Conference paper Open Access

Disposable Yet Official Identities (DYOI) for Privacy-Preserving System Design - The case of COVID-19 digital document verification and credential-based access control in ad hoc outdoor and indoor settings (and beyond)

Petros Kavassalis; Nikos Triantafyllou; Panagiotis Georgakopoulos; Antonis Stasis; Rob van Kranenburg


Dublin Core Export

<?xml version='1.0' encoding='utf-8'?>
<oai_dc:dc xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:oai_dc="http://www.openarchives.org/OAI/2.0/oai_dc/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://www.openarchives.org/OAI/2.0/oai_dc/ http://www.openarchives.org/OAI/2.0/oai_dc.xsd">
  <dc:creator>Petros Kavassalis</dc:creator>
  <dc:creator>Nikos Triantafyllou</dc:creator>
  <dc:creator>Panagiotis Georgakopoulos</dc:creator>
  <dc:creator>Antonis Stasis</dc:creator>
  <dc:creator>Rob van Kranenburg</dc:creator>
  <dc:date>2020-09-06</dc:date>
  <dc:description>In this paper we report on the design of a service system to endow next-generation COVID-19 mobile applications with the capacity: a) to instantly manage and verify a wide range of possible COVID-19 digital documents (circulation attestations, work or travel permits based on approved COVID-19 tests, vaccination certificates, etc.) and, b) to provide credential-based access control, especially in cases where the Verifier is not a web entity but a human agent with a smartphone, or an IoT device -- mainly in ad hoc outdoor and indoor settings. The system has been designed as a response to the specific needs of a health emergency situation, but it may have a broader application in different cased and areas of control (such as airport and train stations checking points and board controls), where the verification process must exclude the possibility of a physical interaction between the controller and the subject of control, by maintaining a “safe distance” between them and while preserving a certain privacy for the subject of control. Our approach levers the potential of Disposable Identities, Self-Sovereign Identities technologies and Verifiable Credentials (VCs) to enable digital document verification and credential-based access control in ad hoc outdoor and indoor settings (and beyond). Towards this, we specifically introduce the concept of “Derivative” (i.e., transcoded/contextual) Verifiable Credentials. A Derivative VC is a derived bond contract guaranteeing the validity and ownership over the underlying contracts (VCs) whose: a) usability is restricted in a very specific context (that of the “local” and time-limited interaction between a Subject and a Service Provider) and, b) linking table points only to a specific “Pairwise DID”.</dc:description>
  <dc:description>This research has received partial funding from the European Commission (SEAL project funded by CEF Grant Agreement No INEA/CEF/ICT/A2018/1633170 &amp; NGI Forward project funded by H2020 Grant Agreement number 825652), and from SIEMENS (SBchain project funded via Settlement Agreement with Hellenic Republic)</dc:description>
  <dc:identifier>https://zenodo.org/record/4016977</dc:identifier>
  <dc:identifier>10.5281/zenodo.4016977</dc:identifier>
  <dc:identifier>oai:zenodo.org:4016977</dc:identifier>
  <dc:language>akh</dc:language>
  <dc:relation>doi:10.5281/zenodo.4016976</dc:relation>
  <dc:relation>url:https://zenodo.org/communities/dfp17</dc:relation>
  <dc:rights>info:eu-repo/semantics/openAccess</dc:rights>
  <dc:rights>https://creativecommons.org/licenses/by/4.0/legalcode</dc:rights>
  <dc:subject>Disposable Identities, Self-Sovereign Identity, Verifiable Credentials, Digital Document Verification, Crede</dc:subject>
  <dc:subject>Self-Sovereign Identity</dc:subject>
  <dc:subject>Verifiable Credentials</dc:subject>
  <dc:subject>Digital Document Verification</dc:subject>
  <dc:subject>Credential-based Access Control</dc:subject>
  <dc:subject>Covid-19 certificates</dc:subject>
  <dc:subject>Covid-19</dc:subject>
  <dc:title>Disposable Yet Official Identities (DYOI) for Privacy-Preserving System Design - The case of COVID-19 digital document verification and credential-based access control in ad hoc outdoor and indoor settings (and beyond)</dc:title>
  <dc:type>info:eu-repo/semantics/conferencePaper</dc:type>
  <dc:type>publication-conferencepaper</dc:type>
</oai_dc:dc>
1,870
455
views
downloads
All versions This version
Views 1,8701,870
Downloads 455455
Data volume 744.5 MB744.5 MB
Unique views 1,5851,585
Unique downloads 422422

Share

Cite as