We are very delighted to announce that the project  Disposable Identity for Access Control (DIAC) has been selected for funding through the SecurIT Open Call 1. SecurIT is a European project (H2020-Innosup-01) aiming at supporting and co-financing the development of collaborative projects allowing prototyping and experimentation of top-notch technological solutions in the field of security, with respect of the nowadays ethics, legal, and social challenges. The DIAC project was kickstarted on 15th September 2022 with a Support Program meeting organized by SecurIT.

Introduction

DIAC will  provide a service-oriented structure in smart building environments to identify and register end users assigning a secure disposable ID based on cryptographic root IDs and contextual fingerprinting. End users can register for secure but privacy preserving identification (limited and exclusive to the context). Disposable ID attributes will be stored on resilient distributed ledgers by smart contracts. The identification can be done with a smartphone. We cover the access control use of a device that can requisite credentials and the infrastructure for the provision of the Disposable ID.

Project Partners

1st Consortium member (leader)

asvin has been awarded as Best Cybersecurity Startup 2022 by the Cybersecurity Excellence Award. The asvinID project aimed to pioneer a solution to generate unique, secure and trusted identities for IoT devices based on their distinctive characteristics. The project was funded by the Bundesministerium fur Bildung und Forschung (BMBF) under the StartUpSecure initiative. We did research on Physical Unclonable Function (PUF) and built a prototype based on SRAM based PUF using OKdo development board. The IoTrust project was funded under the NGI Trust. The objectives of the project were to research and develop a human centric solution to increase trust and security of IoT devices using noval bootstrapping, trust generation mechanism, over the air updates, peer to peer and distributed ledger technologies.

2nd Consortium Member:

OdinS has participated in the following relevant EU projects: DEMETER, GA 857202, H2020-DT-ICT-08-2019, Building an Interoperable, Data-Driven, and Sustainable EU Agri-Food Sector. PRECIMED, PRIMA IDI20190230, A decision support system for optimizing irrigation/nutrition of agriculture crops. OdinS provide products and solutions based on the latest innovative technologies such as Internet of Things (IoT), Cloud Computing Platforms and Apps for mobile devices.

Innovation

The innovation is actualizing and testing the recent disposable or ephemeral identity frameworks in the context of a real world smart building application. A disposable identity is a contextual and temporary identity, limited in terms of scope, time, location allowing end users to show specific and limited information/credentials in order to validate for a service, in our case, access control of the building. This approach overcomes the drawbacks of the current access control systems in which license to access is granted to individuals for indeterminate lengths of time. It also makes sure the issuer limits GDPR compliance by collecting too much irrelevant data, and be less vulnerable in case of data breaches. This disposable identity will be integrated with an access control device to demonstrate the functionality in a real world situation.

Solution Model

The fact that nowadays everyone has a mobile phone creates an authentication system. The novelty in the solution is that it combines three layers: the Cloud (disposable Identity), the device and the distributed ledger. The proposed innovative model consists of:

  • Mobile phone with Android or iOS system and Bluetooth Low Energy (BLE) technology.
  • Mobile application that will manage the registration of users and obtain disposable identities.
  • Identity generation service.
  • Access control terminal with BLE technology.
  • Validation service.

Further Resources