WO2021137833A1 - A system for creating digital identity - Google Patents

A system for creating digital identity Download PDF

Info

Publication number
WO2021137833A1
WO2021137833A1 PCT/TR2020/051427 TR2020051427W WO2021137833A1 WO 2021137833 A1 WO2021137833 A1 WO 2021137833A1 TR 2020051427 W TR2020051427 W TR 2020051427W WO 2021137833 A1 WO2021137833 A1 WO 2021137833A1
Authority
WO
WIPO (PCT)
Prior art keywords
authenticating
server
institution server
data
electronic device
Prior art date
Application number
PCT/TR2020/051427
Other languages
French (fr)
Inventor
Okan CELEP
Serhan Mert Kir
Recep Yildiz
Gurcan ERIM
Mikail Abdullah ORAL
Original Assignee
Turkcell Teknoloji Arastirma Ve Gelistirme Anonim Sirketi
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Turkcell Teknoloji Arastirma Ve Gelistirme Anonim Sirketi filed Critical Turkcell Teknoloji Arastirma Ve Gelistirme Anonim Sirketi
Publication of WO2021137833A1 publication Critical patent/WO2021137833A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3236Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
    • H04L9/3239Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions involving non-keyed hash functions, e.g. modification detection codes [MDCs], MD5, SHA or RIPEMD
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/64Protecting data integrity, e.g. using checksums, certificates or signatures
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • G06F21/73Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information by creating or determining hardware identification, e.g. serial numbers
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/104Peer-to-peer [P2P] networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/2866Architectures; Arrangements
    • H04L67/30Profiles
    • H04L67/306User profiles
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/50Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using hash chains, e.g. blockchains or hash trees

Definitions

  • the present invention relates to a system which enables to store users’ official credentials or unofficial credentials like certificates they have -such as sports club membership- in a blockchain infrastructure as approved by the institution wherefrom the information is received, and enables the institutions to use the credentials to access the said user credentials by means of a blockchain infrastructure.
  • the United States patent document no. US20190305964 discloses a method for using digital credentials in order to authorize user devices.
  • the method in the said invention enables to perform identification by means of blockchain algorithm. It is enabled to store and manage users’ encrypted credential that can be stored in their mobile devices, and digital identities received from different addresses.
  • An objective of the present invention is to realize a system and method developed for keeping users’ official credentials or unofficial credentials such as sports club membership, certificates they have, payment performance on a mobile device and storing evidences of credentials in a blockchain infrastructure as approved by the institution wherefrom the credentials are received, and enabling institution to use the credentials to access authenticity of the said user credentials by means of a blockchain infrastructure.
  • Figure 1 is a schematic view of the inventive system.
  • the inventive system (1) developed for storing evidences of users’ official or unofficial credentials in a blockchain infrastructure as approved by the institution wherefrom the information is received, and enabling the institutions to use the credentials to access the said user credentials by means of a blockchain infrastructure comprises: at least one electronic device (2) which is configured to realize data exchange with remote servers by using any remote communication protocol; and to run at least one application on it; at least one authentication application (3) which is run on the electronic device (2) and configured to ensure that at least transactions of adding credential or verifying credential are carried out; at least one database (4) which is configured to keep identity data of users such that these are associated with a distinctive token about the users, under record in it; at least one blockchain network (5) which is configured to keep evidences of identity data created about the users and approved by authenticating institutions, under record in it; at least one authenticating institution server (6) which is configured to establish communication with the electronic device (2) by using any remote communication protocol; to realize data exchange with the authentication application (3) being run on the electronic device (2) over this communication established; to manage the database (4); to connect to the database
  • the electronic device (2) included in the inventive system (1) is a device such as smartphone, tablet, desktop, or portable computer configured to run at least one authentication application (3) on it.
  • the said electronic device (2) is configured to have at least one camera with the capability to take image, on it.
  • the electronic device (2) is configured to establish communication with the authenticating institution server (6), the verifying institution server (7) and the income server (8) by using any remote communication protocol in the state of the art; and to ensure that data exchange is realized over this communication established.
  • the electronic device (2) is configured to establish connection with the authenticating institution server (6), the verifying institution server (7) and the income server (8) over a data network such as Internet.
  • the authentication application (3) included in the inventive system (1) is run on the electronic device (2) and configured to ensure that at least transactions of adding credential or verifying credential are carried out.
  • the said authentication application (3) is configured to realize data exchange with the authenticating institution server (6) over the communication established between the electronic device (2) and the authenticating institution server (6) by using any remote communication protocol in the state of the art.
  • the authentication application (3) is configured to provide an interface adapted such that it will enable persons to sign up to the said authentication application (3) by a username and password.
  • the said authentication application (3) is configured to provide at least one interface adapted such that it will enable persons to login by their username and password whereby they signed up.
  • the authentication application (3) is configured to ensure that the camera located on the electronic device (2) is turned on upon the user logs in.
  • the authentication application (3) is configured to ensure that the QR code created by the authenticating institution server (6) and comprising the credentials is scanned.
  • the authentication application (3) is configured to ensure that the approved credentials obtained from the authenticating institution server (6) by the scanned QR code is recorded on the electronic device (2).
  • the said authentication application (3) is configured to provide an interface adapted such that it will enable to view the approved credentials.
  • the database (4) included in the inventive system (1) is configured to be managed by the authenticating institution server (6).
  • the said database (4) is configured to keep identity data of users such that these are associated with a distinctive token about the users, under record in it.
  • the blockchain network (5) included in the inventive system (1) is a database enabling to store the data in an encrypted form; having a distributed structure that has various consensus models requiring multi-user participation to be verified; and wherein encrypted data are stored in blocks by being added successively.
  • the blockchain network (5) has a configuration wherein the data kept in it by public keys are open for public access and users can perform data exchange.
  • the said blockchain network (5) is configured to establish communication with the authenticating institution server (6) and the verifying institution server (7).
  • the blockchain network (5) is configured to keep the credentials created about the users and approved by the authenticating institution server (6) under record in it.
  • the authenticating institution server (6) included in the inventive system (1) is configured to establish communication with the electronic device (2) by using any remote communication protocol; to realize data exchange with the authentication application (3) being run on the electronic device (2) over this communication established.
  • the authenticating institution server (6) is configured to manage the database (4) by transactions such as making a new data record inside the database (4), deleting the recorded data inside the database (4) or updating the data recorded inside the database (4) by changing the data recorded inside the database (4).
  • the authenticating institution server (6) is configured to access the blockchain network (5) and to make data record to the blockchain network (5).
  • the authenticating institution server (6) is configured to query the person who transmits the authentication request inside the database (4) by connecting to the database (4) when a request of receiving a credential is transmitted from the authentication application (3).
  • the said authenticating institution server (6) is configured to match the users’ identity data obtained from the database (4), with an approval signature and a QR code and then save these to the blockchain network (5).
  • the verifying institution server (7) included in the inventive system (1) is configured to access the blockchain network (5) and to establish communication with the income server (8) by using any remote communication protocol in the state of the art.
  • the said verifying institution server (7) is configured to access the blockchain network (5) upon being triggered by a verification request transmitted in relation to a user and to receive the approved identity data about the said user from the blockchain network (5).
  • the income server (8) included in the inventive system (1) is configured to be in communication with the authenticating institution server (6) and the verifying institution server (7).
  • the said income server (8) is configured to keep the authentication requests and transactions under record.
  • the income server (8) is configured to keep the authentication requests and transactions under record; to record the fee data set specifically for institutions using the credentials, for each identity authentication transaction of an institution authenticating the identity data; and to calculate the fees that must be received by an institution authenticating credentials at certain periods and paid by an institution transmitting an authenticating request.
  • the advertisement server (9) included in the inventive system (1) is configured to receive a request of advertising transmitted from related institutions via any communication means; to ensure that a notification is sent to all users about the advertisement content am the display conditions; and to control whether the user information included on the electronic device (2) fulfil the conditions.
  • the said advertisement server (9) is configured to ensure that a notification is sent to the user electronic devices (2) fulfilling the advertising conditions, about the said advertisements.
  • inventive system (1) it is ensured that digital identities of persons are created and these are stored in a blockchain network (5) which has a distributed structure and is open for public access, upon being approved by institutions whereto the identities are provided. Thereby, institutions requesting to get their users’ identities verified can easily verify the users by accessing evidences of the approved user credentials being stored in the blockchain network (5).
  • inventive “System for Creating Digital Identity (1)” it is possible to develop various embodiments of the inventive “System for Creating Digital Identity (1)”; the invention cannot be limited to examples disclosed herein and it is essentially according to claims.

