identity
play

Identity Stefan Thomas, CTO Agenda Goals Terminology What - PowerPoint PPT Presentation

Feb 04, 2023 •327 likes •520 views

Identity Stefan Thomas, CTO Agenda Goals Terminology What can decentralized networks contribute? Better Identity Provider Public attestation Stefan Thomas, CTO Goals What are we trying to solve? Authentication

  1. Identity Stefan Thomas, CTO

  2. Agenda • Goals • Terminology • What can decentralized networks contribute? – Better Identity Provider – Public attestation Stefan Thomas, CTO

  3. Goals What are we trying to solve? Authentication • How can users securely authorize transactions? Attestation • How can we enable users to prove their trustworthiness? Stefan Thomas, CTO

  4. Our role W3C Web Payments Community Group We’re not identity experts. We’re payments experts. • What are our unique challenges around identity? • How does the emergence of distributed networks affect identity? • Stefan Thomas, CTO

  5. Terminology Entity Identity Identity Provider (IdP) mark@gmail.com mark@safeway.com TheMark72 Reference: ISO 29115; OpenID Connect 1.0 Core Stefan Thomas, CTO

  6. Terminology Identity Claim Claim Provider mark@gmail.com name: “Mark Dinkel” mark@safeway.com TheMark72 Reference: draft-ietf-oauth-json-web-token-19; OpenID Connect 1.0 Core Stefan Thomas, CTO

  7. Advantages The good news first OpenID Connect is pretty good! • Authentication mechanism agnostic • Cryptographically secure • Granular sharing of information and permissions • Supports discovery Stefan Thomas, CTO

  8. Reliance on IdPs Why care? • They are a target • Difficult to switch • Right to own your identity Stefan Thomas, CTO

  9. Self-issued IdP The other option • OpenID Connect 1.0 Core - Section 7 • https://self-issued.me • Suggested use case: Mobile phone • Open issues: backup, security Stefan Thomas, CTO

  10. Peer-assisted Key Derivation (PAKDF) Trustless login using blind signatures blind signature blinding “pw” unblinding Reference: justmoon.github.io/pakdf Stefan Thomas, CTO

  11. Peer-assisted Key Derivation (PAKDF) Trustless login using blind signatures “pw” • Full benefits of identity provider (multi-factor authentication, rate-limiting, fingerprinting) • If using multiple peers provides strong protections against bad IdPs Stefan Thomas, CTO

  12. Switching providers Global distributed namespace ~alice alice@acmebank.com acmebank.com rNb721TdNHN37yoURrMYDiQ ~alice Stefan Thomas, CTO

  13. Switching providers Global distributed namespace ~alice alice@foobank.com foobank.com rNb721TdNHN37yoURrMYDiQ ~alice Stefan Thomas, CTO

  14. Service Discovery How to pay alice? "links": [{ "rel": "https://ripple.com/specs/pay/1.0", acct:alice@foobank.com "href": "https://foobank.com/api/ripple/pay" }] ~alice Reference: RFC 7033 WebFinger Stefan Thomas, CTO

  15. Service Discovery GET /api/ripple/pay?uri=alice%3Ffoobank.com… [{ “uri": “ripple:12345-004-12341234567@eft.rippleunion.com“, “currency”: “CAD” }, { “uri": “ripple:rNb721TdNHN37yoURrMYDiQF?dt=1234”, “currency”: “BTC” }, …] Stefan Thomas, CTO

  16. Reputation Identity Claim Claim Provider name: “Mark Dinkel” mark@gmail.com Reference: draft-ietf-oauth-json-web-token-19; OpenID Connect 1.0 Core Stefan Thomas, CTO

  17. Reputation Identity Claim Claim Provider { reviewer: “bob@live.com”, mark@gmail.com score: 9.5, comment: “Great guy!” } Stefan Thomas, CTO

  18. Reputation Identity Claim Score Provider mark@gmail.com 804 low risk Stefan Thomas, CTO

  19. Stefan Thomas, CTO

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Identity Theft Identity Theft Identity theft occurs when your personal information is stolen

Identity Theft Identity Theft Identity theft occurs when your personal information is stolen

Identity Theft Identity Theft Identity theft occurs when your personal information is stolen and used without your knowledge to commit fraud or other crimes Identity theft can cost you time and money. Tips for Preventing Identity Theft

322 views • 10 slides
Identity and Access Management Using Identity Management and Identity Governance to increase

Identity and Access Management Using Identity Management and Identity Governance to increase

Identity and Access Management Using Identity Management and Identity Governance to increase Automation and Security. Identity Management (IAM, IdM) defining and managing the roles and access privileges of individual network users, and the

2.89k views • 13 slides
IDENTITY What is the Relationship Between Identity and the College Experience? What Role

IDENTITY What is the Relationship Between Identity and the College Experience? What Role

2/15/2019 Jordan Truex Agenda or Summary Layout The Road to SelfAuthorship NonTraditional Students Effective Interview Strategies Meeting the Student Where They Are IDENTITY What is the Relationship Between Identity and the

367 views • 10 slides
What is Identity Theft? "Someone obtaining your personal identifying information without

What is Identity Theft? "Someone obtaining your personal identifying information without

Identity Fraud: Protecting Your Identity Between Work and Play Ryan Sothan, Outreach Coordinator Nebraska Department of Justice, Office of the Attorney General Consumer Protection and Anti-Trust Division What is Identity Theft?

