Digital identity management is a critical enabler for secure, privacy-respecting access to digital services, yet traditional systems often suffer from centralised control, data leaks, and limited user data management. To overcome these limitations, this contribution presents a novel Self-Sovereign Identity (SSI) framework that leverages blockchain technology to empower users with full control over their digital identities. The proposed system integrates Decentralised Identifiers (DIDs), Verifiable Credentials (VCs) encoded as JSON Web Tokens (JWTs), and Elliptic Curve Cryptography (ECC) to provide a lightweight, secure, and privacy-preserving identity management solution. Furthermore, the use of blockchain-based verifiable data registries ensures immutability, transparency, and trust in credential verification processes. Privacy is further reinforced through Zero-Knowledge Proofs (ZKPs) and secure peer-to-peer communication via DIDComm. A complete SSI architecture is implemented and validated through a functional prototype in the hotel reservation domain, demonstrating the feasibility of decentralised identity provisioning, selective disclosure, and user-centric data sovereignty. The framework supports scalability and interoperability across services and stakeholders while maintaining compliance with privacy regulations and World Wide Web Consortium (W3C) standards. This research contributes a practical and extensible SSI infrastructure that bridges blockchain and identity technologies, offering a promising foundation for next-generation intelligent digital trust ecosystems.

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

A Self-sovereign Identity Framework Using Blockchain for Privacy-Preserving Data Management

  • Manuel Garrido-Fúnez,
  • Bruno Ramos-Cruz,
  • Jessica Zaqueros-Martinez,
  • Manuel José Barranco,
  • Pedro José Sánchez

摘要

Digital identity management is a critical enabler for secure, privacy-respecting access to digital services, yet traditional systems often suffer from centralised control, data leaks, and limited user data management. To overcome these limitations, this contribution presents a novel Self-Sovereign Identity (SSI) framework that leverages blockchain technology to empower users with full control over their digital identities. The proposed system integrates Decentralised Identifiers (DIDs), Verifiable Credentials (VCs) encoded as JSON Web Tokens (JWTs), and Elliptic Curve Cryptography (ECC) to provide a lightweight, secure, and privacy-preserving identity management solution. Furthermore, the use of blockchain-based verifiable data registries ensures immutability, transparency, and trust in credential verification processes. Privacy is further reinforced through Zero-Knowledge Proofs (ZKPs) and secure peer-to-peer communication via DIDComm. A complete SSI architecture is implemented and validated through a functional prototype in the hotel reservation domain, demonstrating the feasibility of decentralised identity provisioning, selective disclosure, and user-centric data sovereignty. The framework supports scalability and interoperability across services and stakeholders while maintaining compliance with privacy regulations and World Wide Web Consortium (W3C) standards. This research contributes a practical and extensible SSI infrastructure that bridges blockchain and identity technologies, offering a promising foundation for next-generation intelligent digital trust ecosystems.