Abstract

The present invention relates to a system (1) which enables to store users' official credentials or unofficial credentials like certificates they have -such as sports club membership- in a blockchain infrastructure as approved by the institution wherefrom the information is received, and enables the institutions to use the credentials to access the said user credentials by means of a blockchain infrastructure.

Description

A SYSTEM FOR CREATING DIGITAL IDENTITY Technical Field
The present invention relates to a system which enables to store users’ official credentials or unofficial credentials like certificates they have -such as sports club membership- in a blockchain infrastructure as approved by the institution wherefrom the information is received, and enables the institutions to use the credentials to access the said user credentials by means of a blockchain infrastructure.
Background of the Invention Today due to increasing cybercrimes, it is required to verify identity of persons in on line transactions. Credentials provided to systems by persons can be verified only by communicating with the related state institutions or other authorities.
Therefore, considering the studies and the deficiencies in the state of the art, it is understood that there is need for a system for authenticating credentials by receiving these from a blockchain network that is open for access of institutions without the need to contact the authorities.
The United States patent document no. US20190305964, an application in the state of the art, discloses a method for using digital credentials in order to authorize user devices. The method in the said invention enables to perform identification by means of blockchain algorithm. It is enabled to store and manage users’ encrypted credential that can be stored in their mobile devices, and digital identities received from different addresses. In the said system, steps of: the user being registered to the credential authentication system, saving the digital credential generated in the credential authentication system to the blockchain algorithm and generating it in the form of QR code, the user saving his/her digital identity to his/her mobile device by scanning the QR code by his/her mobile device, the user sending a login request to a verification system that is logged in by digital identity, generating a QR code that lists the digital identity data requested by the verification system, the user learning the requested digital identity data by scanning the QR code by his/her mobile device, determining from the identity sharing platform whether the verification system has access right to the requested data or not, sending the digital identity registered in the mobile device to the verification system having the access right, the verification system confirming the digital identity information received from the user’s mobile device in the identity blockchain platform, presenting permission to use the verifying system to the user having the confirmed digital identity, marking the changed or expired digital identities as invalid in the blockchain algorithm are realized.
Summary of the Invention
An objective of the present invention is to realize a system and method developed for keeping users’ official credentials or unofficial credentials such as sports club membership, certificates they have, payment performance on a mobile device and storing evidences of credentials in a blockchain infrastructure as approved by the institution wherefrom the credentials are received, and enabling institution to use the credentials to access authenticity of the said user credentials by means of a blockchain infrastructure.
Detailed Description of the Invention “A System for Creating Digital Identity” realized to fulfil the objective of the present invention is shown in the figure attached, in which:
Figure 1 is a schematic view of the inventive system.
The components illustrated in the figure are individually numbered, where the numbers refer to the following:
1. System
2. Electronic device
3. Authentication application
4. Database
5. Blockchain network
6. Authenticating institution server
7. Verifying institution server
8. Income server
9. Ad server
The inventive system (1) developed for storing evidences of users’ official or unofficial credentials in a blockchain infrastructure as approved by the institution wherefrom the information is received, and enabling the institutions to use the credentials to access the said user credentials by means of a blockchain infrastructure comprises: at least one electronic device (2) which is configured to realize data exchange with remote servers by using any remote communication protocol; and to run at least one application on it; at least one authentication application (3) which is run on the electronic device (2) and configured to ensure that at least transactions of adding credential or verifying credential are carried out; at least one database (4) which is configured to keep identity data of users such that these are associated with a distinctive token about the users, under record in it; at least one blockchain network (5) which is configured to keep evidences of identity data created about the users and approved by authenticating institutions, under record in it; at least one authenticating institution server (6) which is configured to establish communication with the electronic device (2) by using any remote communication protocol; to realize data exchange with the authentication application (3) being run on the electronic device (2) over this communication established; to manage the database (4); to connect to the database (4) upon being triggered when a register request is received over the authentication application (3) being run on the electronic device (2); and to receive the data about the user from the database (4); to approve the data received about the user; and to save evidence of the approved data to the blockchain network (5) together with an approval signature; at least one verifying institution server (7) which is configured to establish communication with the electronic device (2) by using any remote communication protocol; to realize data exchange with the authentication application (3) being run on the electronic device (2) over this communication established; to receive the person’s credentials over the authentication application (3); to access the blockchain network (5); when an authentication request is transmitted, to confirm authenticity of the person’s credentials by verifying the with evidences of the person’s credentials transmitted from the authentication application (3) and the credentials kept in the related persons block in the blockchain network (5) by accessing the blockchain network (5); at least one income server (8) which is configured to be in communication with the authenticating institution server (6) and the verifying institution server (7); to keep the authentication requests and transactions under record; to record the fee data set specifically for institutions using the credentials, for each identity authentication transaction of an institution authenticating the identity data; and to calculate the fees that must be received by an institution authenticating credentials at certain periods and paid by an institution transmitting an authenticating request; and at least one advertisement server (9) which is configured to receive a request of advertising transmitted from related institutions via any communication means; to ensure that a notification is sent to the electronic devices (2) of the user about the said advertisements together with the conditions set by the institutions requesting to post advertisement.
