- 41 views
- 209 downloads
Enhancing the security and privacy of self-sovereign identites on hyperledger indy blockchain
-
- Author(s) / Creator(s)
-
Self-sovereign identities provide user autonomy and immutability to individual identities and full control to their identity owners. The immutability and control are possible by implementing identities in a decentralized manner on blockchains that are specially designed for identity operations such as Hyperledger Indy. As with any type of identity, self-sovereign identities too deal with Personally Identifiable Information (PII) of the identity holders and comes with the usual risks of privacy and security. This study examined certain scenarios of personal data disclosure via credential exchanges between such identities and risks of man-in-the-middle attacks in the blockchain based identity system Hyperledger Indy. On the basis of the findings, the paper proposes the following enhancements: 1) A novel attribute sensitivity score model for self-sovereign identity agents to ascertain the sensitivity of attributes shared in credential exchanges 2) A method of mitigating man-in-the-middle attacks between peer self-sovereign identities and 3) A novel way of determining the reputation of a credential issuer based on the number of issued credentials in a window period, which is then utilized to calculate an overall confidence level score for the issuer.
-
- Date created
- 2020
-
- Subjects / Keywords
-
- Type of Item
- Research Material