摘要
数字身份是现实空间自然人真实身份在网络空间的映射.传统数字身份是通过中心化管理和控制的,随着人们隐私保护意识的提高,其已不再满足需求.首先,对国内外数字身份的发展现状及趋势进行阐述,分析了国内外数字身份的应用需求,说明了我国数字身份建设向分布式认证模式发展的可能.然后,根据对各国数字身份应用案例的调查研究,深入探讨了分布式数字身份的技术性和安全性.其中,技术性聚焦于实现分布式数字身份的基础设施及技术模型,包括分布式标识(decentralized identifiers,DIDs)、可验证凭证(verifiable credential,VC)以及数字身份钱包等;安全性则关注于各案例的数字身份在核验、鉴别及联合过程中的安全保证.最后,概述了我国当前数字身份建设所面临的挑战,提出了建设符合我国可监管政策要求的分布式数字身份建议.
Digital identity is the mapping of real identity of natural person in cyberspace.Traditional digital identities are centrally managed and controlled.With the improvement of people's privacy protection awareness,these digital identities no longer meet the requirements.This paper first expounds the development status and trends of digital identity at home and abroad,analyzes the application requirements of digital identity,and illustrates the possibility of the development of our national digital identity construction to a decentralized model.Secondly,the technical and security aspects of decentralized identity are thoroughly examined based on the investigation and research of digital identity application scenarios in some nations.Among them,technical aspect focuses on the infrastructure and technical models for realizing decentralized digital identity,including Decentralized Identifiers(DIDs),Verifiable Credential(VC),and digital identity wallets,etc.and security aspect focuses on the verification,authentication,and federation process of digital identities in each case.Finally,this paper concludes by outlining the challenges facing the current digital identity construction in China,and offering suggestions for building a decentralized digital identity according with Chinese situation.
作者
王妮娜
杨帆
桑杰
许雪姣
Wang Nina;Yang Fan;Sang Jie;Xu Xuejiao(Data Communication Science and Technology Research Institution,Beijing 100191;Xingtang Telecommunication Technology Co.Ltd.,Beijing 100191;School of Mathematics and Physics,University of Science and Technology Beijing,Beijing 100083)
出处
《信息安全研究》
CSCD
2023年第10期993-1000,共8页
Journal of Information Security Research
关键词
可信数字身份
分布式身份
数字身份钱包
网络监管
身份信息安全
trusted digital identity
decentralized identity
digital identity wallet
network supervision
identity information security