The electronic device (2) included in the inventive system (1) is a device such as smartphone, tablet, desktop, or portable computer configured to run at least one authentication application (3) on it. The said electronic device (2) is configured to have at least one camera with the capability to take image, on it. The electronic device (2) is configured to establish communication with the authenticating institution server (6), the verifying institution server (7) and the income server (8) by using any remote communication protocol in the state of the art; and to ensure that data exchange is realized over this communication established. In a preferred embodiment of the invention, the electronic device (2) is configured to establish connection with the authenticating institution server (6), the verifying institution server (7) and the income server (8) over a data network such as Internet. The authentication application (3) included in the inventive system (1) is run on the electronic device (2) and configured to ensure that at least transactions of adding credential or verifying credential are carried out. The said authentication application (3) is configured to realize data exchange with the authenticating institution server (6) over the communication established between the electronic device (2) and the authenticating institution server (6) by using any remote communication protocol in the state of the art. In a preferred embodiment of the invention, the authentication application (3) is configured to provide an interface adapted such that it will enable persons to sign up to the said authentication application (3) by a username and password. The said authentication application (3) is configured to provide at least one interface adapted such that it will enable persons to login by their username and password whereby they signed up. In a preferred embodiment of the invention, the authentication application (3) is configured to ensure that the camera located on the electronic device (2) is turned on upon the user logs in. The authentication application (3) is configured to ensure that the QR code created by the authenticating institution server (6) and comprising the credentials is scanned. The authentication application (3) is configured to ensure that the approved credentials obtained from the authenticating institution server (6) by the scanned QR code is recorded on the electronic device (2). The said authentication application (3) is configured to provide an interface adapted such that it will enable to view the approved credentials.
The database (4) included in the inventive system (1) is configured to be managed by the authenticating institution server (6). The said database (4) is configured to keep identity data of users such that these are associated with a distinctive token about the users, under record in it.
The blockchain network (5) included in the inventive system (1) is a database enabling to store the data in an encrypted form; having a distributed structure that has various consensus models requiring multi-user participation to be verified; and wherein encrypted data are stored in blocks by being added successively. In a preferred embodiment of the invention, the blockchain network (5) has a configuration wherein the data kept in it by public keys are open for public access and users can perform data exchange. The said blockchain network (5) is configured to establish communication with the authenticating institution server (6) and the verifying institution server (7). The blockchain network (5) is configured to keep the credentials created about the users and approved by the authenticating institution server (6) under record in it.
The authenticating institution server (6) included in the inventive system (1) is configured to establish communication with the electronic device (2) by using any remote communication protocol; to realize data exchange with the authentication application (3) being run on the electronic device (2) over this communication established. The authenticating institution server (6) is configured to manage the database (4) by transactions such as making a new data record inside the database (4), deleting the recorded data inside the database (4) or updating the data recorded inside the database (4) by changing the data recorded inside the database (4). In a preferred embodiment of the invention, the authenticating institution server (6) is configured to access the blockchain network (5) and to make data record to the blockchain network (5). The authenticating institution server (6) is configured to query the person who transmits the authentication request inside the database (4) by connecting to the database (4) when a request of receiving a credential is transmitted from the authentication application (3). The said authenticating institution server (6) is configured to match the users’ identity data obtained from the database (4), with an approval signature and a QR code and then save these to the blockchain network (5).
The verifying institution server (7) included in the inventive system (1) is configured to access the blockchain network (5) and to establish communication with the income server (8) by using any remote communication protocol in the state of the art. The said verifying institution server (7) is configured to access the blockchain network (5) upon being triggered by a verification request transmitted in relation to a user and to receive the approved identity data about the said user from the blockchain network (5). The income server (8) included in the inventive system (1) is configured to be in communication with the authenticating institution server (6) and the verifying institution server (7). The said income server (8) is configured to keep the authentication requests and transactions under record. In a preferred embodiment of the invention, the income server (8) is configured to keep the authentication requests and transactions under record; to record the fee data set specifically for institutions using the credentials, for each identity authentication transaction of an institution authenticating the identity data; and to calculate the fees that must be received by an institution authenticating credentials at certain periods and paid by an institution transmitting an authenticating request.
The advertisement server (9) included in the inventive system (1) is configured to receive a request of advertising transmitted from related institutions via any communication means; to ensure that a notification is sent to all users about the advertisement content am the display conditions; and to control whether the user information included on the electronic device (2) fulfil the conditions. The said advertisement server (9) is configured to ensure that a notification is sent to the user electronic devices (2) fulfilling the advertising conditions, about the said advertisements.
With the inventive system (1), it is ensured that digital identities of persons are created and these are stored in a blockchain network (5) which has a distributed structure and is open for public access, upon being approved by institutions whereto the identities are provided. Thereby, institutions requesting to get their users’ identities verified can easily verify the users by accessing evidences of the approved user credentials being stored in the blockchain network (5). Within these basic concepts; it is possible to develop various embodiments of the inventive “System for Creating Digital Identity (1)”; the invention cannot be limited to examples disclosed herein and it is essentially according to claims.

