A Military IdAM System Based on SSI and ORCON

Stefano Bistarelli, Chiara Luchini and Francesco Santini
Proceedings of the 2023 IEEE International Workshop on Technologies for Defense and Security (TechDefense 2023), Rome, Italy, November 20-22, 2023.
doi: 10.1109/TechDefense59795.2023.10380863

Abstract

Some access control models are used in different fields, including the military sector. An example is the Mandatory Access Control model where resources may be categorized or marked. These models are frequently paired with Identity and Access Management systems, which control the processes of identification, authentication, and authorization. IdAM systems evolved from centralized authority to more user-centric models like Self-Sovereign Identity. The goal of this research is to employ an access control model in conjunction with SSI to manage access to verifiable credentials associated with the identities of individuals or units. To achieve this, we suggest using an ORCON paradigm, in which the creator of verifiable credentials establishes an access policy to improve privacy and protection from unauthorized access attempts.