Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

reclaimID: Secure, Self-Sovereign Identities Using Name Systems and Attribute-Based Encryption

: Schanzenbach, M.; Bramm, G.; Schütte, J.


Institute of Electrical and Electronics Engineers -IEEE-:
17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2018. 12th IEEE International Conference on Big Data Science and Engineering, BigDataSE 2018. Proceedings : 31 July - 3 August 2018, New York, New York
Piscataway, NJ: IEEE, 2018
ISBN: 978-1-5386-4388-4
ISBN: 978-1-5386-4387-7
ISBN: 978-1-5386-4389-1
International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom) <17, 2018, New York/NY>
International Conference on Big Data Science and Engineering (BigDataSE) <12, 2018, New York/NY>
International Symposium on Security, Privacy and Trust in Internet of Things (SPTIoT) <2, 2018, New York/NY>
Conference Paper
Fraunhofer AISEC ()

In this paper we present reclaimID: An architecture that allows users to reclaim their digital identities by securely sharing identity attributes without the need for a centralised service provider. We propose a design where user attributes are stored in and shared over a name system under user-owned namespaces. Attributes are encrypted using attribute-based encryption (ABE), allowing the user to selectively authorize and revoke access of requesting parties to subsets of his attributes. We present an implementation based on the decentralised GNU Name System (GNS) in combination with ciphertext-policy ABE using type-1 pairings. To show the practicality of our implementation, we carried out experimental evaluations of selected implementation aspects including attribute resolution performance. Finally, we show that our design can be used as a standard OpenID Connect Identity Provider allowing our implementation to be integrated into standard-compliant services.