- ユーザプロファイルとしてユーザ名を要求するか
2024年7月27日土曜日
[Auth0/Okta CIC]ログインに使う識別子にメールアドレス・ユーザ名・電話番号を使う
- ユーザプロファイルとしてユーザ名を要求するか
2024年7月26日金曜日
国ごとの国民IDカードのポリシーと状況
Central Population Register (CPR) is a nine digit (all numeric) identification number which is also called as personal number issued for all the residents living in Bahrain. In order to use basic or any services, carry out financial transactions one must have CPR.
中央人口登録(CPR)は、バーレーン在住のすべての住民に発行される9桁(すべて数字)の識別番号で、個人番号とも呼ばれます。基本的なサービスやその他のサービスを利用したり、金融取引を行うには、CPRが必要です。
一方で任意取得にカテゴライズされている日本はこんな感じです。
An Individual Number Card is issued to citizens of Japan as well as legal residents. It was introduced in 2016 and replaces the Juki-Card.
マイナンバーカードは、日本国民および永住権保持者に発行されます。2016年に導入され、住基カードを置き換えます。
なるほど。
こういうデータがまとまっていると色々とインサイトが得られるので面白いですね。
2024年7月25日木曜日
OpenID Connect for Identity Assuranceの最終版がPublic Review期間に入りました
- OpenID Connect for Identity Assurance 1.0
- OpenID Connect for Identity Assurance Claims Registration 1.0
- OpenID Identity Assurance schema definition 1.0
- レビュー期間:7/24 - 9/22(60日間)
- 投票のアナウンス:9/9
- 早期投票のオープン:9/16
- 最終投票期間:9/23 - 9/30(7日間)
2024年7月24日水曜日
空港でのVerifiable Credentialsのユースケース、Digi Yatraが400万ユーザを超えたらしい
Starting with just three airports, Delhi, Bengaluru, and Varanasi, Digi Yatra has expanded its footprint across major airports in the country, including Mumbai, Hyderabad, Pune and Kolkata. Currently operational at 14 airports, very soon Digi Yatra plans to expand to an additional 15 airports.
3つの空港から始まって現在14の空港で利用でき、もうすぐ15番目の空港でも使えるようにする予定らしいです。
By adopting Digi Yatra, passengers have been able to cut down on airport entry time from 15-20 seconds to around 5 seconds.
これまで15-20秒かかっていた空港への入場が5秒で済むようになったとのこと。20秒ならいいじゃんって思ってしまいますが、インドくらいの人口のところだとものすごい効果なのかもしれません。
まぁ、日本でも顔認証ゲートは導入されているので、VCベースかどうかは置いておいて、この流れは世界へ広がっていくんでしょうね。
羽田の顔認証ゲート
https://tokyo-haneda.com/site_resource/flight/pdf/how_to_use_Face_Express_en.pdf
ちなみにあまり詳しい技術情報は書いてありませんが、Digi YatraのCEOの方がFinancial Expressに寄稿した記事には分散Ledgerを使ったDIDとVCによる自己主権型アイデンティティのソリューションである、と書いています。
どうしてもTravel Passというとe-Passport系の話に頭が入ってしまいますが、空港での顧客体験の向上、というキーワードでも色々と適用できそうな場面はありそうですね。
2024年7月23日火曜日
選択的開示に関するReview論文を読む(3)
Table 8. Methods, credentials, ZKP and blockchain in years.
Method | Paper | Year | Credential type | ZKP | Blockchain |
---|---|---|---|---|---|
Hash-based | [54] | 2007 | Digital credential | ||
[55] | 2008 | Digital credential | |||
[56] | 2010 | Digital credential | ✓ | ||
[61] | 2017 | ABC | |||
[50] | 2019 | Digital credential | ✓ | ||
[52] | 2022 | VC | ✓ | ||
[63] | 2022 | Digital credential | ✓ | ✓ | |
[64] | 2023 | VC | ✓ | ||
[62] | 2023 | Digital credential | ✓ | ||
[57] | 2023 | SBT | ✓ | ||
Signature-based | [69] | 2008 | AC | ✓ | |
[67] | 2009 | Digital credential | |||
[72] | 2015 | AC | ✓ | ||
[68] | 2019 | ABC | ✓ | ||
[70] | 2020 | AC | ✓ | ||
[71] | 2022 | VC | ✓ | ✓ | |
[74] | 2023 | ABC | ✓ | ||
[79] | 2023 | AC | ✓ | ||
[77] | 2023 | ABC | ✓ | ✓ | |
[75] | 2023 | AC | ✓ | ||
ZKP | [82] | 2019 | ABC | ✓ | ✓ |
[83] | 2021 | VC | ✓ | ✓ | |
ZKP & Signature-based | [87] | 2013 | AC | ✓ | |
[78] | 2018 | ABC | ✓ | ✓ | |
[88] | 2021 | PABC | ✓ | ||
[89] | 2022 | ABC | ✓ | ||
ZKP & Hash-based | [85] | 2023 | VC | ✓ | ✓ |
[86] | 2023 | AC | ✓ | ✓ | |
Signature-based & Hash-based | [90] | 2020 | VC | ✓ | |
[91] | 2022 | VC | ✓ |
Table 9. Comparison of different credential types.
Type | Algorithma | ZKPa | Blockchaina | Examples | Maturity | Encoding | Characteristics |
---|---|---|---|---|---|---|---|
Digital credential | Hash | / | / | XML, JSON, PDF, blockchain-based formats, cryptographic tokens, smart contracts | Electronic versions of paper credentials. Any form of digital certification. Easily shareable, verifiable online and can improve administrative efficiency. Focused on transparency and traceability. More general and not inherently designed for privacy enhancement, unless otherwise specified. | ||
AC | Signature | ✓ | / | JSON, XML, cryptographic tokens | Designed for anonymity of user. Enhances privacy and security by preventing user tracking and profiling. Complex in implementation. Misuse in avoiding accountability possible. ZKP enhancements and signatures can be computationally intensive. Extended versions more commonly used in practice. | ||
ABC | Signature | ✓ | Idemix, U-prove | IBM, Microsoft, ABC4Trust, PrimeLife | JSON, XML, cryptographic tokens | Extension of ACs focused on attributes. Offers fine granularity over attributes disclosed. Increases user control and enhances privacy. Can be less efficient in terms of computation and storage. Flexibility requires strict policy enforcement mechanisms. Implemented and standardized through extensive work on it. | |
PABC | ZKP & Signature | ✓ | / | / | JSON, cryptographic proofs | Privacy enhancement of ABCs through the use of ZKPs. Maximizes privacy by ensuring minimal data exposure. Increases complexity and computational costs are higher. Lack of standardizations and practical usage. | |
SBT | Hash | ✓ | / | / | Smart contracts, token metadata | Lack of standardization and practical usage. Reliable and immutable proof of attributes. Depends on blockchain which can cause scalability issues. Non-transferability enhances security but causes lack of flexibility and is restrictive. | |
VC | All | ✓ | ✓ | HyperLedger AnonCreds SD-JWT, Multiple wallets | W3C VC | JSON, JSON-LD, JWT, JWP | Standardized format. Credentials can be independently verified (without direct access to the issuer). Highly interoperable and secure. Enhances trust and reduces fraud. Complex in implementation. Needs widespread adoption of the standard. |