Author:
Pericàs-Gornals Rosa,Mut-Puigserver Macià,Payeras-Capellá M. Magdalena,Cabot-Nadal Miquel Á.,Ramis-Bibiloni Jaume
Abstract
AbstractDigital credentials are being issued by authorized entities to facilitate the digital identification of their users. Blockchain offers some inherent features that are highly advantageous for the management of credentials. Non-fungible tokens, or NFTs, might seem to be a perfect fit for the implementation of digital credentials. However, some crucial requirements for credentials are the non-transferability of the credential and that the authorized entity should receive explicit acceptance from the user who will own the new credential, which are features lacking in the current NFTs. This paper introduces a management system focused on issuing digital access credentials, enhancing traditional features by enabling the association of terms and conditions (T &C) during issuance and providing users with non-repudiation of reception evidence upon acceptance. Leveraging an enhanced version of the soulbound tokens (SBTs), called RejSBTs, introduced in our previous work, the new system guarantees non-repudiation of reception and origin proofs. Furthermore, we provide a detailed implementation of the system, including solidity smart contracts, accompanied by a comprehensive cost and security analysis.
Funder
Agencia Española de Investigación
Publisher
Springer Science and Business Media LLC
Reference24 articles.
1. Brands D (2002) A technical overview of digital credentials
2. Weyl EG, Ohlhaver P, Buterin V (2022) Decentralized society: finding web3’s soul. https://doi.org/10.2139/ssrn.4105763
3. Cabot-Nadal MA, Payeras-Capellá M, Mut-Puigserver M, Soto-Fernández A (2022) Improving the token ERC-721 implementation for selective receipt: rejectable NFTs, In: 2022 6th International conference on system reliability and safety (ICSRS), pp 243–250. https://doi.org/10.1109/ICSRS56243.2022.10067494
4. Pericás-Gornals R, Mut-Puigserver M, Payeras-Capellá MM, Cabot-Nadal MÁ, Ramis-Bibiloni J (2023) Rejectable soulbound tokens for credentials assignment and acceptance of terms. In: 2023 7th Cyber security in networking conference (CSNet), pp 212–218. https://doi.org/10.1109/CSNet59123.2023.10339728
5. Brands S (1997) Privacy-protected transfer of electronic information. U.S. patent ser. no. 5,604,805. Filed August 1993