EMCSSL – decentralized identity management, passwordless logins, and client SSL certificates using Emercoin NVS.
This document will introduce details of a scalable infrastructure for passwordless authorization suitable for an unlimited number of web services. The infrastructure sits on the Emercoin cryptocurrency blockchain, using the blockchain as a decentralized trust store of hash sums for client SSL-certificates. Certificates can be generated by clients locally, without any central authority, nand quickly replaced as needed. This makes the system effective both for scheduled replacement and rapid recall of ncompromised certificates. The uniqueness of the proposal is in the complete decentralization of the system, i.e. the lack of a group of servers running under a single authorization (as used in the systems of Kerberos, OpenID, TeddyID and the like). As a result, it is not possible for EMCSSL to suffer system-wide service disruption either due to technical failure or malicious attack upon authorization servers. In addition, it is not possible for a user to have their accounts globally suspended at the whim of a single authority.
Also outlined is InfoCard – a decentralized distributed “business card” system that complements EMCSSL’s passwordless logins by allowing website profiles to be automatically populated. InfoCard has the ability to organize information in a hierarchical structure, which can be useful for quick content updates to all cards within companies or other organizations.