314 views • 18 slides
my Identity TM 2 my Identity Learning objectives In this overview, you will learn about:

my Identity TM 2 my Identity Learning objectives In this overview, you will learn about:

my Identity TM 2 my Identity Learning objectives In this overview, you will learn about: The four components of my Identity TM How the product can benefit customers in real-world scenarios The benefits of the product for brokers 3

530 views • 19 slides
Adopting the global Marketing Lead Domains.coop co-operative identity www.identity.coop 24

Adopting the global Marketing Lead Domains.coop co-operative identity www.identity.coop 24

People stronger together Nicola Huckerby Adopting the global Marketing Lead Domains.coop co-operative identity www.identity.coop 24 April 2015 Co-operative identity Visual identity Online identity www.domains.coop @domainsdotcoop

944 views • 58 slides
Key Escrow free Identity-based Identity-based Cryptosystem Cryptosystem Identity-based

Key Escrow free Identity-based Identity-based Cryptosystem Cryptosystem Identity-based

Contents Background Key Escrow free Identity-based Identity-based Cryptosystem Cryptosystem Identity-based Signature Conclusion Manik Lal Das DA-IICT, Gandhinagar, India About DA-IICT and Our Group DA-IICT is a private university,

563 views • 35 slides
The Nexus of Identity IBM's submission for the W3C Identity in the Browser Workshop by

The Nexus of Identity IBM's submission for the W3C Identity in the Browser Workshop by

The Nexus of Identity IBM's submission for the W3C Identity in the Browser Workshop by Maryann Hondo, Mary Ellen Zurko, Matthew Flaherty, Paula K. Austel, Sridhar Muppidi Net - net of the paper Our customers expect us to give them the

558 views • 9 slides
So Some facts About 43% of all reported identity thefts in the U.S. in 2013 were

So Some facts About 43% of all reported identity thefts in the U.S. in 2013 were

So Some facts About 43% of all reported identity thefts in the U.S. in 2013 were medical-related, according to a study released last month by Identity Theft Resource Center (ITRC). 1 in 3 people report a problem after their identity is

827 views • 26 slides
Identity Theft By: Brian Paulsen How common is identity theft? According to the US Department of

Identity Theft By: Brian Paulsen How common is identity theft? According to the US Department of

Identity Theft By: Brian Paulsen How common is identity theft? According to the US Department of Justice, 10% of people over the age of 16 reported being victims of identity theft in 2016 (Harrell). Who is most susceptible? Multiple reports

233 views • 21 slides
Internet Identity Initiatives Internet Identity Initiatives RL Bob Morgan University of

Internet Identity Initiatives Internet Identity Initiatives RL Bob Morgan University of

Internet Identity Initiatives Internet Identity Initiatives RL Bob Morgan University of Washington and Internet2 EMC2 Mlaga, S pain October 2006 Topics Topics Internet identity buzzwords/ proj ects: user-centric, sxip, dix,

395 views • 18 slides
ID ID32b An innovative approach to identity Mike McWilliams August 2020 What is identity?

ID ID32b An innovative approach to identity Mike McWilliams August 2020 What is identity?

ID ID32b An innovative approach to identity Mike McWilliams August 2020 What is identity? In the past your name was a unique identity. - In your village there was only one smith (metal worker) called John. - For reference outside the

511 views • 13 slides
Protecting Your Identity, Data, and Assets 1 Its Not a Matter of If, but When 17.6

Protecting Your Identity, Data, and Assets 1 Its Not a Matter of If, but When 17.6

Protecting Your Identity, Data, and Assets 1 Its Not a Matter of If, but When 17.6 million 63% Identity fraud is a serious issue. people experienced of confirmed data Fraudsters have identity theft in 2014 breaches involved stolen

605 views • 29 slides
Identity Management Scaling Out and Up Jan Pazdziora Principal Software Engineer Identity

Identity Management Scaling Out and Up Jan Pazdziora Principal Software Engineer Identity

Identity Management Scaling Out and Up Jan Pazdziora Principal Software Engineer Identity Management Engineering, Red Hat jpazdziora@redhat.com 15 th October 2014 Identity Users; user groups. Hosts; host groups; services. Identities

