FORT: right-proving and attribute-blinding self-sovereign authentication

Mostra el registre complet Registre parcial de l'ítem

  • dc.contributor.author Salleras, Xavier
  • dc.contributor.author Rovira, Sergi
  • dc.contributor.author Daza, Vanesa
  • dc.date.accessioned 2022-02-23T13:45:23Z
  • dc.date.available 2022-02-23T13:45:23Z
  • dc.date.issued 2022
  • dc.description.abstract Nowadays, there are a plethora of services that are provided and paid for online, such as video streaming subscriptions, car-share, vehicle parking, purchasing tickets for events, etc. Online services usually issue tokens that are directly related to the identities of their users after they sign up to a platform; users need to authenticate themselves by using the same credentials each time they use the service. Likewise, when using in-person services, such as going to a concert, after paying for this service, the user usually receives a ticket, which proves that he/she has the right to use that service. In both scenarios, the main concerns surround the centralization of these systems and that they do not ensure customers’ privacy. The involved service providers are trusted third parties—authorities that offer services and handle private data about users. In this paper, we designed and implemented FORT, a decentralized system that allows customers to prove their rights to use specific services (either online or in-person) without revealing sensitive information. To achieve decentralization, we proposed a solution where all of the data are handled by a blockchain. We describe and uniquely identify users’ rights using non-fungible tokens (NFTs), and possession of these rights is demonstrated by using zero-knowledge proofs—cryptographic primitives that allow us to guarantee customers’ privacy. Furthermore, we provide benchmarks of FORT, which show that our protocol is efficient enough to be used in devices with low computing resources, such as smartphones or smartwatches, which are devices commonly used in our use case scenario
  • dc.description.sponsorship Project RTI2018-102112-B-100 (AEI/FEDER, UE) and H2020 PRESENT grant agreement no. 856879.
  • dc.format.mimetype application/pdf
  • dc.identifier.citation Salleras X, Rovira S, Daza V. FORT: right-proving and attribute-blinding self-sovereign authentication. Mathematics. 2022;10(4):617. DOI: 10.3390/math10040617
  • dc.identifier.doi http://dx.doi.org/10.3390/math10040617
  • dc.identifier.issn 2227-7390
  • dc.identifier.uri http://hdl.handle.net/10230/52552
  • dc.language.iso eng
  • dc.publisher MDPI
  • dc.relation.ispartof Mathematics. 2022;10(4):617.
  • dc.relation.projectID info:eu-repo/grantAgreement/ES/2PE/RTI2018-102112-B-100
  • dc.relation.projectID info:eu-repo/grantAgreement/EC/H2020/856879
  • dc.rights © 2022 by the authors. Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (http://creativecommons.org/licenses/by/4.0/).
  • dc.rights.accessRights info:eu-repo/semantics/openAccess
  • dc.rights.uri https://creativecommons.org/licenses/by/4.0/
  • dc.subject.keyword zero-knowledge proofs
  • dc.subject.keyword zk-SNARKs
  • dc.subject.keyword bulletproofs
  • dc.subject.keyword applied cryptography
  • dc.subject.keyword self-sovereign
  • dc.subject.keyword Internet of Things
  • dc.subject.keyword authentication
  • dc.subject.keyword NFT
  • dc.title FORT: right-proving and attribute-blinding self-sovereign authentication
  • dc.type info:eu-repo/semantics/article
  • dc.type.version info:eu-repo/semantics/publishedVersion

Col·leccions

Articles (Departament de Tecnologies de la Informació i les Comunicacions)
Documents OpenAIRE (Open Access Infrastructure for Research in Europe)