Skip to Main content Skip to Navigation
Journal articles

Improved Identity Management with Verifiable Credentials and FIDO

Abstract : We describe how FIDO and W3C VCs can overcome the problems of existing identity management systems. We describe our conceptual model and architecture, and the protocol we used by extending FIDO's UAF in order to provide both strong authentication and strong authorization. We built a pilot implementation for U.K. NHS patients to validate our implementation. Patients were able to use a mobile phone with a fingerprint reader to access restricted NHS sites in order to make and cancel appointments and order repeat prescription drugs. Our initial user trials with 10 U.K. NHS patients found the system to be easy to use, and fingerprints to be preferable to using usernames and passwords for authentication.
Complete list of metadata

Cited literature [12 references]  Display  Hide  Download

https://hal.archives-ouvertes.fr/hal-02950805
Contributor : Open Archive Toulouse Archive Ouverte (oatao) Connect in order to contact the contributor
Submitted on : Monday, September 28, 2020 - 12:04:56 PM
Last modification on : Wednesday, November 3, 2021 - 7:16:15 AM
Long-term archiving on: : Thursday, December 3, 2020 - 7:43:01 PM

File

chadwick_26405.pdf
Files produced by the author(s)

Identifiers

Citation

David W. Chadwick, Romain Laborde, Arnaud Oglaza, Rémi Venant, Ahmad Samer Wazan, et al.. Improved Identity Management with Verifiable Credentials and FIDO. IEEE Communications Standards Magazine, Institute of Electrical and Electronics Engineers, 2019, 3 (4), pp.14-20. ⟨10.1109/MCOMSTD.001.1900020⟩. ⟨hal-02950805⟩

Share

Metrics

Record views

202

Files downloads

188