A Universal System for OpenID Connect Sign-ins with Verifiable Credentials and Cross-Device Flow
Self-Sovereign Identity (SSI), as a new and promising identity management paradigm, needs mechanisms that can ease a gradual transition of existing services and developers towards it. Systems that bridge the gap between SSI and established identity and access management have been proposed but still lack adoption. We propose a comparatively simple system that enables SSI-based sign-ins for services that support the widespread OpenID Connect or OAuth 2.0 protocols. Its handling of claims is highly configurable through a single policy and designed for cross-device authentication flows involving a smartphone identity wallet. We evaluate our design by implementing and successfully integrating it with existing interfacing components.
| Attribute | Value |
|---|---|
| Address | |
| Authors | Felix Hoops , Prof. Dr. Florian Matthes |
| Citation | F. Hoops and F. Matthes, "A Universal System for OpenID Connect Sign-ins with Verifiable Credentials and Cross-Device Flow," 2024 IEEE International Conference on Blockchain and Cryptocurrency (ICBC), Dublin, Ireland, 2024, pp. 296-298, doi: 10.1109/ICBC59979.2024.10634364. |
| Key | Ho24b |
| Research project | GAIA-X 4 Production, After-Sales and PLC - Across Automated Driving |
| Title | A Universal System for OpenID Connect Sign-ins with Verifiable Credentials and Cross-Device Flow |
| Type of publication | Conference |
| Year | 2024 |
| Publication URL | https://ieeexplore.ieee.org/document/10634364 |
| Acronym | |
| Project | |
| Team members |