ABSTRACT
Within CREDENTIAL, proxy re-encryption is used to enable end-to-end encrypted data sharing without negatively affecting usability or efficiency on the end-user side, as the computation is outsourced to the CREDENTIAL Wallet. Compared to traditional providers of identity and access management systems, providers of the CREDENTIAL Wallet benefit from the end-to-end encryption mechanisms used in our solution, and they can build their business models around our increased security features and guarantees. The use case allowed users to securely authenticate themselves towards an eCommerce platform, while the second use case enabled them to retrieve their data from the CREDENTIAL Wallet and share it with a service provider to subscribe to new services. Finally, the developed CREDENTIAL Wallet was tested through pilots within the highly sensitive domains of eGovernment, eHealth, and eBusiness, where the real-world usability and applicability of the developed solutions has been successfully proven.
