An Evaluation of Potential Attack Surfaces Based on Attack Tree Modelling and Risk Matrix Applied to Self-Sovereign Identity

Nitin Naik*, Paul Grace, Paul Jenkins, Kshirasagar Naik, Jingping Song

*Corresponding author for this work

Research output: Contribution to journalArticlepeer-review

Abstract

Self-Sovereign Identity (SSI) empowers users to govern their digital identity and personal data. This approach has changed the identity paradigm where users become the central governor of their identity; hence the rapid growth of the SSI model. Utilizing the security and privacy properties of blockchain, together with other security technologies, SSI purports to provide a robust security and privacy service. However, this governing power for users comes with a greater accountability and security risk, as not all users are capable or trained in its use and therefore in its efficient application. This trade-off requires a systematic evaluation of potential attacks on the SSI system and their security risks. Hitherto, there have been no noteworthy research studies performed to evaluate potential attacks on the SSI system and their security risks. This paper proposes an easy, efficient and economical approach to perform an evaluation of potential attacks on the SSI system and their security risks. This approach utilises a combination of an attack tree model and risk matrix model to perform this evaluation of potential attacks and their security risks, in addition to outlining a systematic approach including describing the system architecture and determining its assets in order to perform this evaluation of potential attacks and their security risks. This evaluation work has identified three potential attacks on the SSI system: faking identity, identity theft and distributed denial of service attacks, and performed their security risk evaluation utilising the proposed approach. Finally, this paper has proposed several mitigation strategies for the three evaluated attacks on the SSI system. This proposed evaluation approach is a systematic and generalised approach for evaluating attacks and their security risks, and can be applied to any other IT system.

Original languageEnglish
Article number102808
JournalComputers & Security
Volume120
Early online date19 Jun 2022
DOIs
Publication statusPublished - Sept 2022

Bibliographical note

© 2022 The Authors. CC BY 4.0

Keywords

  • Attack tree model
  • Blockchain
  • DID
  • Decentralized IDentifier
  • Diamond model of intrusion analysis
  • Digital identity
  • Distributed denial of service
  • Distributed ledger technology
  • Faking identity
  • Identity management system
  • Identity theft
  • Lockheed Martin's cyber kill chain
  • MITRE ATT&CK framework
  • Risk matrix model
  • SSI
  • Self-sovereign identity
  • Verifiable credential

Fingerprint

Dive into the research topics of 'An Evaluation of Potential Attack Surfaces Based on Attack Tree Modelling and Risk Matrix Applied to Self-Sovereign Identity'. Together they form a unique fingerprint.

Cite this