Swiss Federal Railways (SBB) has completed a proof-of-concept (PoC) of a blockchain-based credentials management system for workers employed at the companyâs construction sites.
The project ran from May to November, and aimed to improve upon the current manual, paper-based processes in an âagile working environment with a digital, audit-proof solution based on blockchain,â Daniele Pallecchi, the Swiss national rail companyâs spokesperson, told CoinDesk via email.
âConstruction sites on the SBB network often involve third parties. For safety reasons, there are strict requirements regarding the qualification of personnel,â Pallecchi said, explaining the need for a robust identity system.
The solution was developed by a blockchain startup Linum Labs using the open-source technology of uPort, a project started under the umbrella of New York-based ethereum design studio ConsenSys.
In the proof-of-concept, workers created their digital identities in the uPort app on their mobile devices, and SBB issued them certificates confirming they went through appropriate training.
The workers then used these digital IDs while signing in and out of construction sites where they worked. To enter the site, a worker would scan a QR code from the app on his or her cellphone.
âUsing uPort, railway workers, certification authorities and supervisors are able to have their own unique digital identities linked to their respective uPort IDâs, which is then anchored to an identity on the blockchain. A hash of the workerâs check-in / check-out activities is published to the blockchain so that the internal database can be audited,â Linum Labs wrote in a Medium post.
The app can also connect to identity systems authorized by city administrations, like Zug ID, which also uses uPortâs tech. It was trialed this summer in the Swiss city of Zug to enable electronic voting via blockchain, and now is involved in another pilot: local residents can use Zug IDs to unlock bikes provided by AirBie, a Zurich-based bike-sharing startup.
SBBâs Pallecchi declined to give any specific details about next steps, adding that the company âmay have more stable informationâ in the beginning of 2019.
uPort hasnât been directly involved in the railway project, in accordance with the startupâs open-source ethos, its head of product, Thierry Bonfante, told CoinDesk. âOur partners are representing our system on the market. Weâll just make sure that they have all they need from us,â he said.
However, while the railway pilot was underway, in August, uPort upgraded its architecture to address scalability and privacy concerns, moving more operations off-chain. As uPort is based on ethereum, which has struggled to scale, doing every operation on blockchain was making the system slow and ineffective, Bonfante said.
Another issue that prompted the change at uPort: it was difficult to comply with the European Unionâs General Data Protection Regulation (GDPR) implemented in May. The regulation includes a âright to be forgotten,â which is, to demand that information about an individual be removed from the public domain at their request.
âIf you always put your information on the blockchain itâs irrevocable,â said Bonfante. âSo you have lost your right to be forgotten.â
With the new architecture of uPort, usersâ personal information is stored off-chain, on their mobile phones. In the case of the Swiss railway, âblockchain is only used for additional key management purposes, such as key rotation, revocation and delegation to third parties,â Bonfante explained.
The system works well for small amounts of information, uPortâs director of business operations, Alice Nawfal, told CoinDesk. But in the future, as the market gets to the point where more complex identity applications will be in demand, âit probably will not work on a phone,â so uPort is looking into creating a storage hub solution, Nawfal said.
She added that SBB âreally graspedâ the opportunities of the verifiable credentials technology.
âBefore this, the use cases were, for example, that people were able to identify that they are residents of a particular city,â Nawfal said. âAnd the railways are going with a more complex implementation with certification and multiple credentials.â
Swiss railroad image via Shutterstock