Claims

1. A system (1) for storing evidences of users’ official or unofficial credentials in a blockchain infrastructure as approved by the institution wherefrom the information is received, and enabling the institutions to use the credentials to access the said user credentials by means of a blockchain infrastructure comprising: at least one electronic device (2) which is configured to realize data exchange with remote servers by using any remote communication protocol; and to run at least one application on it; at least one authentication application (3) which is run on the electronic device (2) and configured to ensure that at least transactions of adding credential or verifying credential are carried out; at least one database (4) which is configured to keep identity data of users such that these are associated with a distinctive token about the users, under record in it; at least one blockchain network (5) which is configured to keep evidences of identity data created about the users and approved by authenticating institutions, under record in it; - at least one authenticating institution server (6) which is configured to establish communication with the electronic device (2) by using any remote communication protocol; to realize data exchange with the authentication application (3) being run on the electronic device (2) over this communication established; to manage the database (4); to connect to the database (4) upon being triggered when a register request is received over the authentication application (3) being run on the electronic device (2); and to receive the data about the user from the database (4) aand then transmit the said data to the electronic device (2); to transmit the evidence of the credential data to the blockchain network (5) by approving the user’s identity data; at least one verifying institution server (7) which is configured to establish communication with the electronic device (2) by using any remote communication protocol; to realize data exchange with the authentication application (3) being run on the electronic device (2) over this communication established; to receive the person’s credentials over the authentication application (3); to access the blockchain network (5); when an authentication request is transmitted, to confirm authenticity of the person’s credentials by verifying the with evidences of the person’s credentials transmitted from the authentication application (3) and the credentials kept in the related persons block in the blockchain network (5) by accessing the blockchain network (5); at least one income server (8) which is configured to be in communication with the authenticating institution server (6) and the verifying institution server (7); to keep the authentication requests and transactions under record; to record the fee data set specifically for institutions using the credentials, for each identity authentication transaction of an institution authenticating the identity data; and to calculate the fees that must be received by an institution authenticating credentials at certain periods and paid by an institution transmitting an authenticating request; and characterized by at least one advertisement server (9) which is configured to receive a request of advertising transmitted from related institutions via any communication means; to ensure that notification is made to all electronic devices included in the system and advertisements are shown only on the electronic devices (2) of the persons who are eligible for the advertising conditions.
2. A system (1) according to Claim 1; characterized by the electronic device (2) which is a device such as smartphone, tablet, desktop, or portable computer configured to run at least one authentication application (3) on it.
3. A system (1) according to Claim 1 or 2; characterized by the electronic device (2) which is configured to have at least one camera with the capability to take image, on it.
4. A system (1) according to any of the preceding claims; characterized by the electronic device (2) which is configured to establish communication with the authenticating institution server (6), the verifying institution server (7) and the income server (8) by using any remote communication protocol; and to ensure that data exchange is realized over this communication established.
5. A system (1) according to any of the preceding claims; characterized by the electronic device (2) which is configured to establish connection with the authenticating institution server (6), the verifying institution server (7) and the income server (8) and the advertisement server (9) over a data network such as Internet.
6. A system (1) according to any of the preceding claims; characterized by the authentication application (3) which is run on the electronic device (2) and configured to ensure that at least transactions of adding credential or verifying credential are carried out.
7. A system (1) according to any of the preceding claims; characterized by the authentication application (3) which is configured to realize data exchange with the authenticating institution server (6) over the communication established between the electronic device (2) and the authenticating institution server (6) by using any remote communication protocol.
8. A system (1) according to any of the preceding claims; characterized by the authentication application (3) which is configured to provide an interface adapted such that it will enable persons to sign up to the said authentication application (3) by a username and password.
9. A system (1) according to any of the preceding claims; characterized by the mobile application (3) which is configured to provide at least one interface adapted such that it will enable persons to login by their username and password whereby they signed up.
10. A system (1) according to any of the preceding claims; characterized by the mobile application (3) which is configured to ensure that the camera located on the electronic device (2) is turned on upon the user logs in.
11. A system (1) according to any of the preceding claims; characterized by the mobile application (3) which is configured to ensure that the QR code created by the authenticating institution server (6) and comprising the credentials is scanned.
