A Universal System for OpenID Connect Sign-ins with Verifiable Credentials and Cross-Device Flow

Felix Hoops; Florian Matthes

doi:10.1109/ICBC59979.2024.10634364

A Universal System for OpenID Connect Sign-ins with Verifiable Credentials and Cross-Device Flow

Felix Hoops, Florian Matthes

Informatik 19 - Lehrstuhl für Software Engineering for Business Information Systems

Publikation: Beitrag in Buch/Bericht/Konferenzband › Konferenzbeitrag › Begutachtung

Abstract

Self-Sovereign Identity (SSI), as a new and promising identity management paradigm, needs mechanisms that can ease a gradual transition of existing services and developers towards it. Systems that bridge the gap between SSI and established identity and access management have been proposed but still lack adoption. We propose a comparatively simple system that enables SSI-based sign-ins for services that support the widespread OpenID Connect or OAuth 2.0 protocols. Its handling of claims is highly configurable through a single policy and designed for cross-device authentication flows involving a smartphone identity wallet. We evaluate our design by implementing and successfully integrating it with existing interfacing components.

Originalsprache	Englisch
Titel	2024 IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024
Herausgeber (Verlag)	Institute of Electrical and Electronics Engineers Inc.
Seiten	296-298
Seitenumfang	3
ISBN (elektronisch)	9798350316742
DOIs	https://doi.org/10.1109/ICBC59979.2024.10634364
Publikationsstatus	Veröffentlicht - 2024
Veranstaltung	6th IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024 - Dublin, Irland Dauer: 27 Mai 2024 → 31 Mai 2024

Publikationsreihe

Name	2024 IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024

Konferenz

Konferenz	6th IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024
Land/Gebiet	Irland
Ort	Dublin
Zeitraum	27/05/24 → 31/05/24

Zugriff auf Dokument

10.1109/ICBC59979.2024.10634364

Andere Dateien und Links

Verknüpfung zur Publikation in Scopus

Dieses zitieren

Hoops, F., & Matthes, F. (2024). A Universal System for OpenID Connect Sign-ins with Verifiable Credentials and Cross-Device Flow. in 2024 IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024 (S. 296-298). (2024 IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ICBC59979.2024.10634364

@inproceedings{46500fd5eb284fa58ddcf36358d6ee22,

title = "A Universal System for OpenID Connect Sign-ins with Verifiable Credentials and Cross-Device Flow",

abstract = "Self-Sovereign Identity (SSI), as a new and promising identity management paradigm, needs mechanisms that can ease a gradual transition of existing services and developers towards it. Systems that bridge the gap between SSI and established identity and access management have been proposed but still lack adoption. We propose a comparatively simple system that enables SSI-based sign-ins for services that support the widespread OpenID Connect or OAuth 2.0 protocols. Its handling of claims is highly configurable through a single policy and designed for cross-device authentication flows involving a smartphone identity wallet. We evaluate our design by implementing and successfully integrating it with existing interfacing components.",

keywords = "Identity and Access Management, OAuth, OpenID Connect, Self-Sovereign Identity, Verifiable Credentials",

author = "Felix Hoops and Florian Matthes",

note = "Publisher Copyright: {\textcopyright} 2024 IEEE.; 6th IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024 ; Conference date: 27-05-2024 Through 31-05-2024",

year = "2024",

doi = "10.1109/ICBC59979.2024.10634364",

language = "English",

series = "2024 IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "296--298",

booktitle = "2024 IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024",

}

Hoops, F & Matthes, F 2024, A Universal System for OpenID Connect Sign-ins with Verifiable Credentials and Cross-Device Flow. in 2024 IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024. 2024 IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024, Institute of Electrical and Electronics Engineers Inc., S. 296-298, 6th IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024, Dublin, Irland, 27/05/24. https://doi.org/10.1109/ICBC59979.2024.10634364

A Universal System for OpenID Connect Sign-ins with Verifiable Credentials and Cross-Device Flow. / Hoops, Felix ; Matthes, Florian.
2024 IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024. Institute of Electrical and Electronics Engineers Inc., 2024. S. 296-298 (2024 IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024).

Publikation: Beitrag in Buch/Bericht/Konferenzband › Konferenzbeitrag › Begutachtung

TY - GEN

T1 - A Universal System for OpenID Connect Sign-ins with Verifiable Credentials and Cross-Device Flow

AU - Hoops, Felix

AU - Matthes, Florian

PY - 2024

Y1 - 2024

N2 - Self-Sovereign Identity (SSI), as a new and promising identity management paradigm, needs mechanisms that can ease a gradual transition of existing services and developers towards it. Systems that bridge the gap between SSI and established identity and access management have been proposed but still lack adoption. We propose a comparatively simple system that enables SSI-based sign-ins for services that support the widespread OpenID Connect or OAuth 2.0 protocols. Its handling of claims is highly configurable through a single policy and designed for cross-device authentication flows involving a smartphone identity wallet. We evaluate our design by implementing and successfully integrating it with existing interfacing components.

AB - Self-Sovereign Identity (SSI), as a new and promising identity management paradigm, needs mechanisms that can ease a gradual transition of existing services and developers towards it. Systems that bridge the gap between SSI and established identity and access management have been proposed but still lack adoption. We propose a comparatively simple system that enables SSI-based sign-ins for services that support the widespread OpenID Connect or OAuth 2.0 protocols. Its handling of claims is highly configurable through a single policy and designed for cross-device authentication flows involving a smartphone identity wallet. We evaluate our design by implementing and successfully integrating it with existing interfacing components.

KW - Identity and Access Management

KW - OAuth

KW - OpenID Connect

KW - Self-Sovereign Identity

KW - Verifiable Credentials

UR - http://www.scopus.com/inward/record.url?scp=85203532527&partnerID=8YFLogxK

U2 - 10.1109/ICBC59979.2024.10634364

DO - 10.1109/ICBC59979.2024.10634364

M3 - Conference contribution

AN - SCOPUS:85203532527

T3 - 2024 IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024

SP - 296

EP - 298

BT - 2024 IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 6th IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024

Y2 - 27 May 2024 through 31 May 2024

ER -

Hoops F , Matthes F. A Universal System for OpenID Connect Sign-ins with Verifiable Credentials and Cross-Device Flow. in 2024 IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024. Institute of Electrical and Electronics Engineers Inc. 2024. S. 296-298. (2024 IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2024). doi: 10.1109/ICBC59979.2024.10634364

A Universal System for OpenID Connect Sign-ins with Verifiable Credentials and Cross-Device Flow

Abstract

Publikationsreihe

Konferenz

Zugriff auf Dokument

Andere Dateien und Links

Fingerprint

Dieses zitieren