ERUA-iD Walkthrough
Nikos Triantafylloy, UAegean | i4m Lab
Katerina Ksystra, UAegean | i4m Lab
Petros Kavassalis, Dean of the Eng. School & UAegean | Director of i4m Lab
@ERUA 2nd Digital Escape meeting, Chios, Greece May 2023
[Preliminaries]
2
Presentation Objective
The aim of this presentation is to:
3
What is the ERUA-iD?
4
The ERUA-iD
The ERUA-iD is a digital secure “card”, that enables members of the ERUA Alliance to:
5
“givenName”: string
“lastName”: string
“email”: string
“HEI Affiliation”: string
“shachomeInstitution”: string
“schacPersonalUniqueCode”: string
“AllianceID”: string
User Attributes
Tamper resistant envelope (ensure via cryptographic means)
Why is the ERUA-iD needed?
6
How is the ERUA-iD used?
7
Issues ERUA-iD to user
User Journey is Identical when accessing Home HEI or Hosting HEI within the UA
Issuer
Holder
Verifier
Home HEI
UA Service
Presents ERUA-iD to access service
Holder Stores ERUA-iD in a Wallet app
How is the use of the ERUA-iD tested?
8
ERUA-iD goes EBSI
9
What is ?
10
What is EBSI Building?
11
EBSI Ledger (Trust Registry)
Issuer
Holder
Verifier
Credential Schemas
Public Keys
Request Schema
Validate Accreditation
Verify Keys
Presents Academic Credential
Issues Academic Credential
Revocation
Accreditation to Issue
EBSI Trust Framework
Onboard Entity
Data models
protocol
protocol
What is the relationship of EBSI and ERUA: EBSI EA 3
12
What is the goal of the University Alliance Cluster?
13
What Challenges have been Identified?
14
What Technical Solutions have been Designed so Far?
15
In EBSI ERUA-iD was split into these three credentials
Definition of UA Identifier, following the ESI spec
What Governance Frameworks have been defined?
16
MS Ministry
Root TAO > Local MS TAO (e.g. Ministry) > HEI TAO > UA Issuer (MyAcademicID, StudentID, AllianceID)
EBSI Support
HEI
User
Issue Verifiable Authorization
Issue Verifiable Accreditation
Issue Verifiable Attestation
MS Ministry
EBSI Support
HEI
UA Issuer
Issue Verifiable Authorization
Issue Verifiable Accreditation
Issue Verifiable Accreditation
User
Issue Verifiable Attestation
Type A
Type B
Root TAO > Local MS TAO (e.g. Ministry) > HEI Issuer (MyAcademicID, StudentID, AllianceID)
Depends of the Legal Status of UA
ERUA-iD(*) and EBSI EA 3: core pilot service
(*) Member of the EBSI Early Adopter Programme (Wave 3 | 2023)
17
What will the core ERUA EBSI Pilot be?
18
Workshop Workstreams: A living lab for eID research and testing
Workstream 1: Workshop organization
1.1 Workshop Registration (ERUA - EBSI EA3 & EDIW Consortia)
1.2 Access Venue Facilities (ERUA - EBSI EA3 & EDIW Consortia)
1.3 Participation Proof (ERUA - EBSI EA3 & EDIW Consortia)
(+) Workstream 2: Travel to attend a Workshop
2.1 Travel to workshop area | ferry (EWC)
2.2 Travel to workshop area | plane (EWC)
(+) Workstream 3: Third-Party Services and Payments
3.1 Book a hotel (EWC)
3.2 Rent a car (EWC)
3.3 Wallet-based Reimbursement (EWC - eReceipt)
3.4 Get to workshop venue | taxi: A2A & p2p identity-based payments (online and offline)
3.5 Buy local services/products | commerce: A2A & p2p identity-based payments (online)
19
EU Digital Wallet Consortium
Issues to resolve
20
thank you!
21