A Self-sovereign Identity Framework Using Blockchain for Privacy-Preserving Data Management
摘要
Digital identity management is a critical enabler for secure, privacy-respecting access to digital services, yet traditional systems often suffer from centralised control, data leaks, and limited user data management. To overcome these limitations, this contribution presents a novel Self-Sovereign Identity (SSI) framework that leverages blockchain technology to empower users with full control over their digital identities. The proposed system integrates Decentralised Identifiers (DIDs), Verifiable Credentials (VCs) encoded as JSON Web Tokens (JWTs), and Elliptic Curve Cryptography (ECC) to provide a lightweight, secure, and privacy-preserving identity management solution. Furthermore, the use of blockchain-based verifiable data registries ensures immutability, transparency, and trust in credential verification processes. Privacy is further reinforced through Zero-Knowledge Proofs (ZKPs) and secure peer-to-peer communication via DIDComm. A complete SSI architecture is implemented and validated through a functional prototype in the hotel reservation domain, demonstrating the feasibility of decentralised identity provisioning, selective disclosure, and user-centric data sovereignty. The framework supports scalability and interoperability across services and stakeholders while maintaining compliance with privacy regulations and World Wide Web Consortium (W3C) standards. This research contributes a practical and extensible SSI infrastructure that bridges blockchain and identity technologies, offering a promising foundation for next-generation intelligent digital trust ecosystems.