Skip to main content

Oblivious identitY Management for Private and User-friendly Services

Objective

At first sight, privacy and strong identity seem inherently at odds. Indeed, if users are strongly identified during a transaction, then privacy is non-existent. Nevertheless, there exist mechanisms that can reconcile privacy and strong identity, either by trusting an online identity provider (IDP), or by using cryptographic mechanisms such as anonymous credentials.

The former approach, made popular by technologies such as SAML, OpenID Connect, and Facebook Connect, has the disadvantage that the IDP forms a single point of failure in terms of privacy and security, because it can impersonate and track its users online. The latter approach has the disadvantage that users have to rely on trusted hardware such as smartcards to protect credentials from compromise and from illegitimate sharing.

OLYMPUS will take a radically new approach offering the seamless user experience of online IDPs, but without their drawbacks. Namely, OLYMPUS will pioneer the concept of distributed oblivious identity management, where the role of the IDP is split over multiple authorities, so that no single authority can track or impersonate their users. By exploiting advanced techniques based on threshold cryptography, the OLYMPUS framework will let users maintain unlinkable identities with different service providers while using standard devices and a single password or biometric.

By leveraging existing eID solutions to create a strong link to physical identities, and by integrating into existing frameworks to ease adoption by service providers, OLYMPUS will establish a secure and interoperable European identity management framework. Its practical feasibility and relevance will be demonstrated in two pilots. The first combines the framework with soft identity proofs to build a mobile driver license application that can be used for offline purchases of restricted goods. The second use case will leverage pseudonymous identification in the financial world to simplify online credit application

Call for proposal

H2020-DS-SC7-2017
See other projects for this call

Coordinator

UNIVERSIDAD DE MURCIA
Address
Avenida Teniente Flomesta S/n - Edificio Convalecencia
30003 Murcia
Spain
Activity type
Higher or Secondary Education Establishments
EU contribution
€ 677 687,50

Participants (5)

IBM RESEARCH GMBH
Switzerland
EU contribution
€ 656 278,88
Address
Saeumerstrasse 4
8803 Rueschlikon
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)
ALEXANDRA INSTITUTTET A/S
Denmark
EU contribution
€ 525 625
Address
Aabogade 34
8200 Aarhus N
Activity type
Research Organisations
MULTICERT - SERVICOS DE CERTIFICACAO ELECTRONICA SA
Portugal
EU contribution
€ 229 687,50
Address
Lagoas Parque Edificio 3 Piso 3
2740 266 Porto Salvo
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)
LOGALTY SERVICIOS DE TERCERO DE CONFIANZA SL SME
Spain
EU contribution
€ 284 597,25
Address
Avenida De La Industria 49
28108 Madrid
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)
SCYTALES AB
Sweden
EU contribution
€ 190 603,88
Address
Polygonvagen 53
187 66 Taby
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)