Blockchain and Digital Signatures for Digital Self-Sovereignty

Principles of self-sovereignty have been integrated into the solution to achieve a mechanism where the user is in control of one's digital identity attributes. Through the use of attribute-based credentials, the solution presented here allows the user to control access to their digital identity attributes, so they only have to release the required attributes to the business entities. Selective disclosure proofs, enabled by cryptographically signed containers, allow for minimization of identity attributes transferred to execute a transaction. The user can consent to access of one's identity attributes by granting access licenses to business entities through a blockchain application running on their mobile device. Also, the user can modify the access license to restrict the access based on time or revoke access to any identity attribute. Privacy of identity attributes and access licenses stored on mobile devices is ensured by integration of transparent data encryption. Dependency on any middleman entity required by several other identity management solutions is eliminated through the use of digital signatures. The communication between actors involved in each transaction is encrypted through a PKI infrastructure ensuring the security of claims packages transferred. The solution enables portability through use of digital signature to verify the validation of identity attributes done by the identity guarantor. The user is able to determine the lifespan of any identity attribute through the mobile application and remove it from any future digital transaction. The solution presented here allows for the application of theoretical principles of self-sovereign identity into the everyday life of the user.