Exploring Self-Sovereign Identity Through a Digital Transcript Proof-of-Concept
Issued Date
2026-01-01
Resource Type
ISSN
15493636
eISSN
15526607
Scopus ID
2-s2.0-105040587424
Journal Title
Journal of Computer Science
Volume
22
Issue
5
Start Page
1577
End Page
1595
Rights Holder(s)
SCOPUS
Bibliographic Citation
Journal of Computer Science Vol.22 No.5 (2026) , 1577-1595
Suggested Citation
Khajohn-Udomrith N., Rassameeroj I. Exploring Self-Sovereign Identity Through a Digital Transcript Proof-of-Concept. Journal of Computer Science Vol.22 No.5 (2026) , 1577-1595. 1595. doi:10.3844/jcssp.2026.1577.1595 Retrieved from: https://repository.li.mahidol.ac.th/handle/123456789/117146
Title
Exploring Self-Sovereign Identity Through a Digital Transcript Proof-of-Concept
Author(s)
Author's Affiliation
Corresponding Author(s)
Other Contributor(s)
Abstract
Credential forgery presents a significant threat to the integrity of academic and employment documents. While Self-Sovereign Identity (SSI) and Verifiable Credentials (VC) offer a decentralized alternative, existing solutions often struggle to balance institutional trust with holder privacy. This paper proposes a novel, dual-layered architectural framework for digital transcripts. We implement a strategic bimodal DID approach, utilizing did:web for the issuing institution to leverage established web reputation and did:key for the student holder to ensure lightweight, stateless mobility. Furthermore, we address privacy vulnerabilities in credential status checks by developing a k-anonymous Revocation List. This mechanism protects students by grouping 40,000 individual records into a single compressed bitstring (k = 40,000), ensuring that a specific student’s status cannot be uniquely identified or singled out during a check. Benchmarking results confirm the system’s efficiency, with core local cryptographic verifications executing in under 1 ms. We identify that system latency is primarily driven by network dependent interactions, specifically the time required for API-based credential retrieval and sending presentations to verifiers. Comprehensive functionality and security tests validate that this integrated approach successfully enhances credential integrity while maintaining superior user privacy compared to standard decentralized models.