KR-20260064633-A - METHOD AND SYSTEM FOR SUPPORTING ISSUANCE OF VERIFIABLE CREDENTIAL BASED ON ZERO-KNOWLEDGE PROOF

Abstract

According to one aspect of the present invention, a method for supporting the issuance of a verifiable credential (VC) based on zero-knowledge proof is provided, comprising the steps of: transmitting information necessary for a holder to receive the VC to the holder; and issuing the VC to the holder in response to receiving a request to receive the VC from the holder, wherein the VC includes a commitment and proof for a specific proposition generated based on zero-knowledge proof technology.

Inventors

• 박민기

Assignees

• 주식회사 엔에프타임

Dates

Publication Date

20260507

Application Date

20251030

Priority Date

20241030

Claims (9)

1. As a method for supporting the issuance of a Verifiable Credential (VC) based on zero-knowledge proof, The step of transmitting information necessary for a holder to receive VC to said holder, and The method includes the step of issuing the VC to the holder in response to receiving a request for receipt of the VC from the holder, The above VC includes a commitment and a proof for a specific proposition generated based on Zero-Knowledge Proof (ZKP) technology. method.
2. In paragraph 1, The method further comprises the step of verifying the truth or falsity of the proposition included in the VC by referring to the commitment and the proof in response to receiving a request for verification of the VC from a verifier. method.
3. In paragraph 2, In the above verification step, the result of the above verification is calculated as a true or false value. method.
4. In paragraph 1, The above commitment and the above proof are recorded on a distributed ledger method.
5. A non-transient computer-readable recording medium for recording a computer program for executing the method according to paragraph 1.
6. As a system for supporting the issuance of Verifiable Credentials (VCs) based on zero-knowledge proofs, An information transmission unit that transmits information necessary for a holder to receive VC to said holder, and It includes a VC management unit that issues the VC to the holder in response to receiving a request to receive the VC from the holder, The above VC includes a commitment and a proof for a specific proposition generated based on Zero-Knowledge Proof (ZKP) technology. System.
7. In paragraph 6, Further comprising an information verification unit that, in response to receiving a request for verification of the above VC from a verifier, verifies the truth or falsity of the above proposition included in the above VC by referring to the above commitment and the above proof. System.
8. In Paragraph 7, The above information verification unit calculates the result of the verification as a true or false value. System.
9. In paragraph 6, The above commitment and the above proof are recorded on a distributed ledger System.

Description

Method and System for Supporting Issuance of Verifiable Credential Based on Zero-Knowledge Proof The present invention relates to a method and system for supporting the issuance of verifiable credentials based on zero-knowledge proof. Recently, as interest in Self-Sovereign Identity (SSI) has increased, there has been active discussion regarding methods to prove the qualifications required to receive desired services using Verifiable Credentials (VC; hereinafter abbreviated as "Credentials"). Basically, this method is carried out by an issuer issuing a credential that digitally expresses that a specific entity, such as an individual or organization, possesses a specific qualification, thereby enabling that specific entity to possess the credential; the holder of the credential then presents it to a verifier in the form of a Verifiable Presentation (VP; hereinafter abbreviated as "Presentation"), and the verifier verifies it. As an example of prior art regarding this, the technology disclosed in Korean Patent Publication No. 10-2023-0143410 may be cited. According to this, the method is characterized by comprising: a step of analyzing the ID issuance history recorded in a distributed ID management contract in response to a request for the issuance of a 'distributed ID' from a user to inquire whether there is a distributed ID already issued to the user; a step of issuing a new distributed ID to the user if there is no distributed ID already issued as a result of the inquiry; and a step of updating the ID issuance history by recording the details of the distributed ID issuance in the ID issuance history while registering the issued distributed ID in a distributed ID storage as the new distributed ID delivered to the user is recorded in the user's electronic wallet. However, according to the conventional technology described above and other technologies introduced so far, in order to obtain a digital badge, which is a type of verifiable credential, metadata containing personally identifiable information (PII), such as the holder's name, email, credential title, and date of credential acquisition, or the hash value of said metadata had to be recorded on a blockchain network. According to this conventional technology, there were problems such as a third party being able to look up the holder's personally identifiable information through a blockchain explorer, and a third party being able to infer the holder's personally identifiable information through a Rainbow Table Attack. In addition, according to the conventional technology described above and other technologies introduced so far, there was also a problem in that the holder's personal identification information had to be disclosed in order to verify the validity of individual attributes, such as specific propositions included in the holder's digital badge (e.g., whether the holder has obtained an A grade or higher, whether they are in their 20s, etc.). In other words, there was a limitation in that it did not comply with the Self-Sovereign Identity (SSI) principle, which allows for the selective disclosure of only the minimum information necessary for the holder's credential verification. Accordingly, the inventor(s) propose a technology that enables a holder to selectively prove their qualifications without exposing personal identification information by transmitting information necessary for the holder to receive a VC to the holder and issuing a VC to the holder in response to receiving a request for the receipt of a VC from the holder, wherein the VC includes a commitment and a proof for a specific proposition generated based on Zero-Knowledge Proof (ZKP) technology. FIG. 1 is a diagram showing the schematic configuration of an overall system for supporting the issuance of verifiable credentials based on zero-knowledge proof according to one embodiment of the present invention. FIG. 2 is a drawing illustrating in detail the internal configuration of an issuer-side system according to one embodiment of the present invention. FIGS. 3 to 9 are drawings illustrating an exemplary VC issuance process according to an embodiment of the present invention. The following detailed description of the invention refers to the accompanying drawings, which illustrate specific embodiments in which the invention may be practiced. These embodiments are described in sufficient detail to enable those skilled in the art to practice the invention. It should be understood that various embodiments of the invention are different but need not be mutually exclusive. For example, specific shapes, structures, and characteristics described herein may be modified from one embodiment to another without departing from the spirit and scope of the invention. It should also be understood that the location or arrangement of individual components within each embodiment may be modified without departing from the spirit and scope of the invention. Accordingly, the following detailed description i