Password-Authenticated Decentralized Identities

Password-authenticated identities, where users establish username-password pairs with individual servers and use them later on for authentication, is the most widespread user authentication method over Internet. Although they are simple, user-friendly, broadly adopted, offer insecure position server operators as trusted parties, giving full control users’ identities. To mitigate these limitations, many identity systems have embraced public-key cryptography concept of decentralization. All systems; however, require to create manage public-private keypairs. Unfortunately, usually do not required knowledge resources properly handle cryptographic secrets, which arguably contributed failures end-user infrastructures (PKIs). In fact, today, no PKI, able authenticate web servers, has a significant adoption rate. this paper, we propose Decentralized Identities (PDIDs), an framework can register their self-sovereign universal credentials. Our system provides global namespace, human-meaningful usernames, resilience against username collision attacks. A user’s be used any without revealing that anything about password, such offline dictionary attacks possible password. We analyze PDIDs implement it using existing tools. report our implementation evaluation.