12. A system (1) according to any of the preceding claims; characterized by the mobile application (3) which is configured to ensure that the approved credentials obtained from the authenticating institution server (6) by the scanned QR code is recorded on the electronic device (2).
13. A system (1) according to any of the preceding claims; characterized by the mobile application (3) which is configured to provide an interface adapted such that it will enable to view the approved credentials.
14. A system (1) according to any of the preceding claims; characterized by the database (4) which is configured to be in communication with the authenticating institution server (6) and managed by the authenticating institution server (6).
15. A system (1) according to any of the preceding claims; characterized by the database (4) which is configured to keep identity data of users such that these are associated with a distinctive token about the users, under record in it.
16. A system (1) according to any of the preceding claims; characterized by the blockchain network (5) which is a database enabling to store the data in an encrypted form; having a distributed structure that has various consensus models requiring multi-user participation to be verified; and wherein encrypted data are stored in blocks by being added successively.
17. A system (1) according to any of the preceding claims; characterized by the blockchain network (5) which has a configuration wherein evidences of identity data are open for public access and institutions can save evidences of data they verify and can access evidences of identity data transmitted by other institutions.
18. A system (1) according to any of the preceding claims; characterized by the blockchain network (5) which is configured to establish communication with the authenticating institution server (6) and the verifying institution server (7).
19. A system (1) according to any of the preceding claims; characterized by the blockchain network (5) which is configured to keep evidences of the identity data created about the users and approved by the authenticating institution server (6), under record.
20. A system (1) according to any of the preceding claims; characterized by the authenticating institution server (6) which is configured to establish communication with the electronic device (2) by using any remote communication protocol; to realize data exchange with the authentication application (3) being run on the electronic device (2) over this communication established.
21. A system (1) according to any of the preceding claims; characterized by the authenticating institution server (6) which is configured to manage the database (4) by transactions such as making a new data record inside the database (4), deleting the recorded data inside the database (4) or updating the data recorded inside the database (4) by changing the data recorded inside the database (4).
22. A system (1) according to any of the preceding claims; characterized by the authenticating institution server (6) which is configured to access the blockchain network (5) and to make data record to the blockchain network (5).
23. A system (1) according to any of the preceding claims; characterized by the authenticating institution server (6) which is configured to query the person who transmits the authentication request inside the database (4) by connecting to the database (4) when a request of receiving a credential is transmitted from the authentication application (3).
24. A system (1) according to any of the preceding claims; characterized by the authenticating institution server (6) which is configured to match the users’ identity data obtained from the database (4), with an approval signature and a QR code and then save these to the blockchain network (5).
25. A system (1) according to any of the preceding claims; characterized by the verifying institution server (7) which is configured to access the blockchain network (5) and to establish communication with the income server (8) by using any remote communication protocol in the state of the art.
26. A system (1) according to any of the preceding claims; characterized by the verifying institution server (7) which is configured to access the blockchain network (5) upon being triggered by a verification request transmitted in relation to a user and to receive the approved identity data about the said user from the blockchain network (5).
27. A system (1) according to any of the preceding claims; characterized by the income server (8) which is configured to be in communication with the authenticating institution server (6) and the verifying institution server (7).
28. A system (1) according to any of the preceding claims; characterized by the income server (8) which is configured to keep the authentication requests and transactions under record.
29. A system (1) according to any of the preceding claims; characterized by the income server (8) which is configured to keep the authentication requests and transactions under record; to record the fee data set specifically for institutions using the credentials, for each identity authentication transaction of an institution authenticating the identity data; and to calculate the fees that must be received by an institution authenticating credentials at certain periods and paid by an institution transmitting an authenticating request.
30. A system (1) according to any of the preceding claims; characterized by the advertisement server (9) which is configured to send notification to all electronic devices (2) in the system.
31. A system (1) according to any of the preceding claims; characterized by the advertisement server (9) which is configured to receive a request of advertising sent from related institutions via any communication means; and to transmit this request to all electronic devices (2).
32. A system (1) according to any of the preceding claims; characterized by the advertisement server (9) which is configured to ensure that an advertisement sent from an institution is displayed only on electronic devices (2) fulfilling the advertising conditions.
PCT/TR2020/051427 2019-12-31 2020-12-29 A system for creating digital identity WO2021137833A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
TR2019/22803A TR201922803A2 (en) 2019-12-31 2019-12-31 A digital identity creation system
TR2019/22803 2019-12-31

