Self-sovereign Identity Techniques

Simple SummaryContent extracted from patent full text and abstract with AI.

This patent discloses methods and systems enabling automated, secure, and decentralized identity management for network elements (such as servers, routers, IoT devices, software components, etc.) within telecom or cloud network infrastructures. It uses Self-Sovereign Identity (SSI) principles, providing each network element with a Decentralized Identifier (DID), a public/private key pair, and digitally signed verifiable credentials (VCs). These elements can then authenticate and authorize themselves to other network components in an automated, privacy-preserving, and trustable manner, without reliance on traditional, centralized certificate authorities.

Use CasesContent extracted from patent full text and abstract with AI.

• Automated, secure onboarding and management of network elements (including virtualized network functions, IoT devices, routers, etc.) within 5G, 6G, or other network infrastructures.
• Enabling federated and cross-operator trust for network elements deployed across different telecom service providers or cloud environments.
• Securing communication between autonomous or dynamically instantiated network functions in cloud-native telecom environments.
• Providing decentralized identity and access control for massive IoT deployments in smart cities, factories, or critical infrastructure.
• Supporting privacy-preserving authentication and authorization in distributed supply chain management or consortium-based network environments.
• Replacing or supplementing centralized certificate authority systems with a resilient, decentralized alternative.

BenefitsContent extracted from patent full text and abstract with AI.

• Removes reliance on centralized certificate authorities, reducing single points of failure and improved resilience against attacks.
• Enables automated and scalable onboarding of network devices without manual intervention, reducing costs and human error.
• Provides strong, cryptographic trust and integrity in identity and access management.
• Facilitates privacy-preserving authentication—no unnecessary disclosure of personal or sensitive data about the network element.
• Allows for cross-domain and cross-operator interoperability and trust, which is crucial as networks become more federated and cloud-native.
• Supports dynamic, on-demand scaling and reconfiguration of network resources with minimal security overhead.
• Improves compliance with privacy and security regulations by enabling self-sovereign control of identity data.

Technical Classifications (CPCs)

Inventors & Applicants

Patent Abstract

Techniques to enable implementation within a network infrastructure of a network operator (550, 560) comprising the following steps: • providing and/or creating a Decentralised Identifier "DID", a private key, a public key and verifiable credentials "VC" for the network element (200, 425, 530, 810); • binding the VC to the DID resulting in a DID-bound VC (205) and add a digital signature of an issuer to the DID-bound VC (205); • providing the DID-bound VC and the private key to the network element (200, 425, 530, 810).