EVOKE: Efficient Revocation of Verifiable Credentials in IoT Networks
Carlo Mazzocca, Abbas Acar, Selcuk Uluagac, Rebecca Montanari
33rd USENIX Security Symposium · Day 1 · USENIX Security '24
The talk "EVOKE: Efficient Revocation of Verifiable Credentials in IoT Networks" by Carlo Mazzocca from the University of Bologna, in collaboration with Florida International University, introduces a groundbreaking approach to managing trust and identity in the burgeoning landscape of Internet of Things (IoT) devices. As billions of IoT devices connect and generate vast amounts of data, establishing and maintaining trust among them becomes paramount for secure collaboration and effective data utilization by third-party organizations. However, the inherent constraints of IoT networks—such as limited computational power, storage, bandwidth, and intermittent connectivity—pose significant challenges to traditional identity management and credential revocation mechanisms.
AI review
This research delivers a genuinely novel and highly effective approach to Verifiable Credential revocation in IoT, leveraging elliptic curve cryptography accumulators. It directly addresses critical scalability and resource constraints with a constant-sized data structure and a robust, peer-to-peer update mechanism. This isn't just theoretical; it's a practical, deployable solution that fundamentally improves trust management in constrained environments.