RAIAP: renewable authentication on isolated anonymous profiles

PDF / 1,532,835 Bytes
23 Pages / 595.224 x 790.955 pts Page_size
53 Downloads / 177 Views

RAIAP: renewable authentication on isolated anonymous proﬁles A GDPR compliant self-sovereign architecture for distributed systems 1 · Carlos Costa1 ´ Micael Pedrosa1,2 · Andre´ Zuquete

Received: 2 August 2019 / Accepted: 13 April 2020 © Springer Science+Business Media, LLC, part of Springer Nature 2020

Abstract Implementing pseudonymity, key-management, non-repudiation and data minimisation features in isolated procedures is trivial. However, integrating all of them in one consistent architecture has several challenges to tackle. This work proposes data structures to represent Self-Sovereign Identities and to handle those features in a consolidated architecture. Keymanagement is constructed using secret sharing principles, capable of recovering from a lost or compromised key to a new one without losing track of the original account. Pseudonymity and data minimisation is established using anonymous profiles, showing different views of the same identity. Non-repudiation is contemplated in the profile disclosure process. Profiles are protected against tampering with the use of digital signatures and blockchain cryptographic constructions. All profiles and registries are controlled with a single asymmetric key pair that can be provided by a smart card. Flexible structures are defined that can be used to register claims, attestations, authorisation grants, user consents, or any other activities. All definitions take into consideration the rules of the General Data Protection Regulation (GDPR). Keywords GDPR · Pseudonymity · Key-management · Non-repudiation · Data-minimisation

1 Introduction Under the umbrella of the General Data Protection Regulation1 (GDPR), enforced on May 2018, providing access to personal data will be a data-subject right. However, accessing sensitive information requires a finegrained control of security and trust. The conflict between privacy and the emerging need to access vasts amounts of information hinders scientific progress. The way this is handled nowadays is by working with anonymous datasets. Anonymous data is not considered personal data for the purposes of the GDPR; therefore no consent is required. 1 https://www.eugdpr.org/key-changes.html

Micael Pedrosa

[email protected] Andr´e Z´uquete [email protected] Carlos Costa [email protected] 1

DETI/IEETA, University of Aveiro, Aveiro, Portugal

2

UDC, University of A Coru˜na, A Coru˜na, Spain

However, the threshold for anonymisation is very high. In fields such as healthcare, patient anonymity is more complex than initially anticipated, DNA sequences can be linked to real-world human identities, and faces can be reconstructed with 3D-MRI [1]. In general, the techniques are difficult [2] and not always possible [3, 4], and thus, constraining the use of specific datasets without proper consent. The regulation also defines that professionals who are subject to professional secrecy (e.g. doctors and nurses) are able to handle certain datasets without user consent. However, alternative channels may be required for parental consent

Data Loading...

RAIAP: renewable authentication on isolated anonymous profiles

Recommend Documents

AnonyTrust: An Anonymous Trust Authentication System for Pervasive Social Networking

A Priority-Aware Anonymous Handover Authentication Protocol for Wireless Communications

Towards Lightweight Anonymous Entity Authentication for IoT Applications

Monitoring of Isolated Standalone Renewable Energy Systems

User Privacy-Preserving Scheme Based on Anonymous Authentication in Smart Grid

An Efficient Anonymous Authentication with Privacy and Enhanced Access Control for Medical Data in WBAN

On the Design of a Secure Anonymous User Authentication Scheme for Multiple Base Stations Based Wireless Sensor Networks

Anonymous Symmetric-Key Communication

Authentication

Authentication

On the isolated retained

Authentication