论文信息 - An analysis of digital identity management systems - a two-mapping view

An analysis of digital identity management systems - a two-mapping view

Digital identity is essential to almost all information systems. This paper provides a new perspective for reducing digital identity management systems (DIMS) to two mappings, the core operations on the mappings, and the trust model built around the mappings. Using this two-mapping view, we derive criteria for determining whether a DIMS solution is self-sovereign. We also compare decentralized identity management solutions with the traditional centralized identity management solutions. From the comparison and analysis, we have the following findings. The differences between decentralized and centralized solutions stem from the trust model differences which dictate storage scheme differences, and therefore other operation-level differences. With a more trustless trust model and storage scheme, current decentralized solutions can be promising candidates for self-sovereign DIMS. Design considerations and certain limitations of the current decentralized solutions are analyzed based on the two-mapping view as well, which can provide useful directions to further study.

[1] Fabien A. P. Petitcolas,et al. A First Look at Identity Management Schemes on the Blockchain , 2018, IEEE Security & Privacy.

[2] Christoph Meinel,et al. A Survey on Essential Components of a Self-Sovereign Identity , 2018, Comput. Sci. Rev..

[3] Jude C. Nelson,et al. Blockstack : A New Decentralized Internet , 2017 .

[4] Peter Mell,et al. A Taxonomic Approach to Understanding Emerging Blockchain Identity Management Systems , 2019, ArXiv.

[5] Simson L. Garfinkel,et al. PGP: Pretty Good Privacy , 1994 .

[6] Jim Groom,et al. The Path to Self-Sovereign Identity , 2017 .

[7] J. Doug Tygar,et al. Why Johnny Can't Encrypt: A Usability Evaluation of PGP 5.0 , 1999, USENIX Security Symposium.

[8] P. Thompson. Digital Identity , 2003 .