700 views • 18 slides
Response Identity in Session Initiation Protocol draft-cao-sip-response-identity-00 Feng Cao

Response Identity in Session Initiation Protocol draft-cao-sip-response-identity-00 Feng Cao

Response Identity in Session Initiation Protocol draft-cao-sip-response-identity-00 Feng Cao Cullen Jennings 1 Agenda Introduction Scope Requirements SIP Response Identity Overview Open Issues Summary 2

205 views • 9 slides
Teachers professional identity; Professional development and learning & teacher identity

Teachers professional identity; Professional development and learning & teacher identity

Teachers professional identity; Professional development and learning & teacher identity Bart Cris risp Th The Ce Centre for r th the Use se of f Rese search and Evi vidence in in Educatio ion Pres esen entati tion at t th

308 views • 17 slides
C.c) DSA and Diffie-Hellman W. Schindler: Cryptography, B-IT, winter 2006 / 2007 2 C.73 DSA

C.c) DSA and Diffie-Hellman W. Schindler: Cryptography, B-IT, winter 2006 / 2007 2 C.73 DSA

1 C.c) DSA and Diffie-Hellman W. Schindler: Cryptography, B-IT, winter 2006 / 2007 2 C.73 DSA (Digital Signature Algorithm) standardized by NIST A) Generation of a key pair Select a prime q with 2 159 < q < 2 160 Select a

348 views • 11 slides
Practical Round-Optimal Blind Signatures in the Standard Model from Weaker Assumptions G.

Practical Round-Optimal Blind Signatures in the Standard Model from Weaker Assumptions G.

Practical Round-Optimal Blind Signatures in the Standard Model from Weaker Assumptions G. Fuchsbauer , C. Hanser C. Kamath , and D. Slamanig Ecole Normale Sup erieure, Paris IAIK, Graz University of Technology,

391 views • 21 slides
Lecture 10: Electronic Cash and Oblivious Transfer Helger Lipmaa Helsinki University of

Lecture 10: Electronic Cash and Oblivious Transfer Helger Lipmaa Helsinki University of

T-79.159 Cryptography and Data Security Lecture 10: Electronic Cash and Oblivious Transfer Helger Lipmaa Helsinki University of Technology helger@tcs.hut.fi T-79.159 Cryptography and Data Security, 09.04.2003 Lecture 10: Electronic Cash and OT,

662 views • 27 slides
Secure protocols on BIP-taproot 2019-06-08 Jonas Nick jonasd.nick@gmail.com

Secure protocols on BIP-taproot 2019-06-08 Jonas Nick jonasd.nick@gmail.com

Secure protocols on BIP-taproot 2019-06-08 Jonas Nick jonasd.nick@gmail.com https://nickler.ninja @n1ckler GPG: 36C7 1A37 C9D9 88BD E825 08D9 B1A7 0E4F 8DCD 0366 Disclaimer Its not at all certain that a BIP-taproot softfork activates in

375 views • 25 slides
Computer Security: Public Key Crypto B. Jacobs Institute for Computing and Information Sciences

Computer Security: Public Key Crypto B. Jacobs Institute for Computing and Information Sciences

Public key crypto RSA Essentials Public Key Crypto in Java Radboud University Nijmegen Public key protocols Diffie-Hellman and El Gamal Computer Security: Public Key Crypto B. Jacobs Institute for Computing and Information Sciences

1.23k views • 100 slides
Delegatable Functional Signatures Michael Backes, Sebastian Meiser , Dominique Schrder Public

Delegatable Functional Signatures Michael Backes, Sebastian Meiser , Dominique Schrder Public

Delegatable Functional Signatures Michael Backes, Sebastian Meiser , Dominique Schrder Public Key Cryptography, March 7, 2016, Taipei What is a malleable Signature? Alice (original signer) Alice signed this message! We introduce del

442 views • 31 slides
NAME-ES 20 novembre 2002 Yves Leroux, David Ankri, Fabrice Scemama SISGEM Agenda Why NAME

NAME-ES 20 novembre 2002 Yves Leroux, David Ankri, Fabrice Scemama SISGEM Agenda Why NAME

STORCK 2002 conference IST project :Smart IS Accompanying Measure NAME-ES 20 novembre 2002 Yves Leroux, David Ankri, Fabrice Scemama SISGEM Agenda Why NAME and NAME-ES ? Different perspectives about signature Cryptographic

471 views • 9 slides
Proving tight security for Rabin-Williams signatures D. J. Bernstein Public-key signatures 1976

Proving tight security for Rabin-Williams signatures D. J. Bernstein Public-key signatures 1976

Proving tight security for Rabin-Williams signatures D. J. Bernstein Public-key signatures 1976 Diffie Hellman: Public-key signatures would allow verification by anyone, not just signer. Cool! Can we build a signature system? 1977 Rivest

743 views • 33 slides

More recommend