The interest in Self-Sovereign Identity(SSI)in research,industry,and governments is rapidly increasing.SSI is a paradigm where users hold their identity and credentials issued by authorized entities.SSI is revolutioni...The interest in Self-Sovereign Identity(SSI)in research,industry,and governments is rapidly increasing.SSI is a paradigm where users hold their identity and credentials issued by authorized entities.SSI is revolutionizing the concept of digital identity and enabling the definition of a trust framework wherein a service provider(verifier)validates the claims presented by a user(holder)for accessing services.However,current SSI solutions primarily focus on the presentation and verification of claims,overlooking a dual aspect:ensuring that the verifier is authorized to access the holder’s claims.Addressing this gap,this paper introduces an innovative SSI-based solution that integrates decentralized wallets with Ciphertext-Policy Attribute-Based Proxy Re-Encryption(CP-ABPRE).This combination effectively addresses the challenge of verifier authorization.Our solution,implemented on the Ethereum platform,enhances accountability by notarizing key operations through a smart contract.This paper also offers a prototype demonstrating the practicality of the proposed approach.Furthermore,it provides an extensive evaluation of the solution’s performance,emphasizing its feasibility and efficiency in real-world applications.展开更多
基金supported by the project STRIDE included in the Spoke 5(Cryptography and Distributed Systems Security)of the Re-search and Innovation Program PE00000014-H73C22000880001,“SE-curity and RIghts in the CyberSpace(SERICS)”,under the National Recovery and Resilience Plan,funded by the European Union,NextGen-erationEU.
文摘The interest in Self-Sovereign Identity(SSI)in research,industry,and governments is rapidly increasing.SSI is a paradigm where users hold their identity and credentials issued by authorized entities.SSI is revolutionizing the concept of digital identity and enabling the definition of a trust framework wherein a service provider(verifier)validates the claims presented by a user(holder)for accessing services.However,current SSI solutions primarily focus on the presentation and verification of claims,overlooking a dual aspect:ensuring that the verifier is authorized to access the holder’s claims.Addressing this gap,this paper introduces an innovative SSI-based solution that integrates decentralized wallets with Ciphertext-Policy Attribute-Based Proxy Re-Encryption(CP-ABPRE).This combination effectively addresses the challenge of verifier authorization.Our solution,implemented on the Ethereum platform,enhances accountability by notarizing key operations through a smart contract.This paper also offers a prototype demonstrating the practicality of the proposed approach.Furthermore,it provides an extensive evaluation of the solution’s performance,emphasizing its feasibility and efficiency in real-world applications.
