分散标识系统中DID文档更新过程的漏洞分析

2021 International Conference on Information Networking (ICOIN) Pub Date : 2021-01-13 DOI:10.1109/ICOIN50884.2021.9334011

Min-Hyung Rhie, Kyung-Hoon Kim, Dongyeop Hwang, Ki-Hyung Kim

{"title":"分散标识系统中DID文档更新过程的漏洞分析","authors":"Min-Hyung Rhie, Kyung-Hoon Kim, Dongyeop Hwang, Ki-Hyung Kim","doi":"10.1109/ICOIN50884.2021.9334011","DOIUrl":null,"url":null,"abstract":"In this paper, we analyzed the vulnerabilities that could occur when a third party who is not the owner of a Decentralized Identifier (DID) has the authority to modify a DID Document. DID is a technology that allows individuals to have data sovereignty. The DID Document contains information for authenticating the DID owner. A DID Controller has the authority to modify DID Document. This authority is being standardized so that it can be held by third parties as well as DID owners. It is a matter of changing the DID document against the will of the DID owner. To help owners assert their sovereignty even stronger, we propose a way for DID owners to use a policy, history, and service to verify the DID Document updating process.","PeriodicalId":6741,"journal":{"name":"2021 International Conference on Information Networking (ICOIN)","volume":"99 1","pages":"517-520"},"PeriodicalIF":0.0000,"publicationDate":"2021-01-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":"{\"title\":\"Vulnerability Analysis of DID Document’s Updating Process in the Decentralized Identifier Systems\",\"authors\":\"Min-Hyung Rhie, Kyung-Hoon Kim, Dongyeop Hwang, Ki-Hyung Kim\",\"doi\":\"10.1109/ICOIN50884.2021.9334011\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In this paper, we analyzed the vulnerabilities that could occur when a third party who is not the owner of a Decentralized Identifier (DID) has the authority to modify a DID Document. DID is a technology that allows individuals to have data sovereignty. The DID Document contains information for authenticating the DID owner. A DID Controller has the authority to modify DID Document. This authority is being standardized so that it can be held by third parties as well as DID owners. It is a matter of changing the DID document against the will of the DID owner. To help owners assert their sovereignty even stronger, we propose a way for DID owners to use a policy, history, and service to verify the DID Document updating process.\",\"PeriodicalId\":6741,\"journal\":{\"name\":\"2021 International Conference on Information Networking (ICOIN)\",\"volume\":\"99 1\",\"pages\":\"517-520\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-01-13\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"5\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2021 International Conference on Information Networking (ICOIN)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICOIN50884.2021.9334011\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 International Conference on Information Networking (ICOIN)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICOIN50884.2021.9334011","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 5

摘要

在本文中，我们分析了当非分散标识符(DID)所有者的第三方有权修改DID文档时可能发生的漏洞。DID是一种允许个人拥有数据主权的技术。DID文档包含用于验证DID所有者的信息。DID控制器有权修改DID文档。该权限正在标准化，以便第三方和DID所有者都可以持有该权限。这是一个违背DID所有者意愿更改DID文件的问题。为了帮助所有者更有力地维护他们的主权，我们提出了一种方法，让DID所有者使用策略、历史记录和服务来验证DID文档更新过程。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

Vulnerability Analysis of DID Document’s Updating Process in the Decentralized Identifier Systems

In this paper, we analyzed the vulnerabilities that could occur when a third party who is not the owner of a Decentralized Identifier (DID) has the authority to modify a DID Document. DID is a technology that allows individuals to have data sovereignty. The DID Document contains information for authenticating the DID owner. A DID Controller has the authority to modify DID Document. This authority is being standardized so that it can be held by third parties as well as DID owners. It is a matter of changing the DID document against the will of the DID owner. To help owners assert their sovereignty even stronger, we propose a way for DID owners to use a policy, history, and service to verify the DID Document updating process.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2021 International Conference on Information Networking (ICOIN)

自引率

0.00%

发文量