A-PoA: Anonymous proof of authorization for decentralized identity management

Jan Lauinger, Jens Ernstberger, Emanuel Regnath, Mohammad Hamad, Sebastian Steinhorst

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

5 Scopus citations

Abstract

Self-sovereign Identity Management (SSIM) pro-motes self-control of credentials without relying on external administration. However, the state-of-the-art SSIM based on Decentralized Identifiers and Verifiable Credentials (VCs) defined by the World Wide Web Consortium does not enable credential holders to verify whether a Credential Issuing Authority (CIA) legitimately issued a credential.As a remedy, our work constructs a secure authentication protocol, called A-PoA, to provide decentralized and anonymous authorization of CIAs. We leverage a cryptographic accumulator to enable the Root Authority (registering a Credential Schema) with the ability to authorize a CIA (registering a Credential Definition) to issue a credential. The proof of accumulator membership relies on a non-interactive zero-knowledge proof. This allows a credential holder or validator node to verify the validity of a CIA, while the CIA remains anonymous. Our security analysis shows the integrity and confidentiality of our protocol against hostile network participants and our experimental evaluation shows constant verification times independent of the number of authenticated CIAs. Hence, A-PoA introduces the missing building block to develop SSIM-capable and VC-compatible ecosystems acting as a drop-in replacement for traditional Public Key Infrastructure schemes.

Original languageEnglish
Title of host publicationIEEE International Conference on Blockchain and Cryptocurrency, ICBC 2021
PublisherInstitute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)9781665435789
DOIs
StatePublished - 3 May 2021
Event3rd IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2021 - Virtual, Sydney, Australia
Duration: 3 May 20216 May 2021

Publication series

NameIEEE International Conference on Blockchain and Cryptocurrency, ICBC 2021

Conference

Conference3rd IEEE International Conference on Blockchain and Cryptocurrency, ICBC 2021
Country/TerritoryAustralia
CityVirtual, Sydney
Period3/05/216/05/21

Keywords

  • Anonymous Credentials
  • Authentication
  • Authorization
  • Identity Trust Management
  • Non-interactive Zero-Knowledge Proof
  • RSA-Accumulators
  • Verifiable Credentials

Fingerprint

Dive into the research topics of 'A-PoA: Anonymous proof of authorization for decentralized identity management'. Together they form a unique fingerprint.

Cite this