Proving that an endpoint (e.g. URL, telephone number, ecc.) is controlled by a subject is crucial in many applications. In the web, this is witnessed by the widespread adoption of HTTPS. In centralized architectures, this task is usually carried out by trusted certification authorities (CAs). In decentralized applications, for example based on blockchains, or for self-sovereign identity management (SSI), it would be desirable to perform these checks in a decentralized way, relying on the collective behavior of a society of individuals rather than on a single trusted entity. In any case, the result should be a widely usable certificate, as in the centralized CA case. In this paper, we show two blockchain-based methods to prove the association between a subject and an endpoint in a decentralized manner. Our methods are compatible with a wide variety of endpoints and contribute to fill the gap of the current SSI approaches with respect to decentralization. We analyze the security of our proposal and provide a proof-of-concept implementation. We also evaluate performances, costs, and compatibility with current standardization efforts about SSI.
Efficient Certification of Endpoint Control on Blockchain / Pennino, D.; Pizzonia, M.; Vitaletti, A.; Zecchini, M.. - In: IEEE ACCESS. - ISSN 2169-3536. - 9:(2021), pp. 133309-133334. [10.1109/ACCESS.2021.3115343]
Efficient Certification of Endpoint Control on Blockchain
Vitaletti A.;Zecchini M.
2021
Abstract
Proving that an endpoint (e.g. URL, telephone number, ecc.) is controlled by a subject is crucial in many applications. In the web, this is witnessed by the widespread adoption of HTTPS. In centralized architectures, this task is usually carried out by trusted certification authorities (CAs). In decentralized applications, for example based on blockchains, or for self-sovereign identity management (SSI), it would be desirable to perform these checks in a decentralized way, relying on the collective behavior of a society of individuals rather than on a single trusted entity. In any case, the result should be a widely usable certificate, as in the centralized CA case. In this paper, we show two blockchain-based methods to prove the association between a subject and an endpoint in a decentralized manner. Our methods are compatible with a wide variety of endpoints and contribute to fill the gap of the current SSI approaches with respect to decentralization. We analyze the security of our proposal and provide a proof-of-concept implementation. We also evaluate performances, costs, and compatibility with current standardization efforts about SSI.| File | Dimensione | Formato | |
|---|---|---|---|
|
Pennino_Efficient_2021.pdf
accesso aperto
Note: DOI: 10.1109/ACCESS.2021.3115343
Tipologia:
Versione editoriale (versione pubblicata con il layout dell'editore)
Licenza:
Creative commons
Dimensione
2.04 MB
Formato
Adobe PDF
|
2.04 MB | Adobe PDF |
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
