Back to top

A Universal System for OpenID Connect Sign-ins with Verifiable Credentials and Cross-Device Flow

Last modified Oct 9, 2024
   No tags assigned

Self-Sovereign Identity (SSI), as a new and promising identity management paradigm, needs mechanisms that can ease a gradual transition of existing services and developers towards it. Systems that bridge the gap between SSI and established identity and access management have been proposed but still lack adoption. We propose a comparatively simple system that enables SSI-based sign-ins for services that support the widespread OpenID Connect or OAuth 2.0 protocols. Its handling of claims is highly configurable through a single policy and designed for cross-device authentication flows involving a smartphone identity wallet. We evaluate our design by implementing and successfully integrating it with existing interfacing components.

Files and Subpages

There are no subpages or files.