TY - GEN
T1 - Transforming face-to-face identity proofing into anonymous digital identity using the bitcoin blockchain
AU - Augot, Daniel
AU - Chabanne, Herve
AU - Clemot, Olivier
AU - George, William
N1 - Publisher Copyright:
© 2017 IEEE.
PY - 2018/9/28
Y1 - 2018/9/28
N2 - The most fundamental purpose of blockchain technology is to enable persistent, consistent, distributed storage of information. Increasingly common are authentication systems that leverage this property to allow users to carry their personal data on a device while a hash of this data is signed by a trusted authority and then put on a blockchain to be compared against. For instance, in 2015, MIT introduced a schema for the publication of their academic certificates based on this principle. In this work, we propose a way for users to obtain assured identities based on face-to-face proofing that can then be validated against a record on a blockchain. Moreover, in order to provide anonymity, instead of storing a hash, we make use of a scheme of Brands to store a commitment against which one can perform zero-knowledge proofs of identity. We also enforce the confidentiality of the underlying data by letting users control a secret of their own.We show how our schema can be implemented on Bitcoin's blockchain and how to save bandwidth by grouping commitments using Merkle trees to minimize the number of Bitcoin transactions that need to be sent. Finally, we describe a system in which users can gain access to services thanks to the identity records of our proposal.
AB - The most fundamental purpose of blockchain technology is to enable persistent, consistent, distributed storage of information. Increasingly common are authentication systems that leverage this property to allow users to carry their personal data on a device while a hash of this data is signed by a trusted authority and then put on a blockchain to be compared against. For instance, in 2015, MIT introduced a schema for the publication of their academic certificates based on this principle. In this work, we propose a way for users to obtain assured identities based on face-to-face proofing that can then be validated against a record on a blockchain. Moreover, in order to provide anonymity, instead of storing a hash, we make use of a scheme of Brands to store a commitment against which one can perform zero-knowledge proofs of identity. We also enforce the confidentiality of the underlying data by letting users control a secret of their own.We show how our schema can be implemented on Bitcoin's blockchain and how to save bandwidth by grouping commitments using Merkle trees to minimize the number of Bitcoin transactions that need to be sent. Finally, we describe a system in which users can gain access to services thanks to the identity records of our proposal.
KW - Bitcoin blockchain
KW - Discrete Logarithm REPresentation (DLREP)
KW - Identity proofs
UR - https://www.scopus.com/pages/publications/85055889775
U2 - 10.1109/PST.2017.00014
DO - 10.1109/PST.2017.00014
M3 - Conference contribution
AN - SCOPUS:85055889775
T3 - Proceedings - 2017 15th Annual Conference on Privacy, Security and Trust, PST 2017
SP - 25
EP - 34
BT - Proceedings - 2017 15th Annual Conference on Privacy, Security and Trust, PST 2017
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 15th Annual Conference on Privacy, Security and Trust, PST 2017
Y2 - 27 August 2017 through 29 August 2017
ER -