With the project “Self-sovereign Identity Management for privacy-preserving and secure eco-systems”, our Self-Sovereign Identity (SSI) team stood up against 22 other security projects within the Telekom Group. At the Global Security Conference on 1 June, the team was awarded 1st place in the Security CATA Award 2022. Congratulations!
The award was launched for the first time in October 2021 and is aimed at all employees working on safety issues. Under the motto “do good and talk about it”, the call offers a platform for success stories. According to the jury, the SSI project performed best in the following 5 points:
- Innovation (working approach, method, solution)
- Customer benefits (internal, external)
- Digitization, automation, efficiency
- Cooperation (cross-border, cross-functional)
- Sustainability (People, Society & Environment)
What exactly is this project about? Why is it important?
With this project, the SSI team tackles a long-known problem: lack of self-determination over personal data on the Internet and consumer protection. Users generally lose control over their personal data when they enter personal data. Name, address, date of birth – everything is stored on the servers of the authorities or the online retailer and is then viewed, distributed, or even sold. Even if the data protection declaration does not explicitly allow this, users lose their self-determination over their data and are unable to understand the reuse.
However, a secure digital identity is the basic prerequisite for modern eGovernment and is intended to replace identity cards, post-identity procedures or the signing of forms in the online environment. This principle is the central starting point of so-called self-sovereign identity systems (SSI). The aim is to use personal data and identities of individuals sustainably, to manage them securely and thus to securely protect digital credentials.
How is this implemented?
The concept of self-sovereign identity (SSI) turns the traditional distribution of data upside down. Control over the data remains with the user. By means of a digital ID, the user can decide for himself to whom which data will be made available. This is a digital wallet, which contains personal data records electronically. The data contained in the wallet is cryptographically secured by the so-called private key. Personal data is only stored in the owner’s wallet. There is therefore no central database of many user data. The aim is to maintain control over your own data and only have to provide the necessary information.
For public authorities in particular, SSI will be useful with the implementation of the Online Access Act (OZG) by the end of 2022. Together with the ever-increasing demand for data protection, these are good reasons to take a closer look at the issue of self-determined identity.
The way we manage our identities in today’s world is far from ideal. Listen to #tsmms experts Dr. Ivan Gudymenko and Mujtaba Idrees talk about Self Sovereign Identity: