Traditional identity management systems, often centralized, face challenges around privacy, data security, and user control, leaving users vulnerable to data breaches and misuse. This paper explores the potential of using the Arweave network to develop an identity management solution. By harnessing Arweave's permanent storage, our solution offers the users a Self-Sovereign Identity (SSI) framework, that uses Decentralized Identifiers (DIDs) and Verifiable Credentials (VCs) to allow individuals and other entities to create, own, and manage their digital identities. Further, the solution integrates privacy-preserving technologies, including zero-knowledge proofs and the BBS(+) signature scheme, enabling selective disclosure. This approach ultimately enhances user privacy and supports compliance with European Union legislation and regulatory standards like the General Data Protection Regulation (GDPR) by design.
翻译:传统身份管理系统通常采用中心化架构,在隐私保护、数据安全和用户控制方面面临诸多挑战,导致用户易受数据泄露和滥用的威胁。本文探讨了利用Arweave网络开发身份管理解决方案的潜力。通过利用Arweave的永久存储特性,我们提出的解决方案为用户提供了自主权身份(SSI)框架,该框架采用去中心化标识符(DID)和可验证凭证(VC)技术,使个人及其他实体能够创建、拥有并管理其数字身份。此外,该方案集成了包括零知识证明和BBS(+)签名方案在内的隐私保护技术,支持选择性披露功能。这一设计方法从根本上增强了用户隐私保护能力,并有助于从系统设计层面符合欧盟《通用数据保护条例》(GDPR)等法律法规要求。