Zagotavljanje varnosti in zasebnosti ob prenosu preverljivih poverilnic
magistrsko delo
Abstract
Samoupravljalna identiteta (SSI) predstavlja nov model identitete, ki spada med decentralizirane
modele upravljanja digitalne identitete. Gre za koncept, ki si prizadeva zagotoviti
večji nadzor in avtonomijo posameznikov nad lastnimi podatki in identiteto v digitalnem
svetu. Varnostne težave so pomemben izziv pri razvoju SSI. Čeprav ta omogoča uporabnikom
popolno avtonomijo nad njihovimi digitalnimi identitetami, obstaja tveganje za
krajo osebnih podatkov ali vdor v digitalne denarnice. Poleg tega lahko napadalci izkoristijo
ranljivosti v shranjevanju kriptografskih ključev in protokolih za šifriranje podatkov.
Da bi rešili te težave, se razvijajo nove metode in protokoli za zagotavljanje varnosti in
zasebnosti pri prenosu podatkov. V sklopu zaključnega dela smo izvedli analizo STRIDE, s
katero smo naslovili nekaj pomembnejših varnostnih groženj, ki se lahko pojavijo med delovanjem
sistema SSI. Prav tako smo razvili prototip rešitve, ki do določene stopnje omili
identificirane varnostne težave in predlaga nov pristop pošiljanja preverljivih poverilnic
med izdajateljem in imetnikom identitete.
Keywords
preverljive poverilnice;blockchain;varnost;zasebnost;magistrske naloge;
Data
| Language: | Slovenian |
|---|---|
| Year of publishing: | 2023 |
| Typology: | 2.09 - Master's Thesis |
| Organization: | UM FERI - Faculty of Electrical Engineering and Computer Science |
| Publisher: | [N. Jeršič] |
| UDC: | 004.056.5(043.2) |
| COBISS: |
158071043
|
| Views: | 273 |
| Downloads: | 75 |
| Average score: | 0 (0 votes) |
| Metadata: |
|
Other data
| Secondary language: | English |
|---|---|
| Secondary title: | Ensuring security and privacy during a verifiable credential transfer |
| Secondary abstract: | Self-Soverign Identity (SSI) represents a new identity model that belongs to decentralized digital identity management models. It is a concept that strives to provide individuals with greater control and autonomy over their own data and identity in the digital world. Security issues are a major challenge in the development of SSI. Although SSI allows users full autonomy over their identities, there is a risk of data theft or hacking digital wallets. In addition, attackers can exploit vulnerabilities in cryptographic keys and data encryption protocols. To address these problems, new methods and protocols are being developed to ensure security and privacy in data transmission. As part of this work, we have carried out a STRIDE analysis to address some of the more important security threats that can arise during SSI operation. We have also developed a solution that mitigates the identified security issues to a certain extent and proposes a new approach for sending verifiable credentials between the issuer and the identity holder. |
| Secondary keywords: | SSI;verifiable credentials;blockchain;security;privacy; |
| Type (COBISS): | Master's thesis/paper |
| Thesis comment: | Univ. v Mariboru, Fak. za elektrotehniko, računalništvo in informatiko, Informatika in tehnologije komuniciranja |
| Pages: | 1 spletni vir (1 datoteka PDF (XI, 67 f.)) |
| ID: | 19093486 |
Recommended works:
Zagotavljanje varnosti in zasebnosti ob prenosu preverljivih poverilnic
2023,
magistrsko delo
Towards a Catalogue of Self-Sovereign Identity Design Patterns
2023,
no subtitle data available
Zasebnost in varnost podatkov za decentralizirani splet stvari
2022,
no subtitle data available
Grožnje zasebnosti uporabnika pametne televizije
2015,
diplomsko delo
Spodbujevalniki za spletno uporabniško zasebnost in varnost
2022,
magistrsko delo