Published: Apr 29, 2025
The following papers have been accepted at the 22nd International Conference on Security and Cryptography (SECRYPT 2025):
- Title: Comparison of Credential Status Mechanisms for the Digital Wallet Ecosystem
- Author: Riccardo Germenia, Salvatore Manfredi, Giada Sciarretta, Mario Scuro, Alessandro Tomasi
- Abstract: Digital identity wallets enable citizens to verify their identity and manage digital credentials. A system that offers the possibility of using and presenting credentials, requires the ability to check for their validity, avoiding the use of revoked or suspended credentials. This paper compares traditional and emerging credential status mechanisms to identify the most suitable solutions for the wallet ecosystem, taking in consideration privacy aspects and the set of available features.
- Title: Enhancing National Digital Identity Systems: A Framework for Institutional and Technical Harm Prevention Inspired by Microsoft's Harms Modeling
- Author: Giovanni Corti, Gianluca Sassetti, Amir Sharif, Roberto Carbone, Silvio Ranise
- Abstract: The rapid adoption of National Digital Identity systems (NDIDs) across the globe underscores their role in ensuring the human right to identity. Despite the transformation potential given by digitization, these systems introduce significant challenges, particularly concerning the collection, storage, and sharing of sensitive personal data. These practices can expose individuals and populations to risks such as data breaches and profiling, originating from design and institutional flaws embedded in identity management infrastructures. Existing studies on NDIDs related harms often focus narrowly on technical design issues while neglecting the broader institutional infrastructures that enable such harms. To fill this gap, this paper extends the collection of harms for analysis through a qualitative methodology approach of the existing harm-related literature. Our findings suggest that 80% of NDID-related harms are the product of suboptimal institutions and poor governance models, and that 47.5% of all impacted stakeholders are considered High Risk. By proposing a more accurate harm assessment model and highlighting the strong relationship between harm-enabling NDIDs and suboptimal institutions, this paper provides academia and the industry with a significant contribution that allows to identify the possibility of NDID-related harms at an embryonic state and build the necessary infrastructure to prevent them.
About the conference
- Name: 22nd International Conference on Security and Cryptography (SECRYPT 2025)
- Date: from June 11, 2025 to June 13, 2025
- Location: Bilbao, Spain
- Website: https://secrypt.scitevents.org/?y=2025
