Evaluation of trust service and software product regimes for zero-knowledge proof development under eIDAS 2.0
Ramos Fernández, Raül 
(Universitat Autònoma de Barcelona. Departament de Dret Públic i de Ciències Historicojurídiques)
| Data: |
2024 |
| Resum: |
This paper delves into two legal models for zero-knowledge proof protocols in the context of the eIDAS 2. 0 Regulation: a trust service or a software product. The ARIES: reliAble euRopean Identity EcoSystem EU project highlighted the need for a legal framework for stakeholders to accept proof of the existence of user data with legal certainty, while Hyperledger Indy shows that ZKP solutions are currently commercialized, stressing deficiencies in the eIDAS 2. 0. An overview of ZKP applied to identity, its relationship to the European Digital Identity Wallet and the electronic attestations of attributes, both introduced by the eIDAS 2. 0, and Self-Sovereign Identity systems, leads to the central question of proof of the existence of user-held data as a trust service or as a software product and its data privacy implications for each approach. Finally, we outline a possible solution based on the product approach for future work. Our findings reveal that ZKP technology must have legal value and a presumption system to be effective. However, the path we take could lead us either to develop a system of surveillance and control in electronic environments or to build an environment where we share not the data itself but proof of its existence. |
| Nota: |
Altres ajuts: acords transformatius de la UAB |
| Drets: |
Aquest document està subjecte a una llicència d'ús Creative Commons. Es permet la reproducció total o parcial, la distribució, la comunicació pública de l'obra i la creació d'obres derivades, fins i tot amb finalitats comercials, sempre i quan es reconegui l'autoria de l'obra original.  |
| Llengua: |
Anglès |
| Document: |
Article ; recerca ; Versió publicada |
| Matèria: |
ZKP ;
Eidas 2.0 ;
EUDIW ;
Electronic attestation of attributes ;
SSI ;
Data privacy |
| Publicat a: |
Computer law & security report, Vol. 53 (2024) , p. 105968, ISSN 1873-6734 |
DOI: 10.1016/j.clsr.2024.105968
El registre apareix a les col·leccions:
Articles >
Articles de recercaArticles >
Articles publicats
Registre creat el 2024-05-06, darrera modificació el 2024-05-26
visitant ::
identificació
