Enabling Decentralised Identifiers and Verifiable Credentials for Constrained IoT Devices using OAuth-based Delegation

Dmitrij Lagutin, Yki Kortesniemi, Nikos Fotiou and Vasilios A. Siris

Decentralised identiﬁers (DIDs) and veriﬁable credentials (VCs) are upcoming standards for self-sovereign privacy preserving identiﬁers and authorisation, respectively. This focus on privacy can help improve many services and open up new business models, but using DIDs and VCs directly on constrained IoT devices can be problematic due to the management and resource overhead. This paper presents an OAuth-based method to delegate the processing and access policy management to the Authorisation Server thus allowing also systems with constrained IoT devices to beneﬁt from DIDs and VCs.

Paper

Slides

View More Papers

Identity and Privacy vs. economic efficiency in the worldwide...

Prof. Virgil Gligor (CMU), Prof. Pekka Nikander (Aalto U.), Dr. Dmitrij Lagutin (Aalto U.), Dr. Michal Krol (UCL)

DDIFT: Decentralized Dynamic Information Flow Tracking for IoT Privacy...

Nikolaos Sapountzis, Ruimin Sun and Daniela Oliveira

Security Analysis against Spoofing Attacks for Distributed UAVs

Kyo Hyun Kim (University of Illinois at Urbana-Champaign, USA); Siddhartha Nalluri (Duke University, USA); Ashish Kashinath (University of Illinois at Urbana-Champaign, USA); Yu Wang (Duke University, USA); Sibin Mohan (University of Illinois at Urbana-Champaign, USA); Miroslav Pajic (Duke University, USA); Bo Li (University of Illinois at Urbana-Champaign, USA)

UIDS: Unikernel-based Intrusion Detection System for the Internet of...

Vittorio Cozzolino, Nikolai Schwellnus (Technical University of Munich, Germany); Aaron Yi Ding (Delft University of Technology, The Netherlands); Jörg Ott (Technical University of Munich, Germany)