SummaryThis Recommendation specifies the requirements for an access control platform using distributed ledger technology (DLT)-based authentication, a framework that enables secure, fast, and convenient distributed authentication and identity verification of users and devices in order to access to digital services. A DLT-based authentication systems enables secure identity identification, validation, and verification services designed to meet the requirements of the organization’s access controls. An access control platform using DLT-based authentication protects user credentials against fraudulent activities through authentication and identity verification using DLT. DLT also enables a passwordless identity verification service with multi-factor authentication (MFA) methods to protect user’s account from being taken over (ATO), fraudulent transactions, unauthorized account access, account hijacking, credential fraud and ransomware. This Recommendation could help DLT system researchers, designers, developers, and organizations to design, implement, and operate an access control platform using DLT based authentication. |