CIFRIS24 - an event by De Cifris

Venue: Banca d'Italia, Centro D. Menichella, Largo Guido Carli 1, Frascati (Roma)
Social dinner: September 25th, Satiricus, Via dei Corridori 58, Roma
September 25th, 26th, 27th 2024

CPSID24 - Cryptography, Protocols and Security in Digital Identity 2024

Abstract

The seminar dives into the two main current identity standards, EUDI-ARF and W3C-DID/W3C-VC and describe their cryptography, protocols, threat models and mitigations, highlighting pros and cons of each element. The seminar also offers a view about new and emerging cryptographic schemes in the identity space.

Organizers

Andrea D'Intino (Forkbomb B.V., Netherlands)
Denis "Jaromil" Roio (Dyne Foundation, Netherlands)

Program

September 27th, workshop session
Room D, 10:00 - 11:20

September 27th (morning) - Workshop Session
10:00
10:20 		Andrea D'Intino, Dyne Foundation (Netherlands)
Overview of the current digital identity standards
Abstract In this talk we provide an overview of the ongoing digital identity efforts, focusing on the cryptography but including context about the political standpoints as well as the institutional and industry actors involved, int the EU and USA/Canada. We will provide a comparative analysis of the main cryptographic scheme used, along with communication protocols and the data formats for both digital identities and verifiable credentials. Some of the discussed subjects are:
  • Identity and credential formats: eIDAS 2.0 and EUDI-ARF and W3C-DID/VC with DHS, mobile driving licenses and California Issuer of driving license
  • Communication protocols: OpenID4VCI and OpenID4VP
  • Overview of accepted signatures schemes in EUDI-ARF and W3C-VC
  • TEE and cryptographic devices
10:20
10:50 		Francesco Marino, Poligrafico e Zecca dello Stato (Italy)
Current status of the implementation of the Italian Wallet and Trust Framework Infrastructure
Abstract In our talks we will provide an in-depth analysis of the current status of the technical specification involved in the Wallet Architectures and Trust Infrastructure. The focus will then shift to the interoperability challenges at the European level, discussing the key requirements for a trust framework that ensures full interoperability. Finally, a concrete approach will be proposed to meet these requirements and guarantee seamless cross-border interactions between MS Wallet Solutions. Some of the discussed subjects are:
  • Introduction to Trust Models
  • Key Requirements and a proposed interoperability approach for a European Trust Framework
10:50
11:20 		Simone Onofri, W3.org (USA)
Denis Roio, Dyne Foundation (Netherlands)
Challenges and upcoming standards
Abstract In our talks we will discuss the most actively discussed challenges of the existing digital identity standards, with extra focus on privacy. We will focus on the non-unlinkability issue of EUDI-ARF, on the revocation and on possible mitigations that are being discussed and experimented with. Some of the subjects that we discuss are:
  • Security, privacy and human rights considerations (Simone Onofri, Denis Roio)
  • Upcoming cryptography and formats (Denis Roio)
  • BBS+ Zero knowledge proofs
  • Post-quantum cryptography (experimental)
  • Overview of upcoming standards