Open in app

Sign in

Write

Sign in

Self-Sovereign Identity Based Access Control

Rafael Belchior
2 min readOct 19, 2020

…using Hyperledger Aries and Hyperledger Indy.

A recent academic paper uses Hyperledger infrastructure to conduct access control processes using decentralized identifiers, verifiable credentials, and conventional access control models.

According to its main project page, “Hyperledger Aries provides a shared, reusable, interoperable tool kit designed for initiatives and solutions focused on creating, transmitting and storing verifiable digital credentials. It is infrastructure for blockchain-rooted, peer-to-peer interactions”. On its turn, Hyperledger Indy “provides tools, libraries, and reusable components for providing digital identities rooted on blockchains”. It is the utilization of conventional access control models over the union of this projects that gives birth to SSIBAC.

This project has been implemented in the context of the European Union project Qualichain (http://qualichain.epu.ntua.gr/)

Here is the abstract,which provides an holistic view of the paper:

Ineffective data management practices pose serious issues to individuals and companies, e.g., risk of identity theft and online exposure. Self-sovereign identity (SSI) is a new identity management approach that ensures users have full control of their personal data. In this work, we alleviate data breach and user privacy problems by showing how SSI can fit within the context of established enterprise identity and access management technologies. In light of recent endeavors, we explore the use of decentralized identifiers, verifiable credentials, and blockchains that support SSI. We propose Self-Sovereign Identity Based Access Control (SSIBAC), an access control model for cross-organization identity management. SSIBAC leverages conventional access control models and blockchain technology to provide decentralized authentication, followed by centralized authorization. The access control process does not require storing user sensitive data. A prototype was implemented and evaluated, processing 55,000 access control requests per second with a latency of 3 seconds.

Link to the full paper: https://rafaelapb.github.io/academic

Sign up to discover human stories that deepen your understanding of the world.

Free

Distraction-free reading. No ads.

Organize your knowledge with lists and highlights.

Tell your story. Find your audience.

Membership

Read member-only stories

Support writers you read most

Earn money for your writing

Listen to audio narrations

Read offline with the Medium app

Blockchain
Privacy
Data
Hyperledger
Education
Rafael Belchior
Rafael Belchior

Written by Rafael Belchior

451 Followers
79 Following

R&D Engineer at Blockdaemon. Opinions and articles are my own and do not necessarily reflect the view of my employer. https://rafaelapb.github.io

No responses yet

Write a response

What are your thoughts?

Help

Status

About

Careers

Press

Blog

Privacy

Terms

Text to speech

Teams