Paper 2022/1658
A new Privacy Preserving and Scalable Revocation Method for Self Sovereign Identity - The Perfect Revocation Method does not exist yet
Abstract
Digital Identities are playing an essential role in our digital lives. Today, most Digital Identities are based on central architectures. Central Digital Identity providers control and know our data and thereby our Identity. Self Sovereign Identities are based on decentralized data storage and data exchange architecture, where the user is in sole control of his data and identity. Most of the issued credentials need the possibility of revocation. For a centrally managed Digital Identity system, revocation is not a problem. In decentral architectures, revocation is more challenging. Revocation can be done with different methods e.g. list based, cryptographic accumulators and with credential updates. A revocation method must be privacy preserving and must scale. This paper gives an overview of the available revocation methods, including a survey to define requirements, assess revocation groups against the requirements, highlights shortcomings of the methods and introduces a new revocation method called Linked Validity Verifiable Credentials.
Metadata
- Available format(s)
-
PDF
- Category
- Applications
- Publication info
- Preprint.
- Keywords
- Decentralized Identity Self Sovereign Identity Accumulators Revocation Linked Validity Verifiable Credential
- Contact author(s)
- a09850138 @ unet univie ac at
- History
- 2022-11-30: approved
- 2022-11-28: received
- See all versions
- Short URL
- https://ia.cr/2022/1658
- License
-
CC BY-NC-SA
BibTeX
@misc{cryptoeprint:2022/1658,
author = {Andreas Freitag},
title = {A new Privacy Preserving and Scalable Revocation Method for Self Sovereign Identity - The Perfect Revocation Method does not exist yet},
howpublished = {Cryptology {ePrint} Archive, Paper 2022/1658},
year = {2022},
url = {https://eprint.iacr.org/2022/1658}
}
