Abstract
Electronic Identity (eID) is a solution toward solving the identity problem when deploying e-Government. Such solution should not only be secure, but also have to be robust enough under adversarial conditions. In Denmark, NemID is a digital eID used to log into public websites, for online banking and many digital services. However, it suffers from some security threats such as Distributed Denial of Service (DDoS) attack. In 2013, a tremendous DDoS attack over NemID caused chaos in Danish society, people found themselves out-of-reach to many services. Focused on this threat, we develop FolketID, a blockchain-based NemID alternative against DDoS attacks. The DDoS mitigation is achieved by not only utilizing its powerful data distribution ability, but also exploiting the economy system in blockchain. It particularly takes use of the transaction fees to effectively prevent DDoS attacks. In the evaluation, our experimental results demonstrate the viability and effectiveness of FolketID in defeating DDoS attacks. Copyright © 2022 The Author(s), under exclusive license to Springer Nature Switzerland AG.
| Original language | English |
|---|---|
| Title of host publication | Provable and practical security: 16th International Conference, ProvSec 2022, Nanjing, China, November 11–12, 2022, proceedings |
| Editors | Chunpeng GE, Fuchun GUO |
| Place of Publication | Cham |
| Publisher | Springer |
| Pages | 210-227 |
| ISBN (Electronic) | 9783031209178 |
| ISBN (Print) | 9783031209161 |
| DOIs | |
| Publication status | Published - 2022 |
Citation
Chiu, W.-Y., Meng, W., Li, W., & Fang, L. (2022). FolketID: A decentralized blockchain-based NemID alternative against DDoS attacks. In C. Ge & F. Guo (Eds.), Provable and practical security: 16th International Conference, ProvSec 2022, Nanjing, China, November 11–12, 2022, proceedings (pp. 210-227). Springer. https://doi.org/10.1007/978-3-031-20917-8_15Keywords
- Blockchain technology
- DDoS attack
- e-Government
- Identity management
- NemID