Integration of Self-Sovereign Identity into Conventional Software using Established IAM Protocols: A Survey
Loading...
Fulltext URI
Document type
Text/Conference Paper
Additional Information
Date
2022
Authors
Journal Title
Journal ISSN
Volume Title
Source
Publisher
Gesellschaft für Informatik e.V.
Abstract
Self-Sovereign Identity (SSI) is an approach based on asymmetric cryptography and on decentralized, user-controlled exchange of signed assertions. Most SSI implementations are not based on hierarchic certification schemas, but rather on the peer-to-peer and distributed “web of trust” without root or intermediate CAs. As SSI is a nascent technology, the adoption of vendor-independent SSI standards into existing software landscapes is at an early stage. Conventional enterprise-grade IAM implementations and cloud-based Identity Providers rely on widely established pre-SSI standards, and both will not be replaced by SSI offerings in the next few years. The contribution of this paper is an analysis of patterns and products to bridge unmodified pre-SSI applications and conventional IAM with SSI implementations. Our analysis covers 40+ SSI implementations and major authentication protocols such as OpenID Connect and LDAP.
Description
Keywords
SSI, Self-Sovereign Identity, DID, Decentralized Identifiers, VC, Verifiable Credentials, IAM, Integration, Interoperability, Protocol, OIDC, OpenID Connect, OAuth, SAML, LDAP, X.509 Client Certificates, Kerberos, Active Directory, ADFS
Citation
Collections
Endorsement
Review
Supplemented By
Referenced By
Show citations