ATIB
- Identity management is a principle component of securing online services. In the advancement of traditional identity management patterns, the identity provider remained a Trusted Third Party (TTP). The service provider and the user need to trust a particular identity provider for correct attributes amongst other demands. This paradigm changed with the invention of blockchain-based Self-Sovereign Identity (SSI) solutions that primarily focus on the users. SSI reduces the functional scope of the identity provider to an attribute provider while enabling attribute aggregation. Besides that, the development of new protocols, disregarding established protocols and a significantly fragmented landscape of SSI solutions pose considerable challenges for an adoption by service providers. We propose an Attribute Trust-enhancing Identity Broker (ATIB) to leverage the potential of SSI for trust-enhancing attribute aggregation. Furthermore, ATIB abstracts from a dedicated SSI solution and offers standard protocols. Therefore, it facilitates theIdentity management is a principle component of securing online services. In the advancement of traditional identity management patterns, the identity provider remained a Trusted Third Party (TTP). The service provider and the user need to trust a particular identity provider for correct attributes amongst other demands. This paradigm changed with the invention of blockchain-based Self-Sovereign Identity (SSI) solutions that primarily focus on the users. SSI reduces the functional scope of the identity provider to an attribute provider while enabling attribute aggregation. Besides that, the development of new protocols, disregarding established protocols and a significantly fragmented landscape of SSI solutions pose considerable challenges for an adoption by service providers. We propose an Attribute Trust-enhancing Identity Broker (ATIB) to leverage the potential of SSI for trust-enhancing attribute aggregation. Furthermore, ATIB abstracts from a dedicated SSI solution and offers standard protocols. Therefore, it facilitates the adoption by service providers. Despite the brokered integration approach, we show that ATIB provides a high security posture. Additionally, ATIB does not compromise the ten foundational SSI principles for the users.…
Verfasserangaben: | Andreas GrünerORCiDGND, Alexander MühleORCiDGND, Christoph MeinelORCiDGND |
---|---|
DOI: | https://doi.org/10.1109/ACCESS.2021.3116095 |
ISSN: | 2169-3536 |
Titel des übergeordneten Werks (Englisch): | IEEE access : practical research, open solutions / Institute of Electrical and Electronics Engineers |
Untertitel (Englisch): | Design and evaluation of an architecture for brokered self-sovereign identity integration and trust-enhancing attribute aggregation for service provider |
Verlag: | Institute of Electrical and Electronics Engineers |
Verlagsort: | New York, NY |
Publikationstyp: | Wissenschaftlicher Artikel |
Sprache: | Englisch |
Datum der Erstveröffentlichung: | 28.09.2021 |
Erscheinungsjahr: | 2021 |
Datum der Freischaltung: | 25.01.2023 |
Freies Schlagwort / Tag: | Attribute aggregation; Authentication; Blockchains; Identity management systems; Licenses; Privacy; Protocols; Security; attribute assurance; digital identity; identity broker; self-sovereign identity; trust model |
Band: | 9 |
Seitenanzahl: | 18 |
Erste Seite: | 138553 |
Letzte Seite: | 138570 |
Organisationseinheiten: | An-Institute / Hasso-Plattner-Institut für Digital Engineering gGmbH |
DDC-Klassifikation: | 0 Informatik, Informationswissenschaft, allgemeine Werke / 00 Informatik, Wissen, Systeme / 004 Datenverarbeitung; Informatik |
Peer Review: | Referiert |
Publikationsweg: | Open Access / Gold Open-Access |
DOAJ gelistet | |
Lizenz (Deutsch): | CC-BY - Namensnennung 4.0 International |