Paper 2021/1459

Privacy-preserving Identity Management System

Jeonghyuk Lee, Jaekyung Choi, Hyunok Oh, and Jihye Kim

Abstract

Recently, a self-sovereign identity model has been researched actively as an alternative to the existing identity models such as a centralized identity model, federated identity model, and user-centric model. The self-sovereign identity model allows a user to have complete control of his identity. Meanwhile, the core component of the self-sovereign identity model is data minimization. The data minimization signifies that the extent of the exposure of user private identity should be minimized. As a solution to data minimization, zero-knowledge proofs can be grafted to the self-sovereign identity model. Specifically, zero-knowledge Succinct Non-interactive ARgument of Knowledges(zk-SNARKs) enables proving the truth of the statement on an arbitrary relation. In this paper, we propose a privacy-preserving self-sovereign identity model based on zk-SNARKs to allow any type of data minimization beyond the selective disclosure and range proof. The security of proposed model is formally proven under the security of the zero-knowledge proof and the unforgeability of the signature in the random oracle model. Furthermore, we optimize the proving time by checking the correctness of the commitment outside of the proof relation for practical use. The resulting scheme improves proving time for hash computation (to verify a commitment input) from 0.5 s to about 0.1 ms on a 32-bit input.

Metadata
Available format(s)
PDF
Category
Applications
Publication info
Preprint. Minor revision.
Keywords
Identity modelSelf-sovereign identity modelVerifiable credential data modelDIDszero-knowledge proofzk-SNARKsCommit-and-Prove
Contact author(s)
neidis791 @ gmail com
History
2021-11-06: received
Short URL
https://ia.cr/2021/1459
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2021/1459,
      author = {Jeonghyuk Lee and Jaekyung Choi and Hyunok Oh and Jihye Kim},
      title = {Privacy-preserving Identity Management System},
      howpublished = {Cryptology ePrint Archive, Paper 2021/1459},
      year = {2021},
      note = {\url{https://eprint.iacr.org/2021/1459}},
      url = {https://eprint.iacr.org/2021/1459}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.