VeryIDX - A Digital Identity Management System

Research Areas: Assured Identity and Privacy,

Principal Investigator: Elisa Bertino

The goal of this project is to investigate various topics in the area of federated approaches to digital identity management. The project is based on the notion that identity management encompasses two main notion: (i) login management and single-sign on techniques; (ii) management of digital properties (called also identity attributes) representing identity information of individuals (such as SSN, Address, Credit Card Number).

Current results include:
(i) The development of a multi-factor verification of identity attributes. Protocols have been developing allowing a service provider to verify the authenticity and proper use of an identity attribute presented by a party by asking this party to provide other identity attributes. The protocols use efficient zero-knowledge proof protocols to assure the privacy of the attributes submitted by a party to prove its identity. Such protocols are being extended to support also the use of biometric authentication. An implementation of the protocols has also been developed for use on cellular phones, using NFC technology. (ii) The development of identity provenance assessment methodologies. Protocols are being developed that allow a party to trace back the origin of identity information and to assess the quality of such information. Such protocols take into account the fact that in some cases part of such identity information has to be kept confidential.

Keywords: federated identity management, digital identity