Skip to main content

Oblivious identitY Management for Private and User-friendly Services

Objective

At first sight, privacy and strong identity seem inherently at odds. Indeed, if users are strongly identified during a transaction, then privacy is non-existent. Nevertheless, there exist mechanisms that can reconcile privacy and strong identity, either by trusting an online identity provider (IDP), or by using cryptographic mechanisms such as anonymous credentials.

The former approach, made popular by technologies such as SAML, OpenID Connect, and Facebook Connect, has the disadvantage that the IDP forms a single point of failure in terms of privacy and security, because it can impersonate and track its users online. The latter approach has the disadvantage that users have to rely on trusted hardware such as smartcards to protect credentials from compromise and from illegitimate sharing.

OLYMPUS will take a radically new approach offering the seamless user experience of online IDPs, but without their drawbacks. Namely, OLYMPUS will pioneer the concept of distributed oblivious identity management, where the role of the IDP is split over multiple authorities, so that no single authority can track or impersonate their users. By exploiting advanced techniques based on threshold cryptography, the OLYMPUS framework will let users maintain unlinkable identities with different service providers while using standard devices and a single password or biometric.

By leveraging existing eID solutions to create a strong link to physical identities, and by integrating into existing frameworks to ease adoption by service providers, OLYMPUS will establish a secure and interoperable European identity management framework. Its practical feasibility and relevance will be demonstrated in two pilots. The first combines the framework with soft identity proofs to build a mobile driver license application that can be used for offline purchases of restricted goods. The second use case will leverage pseudonymous identification in the financial world to simplify online credit application

Call for proposal

H2020-DS-2016-2017

See other projects for this call

Sub call

H2020-DS-SC7-2017

Coordinator

UNIVERSIDAD DE MURCIA
Net EU contribution
€ 677 687,50
Address
Avenida Teniente Flomesta S/n - Edificio Convalecencia
30003 Murcia
Spain

See on map

Region
Región de Murcia Murcia
Activity type
Higher or Secondary Education Establishments
Other funding
€ 0,00

Participants (5)

IBM RESEARCH GMBH
Switzerland
Net EU contribution
€ 656 278,88
Address
Saeumerstrasse 4
8803 Rueschlikon

See on map

Region
Schweiz/Suisse/Svizzera Zürich Zürich
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)
Other funding
€ 281 262,37
ALEXANDRA INSTITUTTET A/S
Denmark
Net EU contribution
€ 525 625,00
Address
Aabogade 34
8200 Aarhus N

See on map

Region
Danmark Midtjylland Østjylland
Activity type
Research Organisations
Other funding
€ 0,00
MULTICERT - SERVICOS DE CERTIFICACAO ELECTRONICA SA
Portugal
Net EU contribution
€ 229 687,50
Address
Lagoas Parque Edificio 3 Piso 3
2740 266 Porto Salvo

See on map

Region
Continente Área Metropolitana de Lisboa Área Metropolitana de Lisboa
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)
Other funding
€ 98 437,50
LOGALTY SERVICIOS DE TERCERO DE CONFIANZA SL SME
Spain
Net EU contribution
€ 284 597,25
Address
Avenida De La Industria 49
28108 Madrid

See on map

Region
Comunidad de Madrid Comunidad de Madrid Madrid
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)
Other funding
€ 121 970,25
SCYTALES AB
Sweden
Net EU contribution
€ 190 603,88
Address
Polygonvagen 53
187 66 Taby

See on map

Region
Östra Sverige Stockholm Stockholms län
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)
Other funding
€ 81 687,37