Distributed-Ledger-based Authentication with Decentralized Identifiers and Verifiable Credentials

Authentication with username and password is becoming an inconvenient process for the user. End users typically have little control over their personal privacy, and data breaches effecting millions of users have already happened several times. We have implemented a proof of concept decentralized OpenID Connect Provider by marrying it with Self-Sovereign Identity, which gives users the freedom to choose from a very large pool of identity providers instead of just a select few corporations, thus enabling the democratization of the highly centralized digital identity landscape. Furthermore, we propose a verifiable credential powered decentralized Public Key Infrastructure using distributed ledger technologies, which creates a straightforward and verifiable way for retrieving digital certificates.

[1]  C. Stathakopoulou,et al.  Mir-BFT: High-Throughput BFT for Blockchains , 2019, ArXiv.

[2]  Kelley L. Dempsey,et al.  Information Security Continuous Monitoring for Federal Information Systems and Organizations , 2011 .

[3]  Muneeb Ali,et al.  Blockstack: A Global Naming and Storage System Secured by Blockchains , 2016, USENIX Annual Technical Conference.

[4]  Raph Levien,et al.  MIME Security with OpenPGP , 2001, RFC.

[5]  Christoph Meinel,et al.  An Integration Architecture to Enable Service Providers for Self-sovereign Identity , 2019, 2019 IEEE 18th International Symposium on Network Computing and Applications (NCA).

[6]  Patrick Stewin,et al.  Elektrotechnik und Informatik SMS-based One-Time Passwords : Attacks and Defense , 2014 .

[7]  Michael B. Jones,et al.  The OAuth 2.0 Authorization Framework: Bearer Token Usage , 2012, RFC.

[8]  Carlisle M. Adams,et al.  X.509 Internet Public Key Infrastructure Online Certificate Status Protocol - OCSP , 1999, RFC.

[9]  Anders Henten,et al.  Business Models in Social Networking , 2009 .

[10]  Adrienne Porter Felt,et al.  Does Certificate Transparency Break the Web? Measuring Adoption and Error Rate , 2019, 2019 IEEE Symposium on Security and Privacy (SP).

[11]  Elisa Bertino,et al.  Decentralized Public Key Infrastructure for Internet-of-Things , 2018, MILCOM 2018 - 2018 IEEE Military Communications Conference (MILCOM).

[12]  Karen A. Scarfone,et al.  Guide to Industrial Control Systems (ICS) Security , 2015 .