Abstract
An identity management including authentication and authorization in a network environment is a critical security factor. Various models for identity management have been developed continually, from the silo model to the federated model and to the recently introduced self-sovereign identity (SSI) model. In particular, SSI makes users manage their own information by themselves independently of any organizations. SSI utilizes the newly emerged blockchain technology and many studies of it are in progress. However, SSI has not had wide public use because of its low compatibility and inconvenience. This is because it involves an unfamiliar user experience and an immature process. To solve this problem, this paper proposes a new blockchain-based SSI model that complies with the popular and mature standard of OAuth 2.0. Using blockchain, the proposed model secures users’ data sovereignty where users can use and control their own information in a decentralized manner, instead of depending on a specific monopolistic service-providers. Users and clients who are familiar with the existing OAuth can easily accept the proposed model and apply it, which makes both usability and scalability of the model excellent. This paper confirmed the feasibility of the proposed model by implementing it and a security analysis was performed. The proposed model is expected to contribute to the expansion of both blockchain technology and SSI.
Highlights
Identity management models to authenticate and authorize users in the Internet environment have been continually developed by addressing the problems of the existing models
It is the first self-sovereign identity (SSI) model that complies with OAuth 2.0 standard, which results in high reliability and interoperability
This paper proposed a new blockchain-based SSI model that complies with OAuth 2.0
Summary
Identity management models to authenticate and authorize users in the Internet environment have been continually developed by addressing the problems of the existing models. The federated model helped to reduce password fatigue, but the authentication service came to possess huge amounts of user data. The SSI models have made efforts to solve this problem by providing a tutorial page to help users learn the new process or by providing a library for easy development. The proposed model has increased availability as users can stably manage their information, and it provides a decentralized authentication and authorization process that is not restricted to a certain service provider, such as Google. It is the first SSI model that complies with OAuth 2.0 standard, which results in high reliability and interoperability It provides novel user-centric authentication and authorization which are controlled under a user’s own device with the help of blockchain ledger.
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
