RAIAP: renewable authentication on isolated anonymous profiles A GDPR compliant self-sovereign architecture for distributed systems

【Author】 Pedrosa, Micael; Zuquete, Andre; Costa, Carlos

【Source】PEER-TO-PEER NETWORKING AND APPLICATIONS

【影响因子】3.488

【Abstract】Implementing pseudonymity, key-management, non-repudiation and data minimisation features in isolated procedures is trivial. However, integrating all of them in one consistent architecture has several challenges to tackle. This work proposes data structures to represent Self-Sovereign Identities and to handle those features in a consolidated architecture. Key-management is constructed using secret sharing principles, capable of recovering from a lost or compromised key to a new one without losing track of the original account. Pseudonymity and data minimisation is established using anonymous profiles, showing different views of the same identity. Non-repudiation is contemplated in the profile disclosure process. Profiles are protected against tampering with the use of digital signatures and blockchain cryptographic constructions. All profiles and registries are controlled with a single asymmetric key pair that can be provided by a smart card. Flexible structures are defined that can be used to register claims, attestations, authorisation grants, user consents, or any other activities. All definitions take into consideration the rules of the General Data Protection Regulation (GDPR).

【Keywords】GDPR; Pseudonymity; Key-management; Non-repudiation; Data-minimisation

【发表时间】2020 SEP

【收录时间】2022-01-02

【文献类型】

【主题类别】

--