ETRI-Knowledge Sharing Plaform

ENGLISH

성과물

논문 검색
구분 SCI
연도 ~ 키워드

상세정보

학술지 A Security Analysis of Blockchain-Based Did Services
Cited 3 time in scopus Download 23 time Share share facebook twitter linkedin kakaostory
저자
김봉곤, 조영섭, 김석현, 김형식, 우사이먼성일
발행일
202102
출처
IEEE Access, v.9, pp.22894-22913
ISSN
2169-3536
출판사
IEEE
DOI
https://dx.doi.org/10.1109/ACCESS.2021.3054887
협약과제
20HR3600, O2O 서비스를 위한 무자각 증강인증 및 프라이버시가 보장되는 블록체인 ID 관리 기술 개발, 김수형
초록
Decentralized identifiers (DID) has shown great potential for sharing user identities across different domains and services without compromising user privacy. DID is designed to enable the minimum disclosure of the proof from a user's credentials on a need-to-know basis with a contextualized delegation. At first glance, DID appears to be well-suited for this purpose. However, the overall security of DID has not been thoroughly examined. In this paper, we systemically explore key components of DID systems and analyze their possible vulnerabilities when deployed. First, we analyze the data flow between DID system components and analyze possible security threats. Next, we carefully identify potential security threats over seven different DID functional domains, ranging from user wallet to universal resolver. Lastly, we discuss the possible countermeasures against the security threats we identified.
키워드
attack surface, blockchain, blockchain redaction, data exfiltration, decentralized key management system (DKMS), DID, universal resolver
KSP 제안 키워드
Attack Surface, BlockChain, Data Flow, Data exfiltration, Different domains, Key Components, Key Management System, User Privacy, security analysis, security threats, system components
본 저작물은 크리에이티브 커먼즈 저작자 표시 (CC BY) 조건에 따라 이용할 수 있습니다.
저작자 표시 (CC BY)