Logo des Repositoriums

P350 - Open Identity Summit 2024

https://dl.gi.de/handle/20.500.12116/44088
Auflistung nach:

Auflistung P350 - Open Identity Summit 2024 nach Autor:in "Bochnia, Ricardo"

1 - 2 von 2
  • Konferenzbeitrag
    Fulfilling Principles of Self-Sovereign Identity: Towards a Conformity Assessment Approach for Human Wallets
    (Open Identity Summit 2024, 2024) Doege, Dustin; Bochnia, Ricardo; Anke, Jürgen
    Self-Sovereign Identity (SSI) represents a paradigm shift toward user-centric digital identity management by emphasizing principles such as user control and privacy. However, there is a notable gap in assessing how these principles are implemented within existing SSI products despite the ongoing research interest in the theoretical principles of SSI. Our research introduces a structured conformity assessment approach to bridge the gap between theoretical ideals and practical implementation. This approach enables the assessment of SSI products based on fulfilling requirements derived from SSI principles. This provides developers and policymakers with a tool to assess the adherence of SSI products to the fundamental principles. Thus, it may serve developers as a design guideline and policymakers as a basis for certification processes.
  • Konferenzbeitrag
    Gaining Back the Control Over Identity Attributes: Access Management Systems Based on Self-Sovereign Identity
    (Open Identity Summit 2024, 2024) Keil, Kenneth-Raphael; Bochnia, Ricardo; Gudymenko, Ivan; Köpsell, Stefan; Anke, Jürgen
    Digital employee cards used for door access control offer benefits, but concerns about traceability, profiling and performance monitoring have led to opposition from workers’ councils and employees. However, the emerging identity management approach, Self-Sovereign Identity (SSI), can address these concerns by giving control over disclosed identity attributes back to the end user. This paper analyzes a real-world access management scenario in a hospital building and applies the SSI paradigm to address the identified issues. The analysis assumes a semi-honest observing attacker sniffing on the payload and the transport layer. The SSI-based proof of concept is shown to have a high potential to protect against traceability and profiling. However, in addition to the careful technical implementation of SSI, it is important to consider non-technical factors such as governance for a holistic solution. We propose potential strategies to further minimize privacy risks associated with SSI-based employee identity management using mediators.