of new protocols, disregarding established protocols and a significantly fragmented landscape of SSI solutions pose considerable challenges for an adoption by service providers. We propose an Attribute Trust-enhancing Identity Broker (ATIB) to leverage the potential of SSI for trust-enhancing attribute aggregation. Furthermore, ATIB abstracts from a dedicated SSI solution and offers standard protocols. Therefore, it facilitates the adoption by service providers. Despite the brokered integration approach, we show that ATIB provides a high security posture. Additionally, ATIB does not compromise the ten foundational SSI principles for the users.…
| Author details: | Andreas GrünerORCiDGND, Alexander MühleORCiDGND, Christoph MeinelORCiDGND |
|---|---|
| DOI: | https://doi.org/10.1109/ACCESS.2021.3116095 |
| ISSN: | 2169-3536 |
| Title of parent work (English): | IEEE access : practical research, open solutions / Institute of Electrical and Electronics Engineers |
| Subtitle (English): | Design and evaluation of an architecture for brokered self-sovereign identity integration and trust-enhancing attribute aggregation for service provider |
| Publisher: | Institute of Electrical and Electronics Engineers |
| Place of publishing: | New York, NY |
| Publication type: | Article |
| Language: | English |
| Date of first publication: | 2021/09/28 |
| Publication year: | 2021 |
| Release date: | 2023/01/25 |
| Tag: | Attribute aggregation; Authentication; Blockchains; Identity management systems; Licenses; Privacy; Protocols; Security; attribute assurance; digital identity; identity broker; self-sovereign identity; trust model |
| Volume: | 9 |
| Number of pages: | 18 |
| First page: | 138553 |
| Last Page: | 138570 |
| Organizational units: | An-Institute / Hasso-Plattner-Institut für Digital Engineering gGmbH |
| DDC classification: | 0 Informatik, Informationswissenschaft, allgemeine Werke / 00 Informatik, Wissen, Systeme / 004 Datenverarbeitung; Informatik |
| Peer review: | Referiert |
| Publishing method: | Open Access / Gold Open-Access |
| DOAJ gelistet | |
| License (German): |  CC-BY - Namensnennung 4.0 International |