Publications (1)

Publication Number Publication Date
WO2021137833A1 true WO2021137833A1 (en) 2021-07-08

Family

ID=76686782

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/TR2020/051427 WO2021137833A1 (en) 2019-12-31 2020-12-29 A system for creating digital identity

Country Status (2)

Country Link
TR (1) TR201922803A2 (en)
WO (1) WO2021137833A1 (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20130222559A1 (en) * 2012-02-24 2013-08-29 Ali Lebaschi Id scanner with machine-readable coded indicia reader and card imaging digital camera
KR20190009686A (en) * 2017-07-19 2019-01-29 한국과학기술원 Particle including atomic-scale channel, method of preparing the same, and catalyst including the same
WO2019052286A1 (en) * 2017-09-12 2019-03-21 广州广电运通金融电子股份有限公司 User identity verification method, apparatus and system based on blockchain
CN109740319A (en) * 2018-12-06 2019-05-10 中国联合网络通信集团有限公司 Digital identity verification method and server

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20130222559A1 (en) * 2012-02-24 2013-08-29 Ali Lebaschi Id scanner with machine-readable coded indicia reader and card imaging digital camera
KR20190009686A (en) * 2017-07-19 2019-01-29 한국과학기술원 Particle including atomic-scale channel, method of preparing the same, and catalyst including the same
WO2019052286A1 (en) * 2017-09-12 2019-03-21 广州广电运通金融电子股份有限公司 User identity verification method, apparatus and system based on blockchain
CN109740319A (en) * 2018-12-06 2019-05-10 中国联合网络通信集团有限公司 Digital identity verification method and server

Also Published As

Publication number Publication date
TR201922803A2 (en) 2021-07-26

Similar Documents

Publication Publication Date Title
US10594484B2 (en) Digital identity system
JP6940212B1 (en) Application linkage method, computer program and application linkage system
CN103647646B (en) Non-repudiation for digital content delivery
US9600674B2 (en) Transaction system for business and social networking
US7457950B1 (en) Managed authentication service
US7406594B2 (en) Method and apparatus for certification and authentication of users and computers over networks
US20090292642A1 (en) Method and system for automatically issuing digital merchant based online payment card
EP3376708A1 (en) Anonymous communication system and method for subscribing to said communication system
EP3579595B1 (en) Improved system and method for internet access age-verification
US9185098B2 (en) Method for user authentication
US11501004B2 (en) Exchanging user information with other physically proximate users
US20210174373A1 (en) Ticket validity confirmation device, method, and program
US10867326B2 (en) Reputation system and method
WO2023017580A1 (en) Avatar authentication system and avatar authentication method
US20080301788A1 (en) Identity assertion
US20050076213A1 (en) Self-enrollment and authentication method
KR101505667B1 (en) Method of subscription, authentication and payment without resident registration number
JP2004362189A (en) User information circulation system
WO2021137833A1 (en) A system for creating digital identity
JP2003509727A (en) Methods, articles and devices for registering registrants, such as voting registrants
WO2018115972A1 (en) Mobile credential with online/offline delivery
EP3629308A1 (en) Improved system and method for electronic voting
KR20090114818A (en) Managing System and Method of Identity Information
US20220393882A1 (en) Secured private credential certificate
TWI704795B (en) Login authentication method

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 20909977

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 20909977

Country of ref document: EP

Kind code of ref document: A1