English
Related papers

Related papers: Decoupling Identity from Access: Credential Broker…

200 papers

CI/CD systems have become privileged automation agents in modern infrastructure, but their identity is still based on secrets or temporary credentials passed between systems. In enterprise environments, these platforms are centralized and…

Cryptography and Security · Computer Science 2025-04-22 Surya Teja Avirneni

This paper introduces the Identity Control Plane (ICP), an architectural framework for enforcing identity-aware Zero Trust access across human users, workloads, and automation systems. The ICP model unifies SPIFFE-based workload identity,…

Cryptography and Security · Computer Science 2025-04-25 Surya Teja Avirneni

"Distributed Identity" refers to the transition from centralized identity systems using Decentralized Identifiers (DID) and Verifiable Credentials (VC) for secure and privacy-preserving authentications. With distributed identity, control of…

Cryptography and Security · Computer Science 2025-01-17 Sina Ahmadi

This paper introduces intent-aware authorization for Zero Trust CI/CD systems. Identity establishes who is making the request, but additional signals are required to decide whether access should be granted. We describe a control loop…

Cryptography and Security · Computer Science 2025-04-22 Surya Teja Avirneni

Vulnerable individuals have a limited ability to make reasonable financial decisions and choices and, thus, the level of care that is appropriate to be provided to them by financial institutions may be different from that required for other…

Computers and Society · Computer Science 2021-06-14 Tasos Spiliotopoulos , Dave Horsfall , Magdalene Ng , Kovila Coopamootoo , Aad van Moorsel , Karen Elliott

The Self-Sovereign Identity (SSI) paradigm is instrumental for decentralised identity management, allowing an entity to create, manage, and present their digital credentials without relying on centralised authorities. Credential selective…

Cryptography and Security · Computer Science 2026-04-14 Elia Onofri , Andrea De Salve , Paolo Mori , Laura Emilia Maria Ricci , Roberto Di Pietro

Authentication with username and password is becoming an inconvenient process for the user. End users typically have little control over their personal privacy, and data breaches effecting millions of users have already happened several…

Distributed, Parallel, and Cluster Computing · Computer Science 2020-06-09 Zoltán András Lux , Dirk Thatmann , Sebastian Zickau , Felix Beierle

Identity-based code signing enables software developers to digitally sign their code using cryptographic keys. This key is then linked to an identity (e.g., through an identity provider), allowing signers to verify both the code's origin…

Cryptography and Security · Computer Science 2025-12-24 Chinenye Okafor , James C. Davis , Santiago Torres-Arias

Anonymous credentials (ACs) are a crucial cryptographic tool for privacy-preserving authentication in decentralized networks, allowing holders to prove eligibility without revealing their identity. However, a major limitation of standard…

Cryptography and Security · Computer Science 2025-12-24 Bin Xie , Rui Song , Xuyuan Cai

This paper attempts to accurately model security requirements for computational grid environments with particular focus on authentication. We introduce the Audited Credential Delegation (ACD) architecture as a solution to some of the…

Software Engineering · Computer Science 2010-01-29 Ali N. Haidar , P. V. Coveney , Ali E. Abdallah , P. Y. A Ryan , B. Beckles , J. M. Brooke , M . A. S. Jones

Self Sovereign Identity (SSI) is an emerging identity system that facilitates secure credential issuance and verification without placing trust in any centralised authority. To bypass central trust, most SSI implementations place blockchain…

Cryptography and Security · Computer Science 2023-08-04 Rahma Mukta , Rue C. Teh , Hye-young Paik , Qinghua Lu , Salil S. Kanhere

Current architectures to validate, certify, and manage identity are based on centralised, top-down approaches that rely on trusted authorities and third-party operators. We approach the problem of digital identity starting from a human…

Computers and Society · Computer Science 2020-02-26 Geoff Goodell , Tomaso Aste

As an emerging paradigm in digital identity, Decentralized Identity (DID) appears advantages over traditional identity management methods in a variety of aspects, e.g., enhancing user-centric online services and ensuring complete user…

Cryptography and Security · Computer Science 2026-01-07 Tianxiu Xie , Keke Gai , Jing Yu , Liehuang Zhu , Bin Xiao

Building on related concepts, like, decentralized identifiers (DIDs), proof of personhood, anonymous credentials, personhood credentials (PHCs) emerged as an alternative approach, enabling individuals to verify to digital service providers…

Cryptography and Security · Computer Science 2025-02-25 Ayae Ide , Tanusree Sharma

Self sovereign identity is a form of decentralised credential management. During credential verification, data exchange only happens between the data owner and the verifier without passing through any third parties. While this approach…

Cryptography and Security · Computer Science 2022-08-10 Kai Jun Eer , Jesus Diaz , Markulf Kohlweiss

Many service systems rely on verifiable identity-related information of their users. Manipulation and unwanted exposure of this privacy-relevant information, however, must at the same time be prevented and avoided. Peer-to-peer…

Cryptography and Security · Computer Science 2022-09-21 Jonathan Heiss , Robert Muth , Frank Pallas , Stefan Tai

The microservice bombshells that have been linked with the microservice expansion have altered the application architectures, offered agility and scalability in terms of complexity in security trade-offs. Feeble legacy-based perimeter-based…

Cryptography and Security · Computer Science 2025-11-10 Rethish Nair Rajendran , Sathish Krishna Anumula , Dileep Kumar Rai , Sachin Agrawal

Authentication and authorization are two key elements of a software application. In modern day, OAuth 2.0 framework and OpenID Connect protocol are widely adopted standards fulfilling these requirements. These protocols are implemented into…

Cryptography and Security · Computer Science 2018-08-21 Kavindu Dodanduwa , Ishara Kaluthanthri

Self-Sovereign Identity (SSI), as a new and promising identity management paradigm, needs mechanisms that can ease a gradual transition of existing services and developers towards it. Systems that bridge the gap between SSI and established…

Cryptography and Security · Computer Science 2024-01-19 Felix Hoops , Florian Matthes

In light of the GDPR, data controllers (DC) need to allow data subjects (DS) to exercise certain data subject rights. A key requirement here is that DCs can reliably authenticate a DS. Due to a lack of clear technical specifications, this…

Cryptography and Security · Computer Science 2024-04-25 Malte Hansen , Andre Büttner
‹ Prev 1 2 3 10 Next ›