You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hi,
I am currently writing a master thesis on the eID. My focus is on privacy of the users in the SSI framework. In particular, anonymity is often avoided because of the lack of accountability and the risk of Sybil attacks (e.g. spamming). However, accountability and anonymity can coexist in a system, leveraging the eID provided by the state.
A motivating example is social media. A citizen want to stay anonymous online, having for example multiple accounts on a social media to express his opinions safely. However, the citizen should be accountable for his words and actions. Therefore, the service should have the possibility to ban all (past and future) accounts from a citizen (under certain conditions and without revealing the real identity).
A framework allowing anonymous but accountable credentials also mitigates the abuse of the eID. Indeed, services might request unique identifiers (like the name) from the citizen more often than necessary to keep to possibility to ban misbehaving users.
What do you think ? Are these properties desirable in the ecosystem of the Swiss eID ?
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
Hi,
I am currently writing a master thesis on the eID. My focus is on privacy of the users in the SSI framework. In particular, anonymity is often avoided because of the lack of accountability and the risk of Sybil attacks (e.g. spamming). However, accountability and anonymity can coexist in a system, leveraging the eID provided by the state.
A motivating example is social media. A citizen want to stay anonymous online, having for example multiple accounts on a social media to express his opinions safely. However, the citizen should be accountable for his words and actions. Therefore, the service should have the possibility to ban all (past and future) accounts from a citizen (under certain conditions and without revealing the real identity).
A framework allowing anonymous but accountable credentials also mitigates the abuse of the eID. Indeed, services might request unique identifiers (like the name) from the citizen more often than necessary to keep to possibility to ban misbehaving users.
What do you think ? Are these properties desirable in the ecosystem of the Swiss eID ?
Best,
Keran
Beta Was this translation helpful? Give feedback.
All reactions