TANGO WP Leaders Interview Series – WP4 Distributed Trust Management Framework

In the third installment of the TANGO interview series, we explore the contributions and innovations of Work Package 4 (WP4) withing the project, focusing on secure authentication and privacy-preserving identity management. We sat with Anni Karinsalo from VTT, who shared insights into key tools like Self-Sovereign Identity (SSI), Decentralized Identifiers, and Zero-Knowledge Proofs — highlighting both technical achievements and real-world user engagement.

In one sentence, how would you describe the purpose of WP4?

TANGO’s WP4 provides cutting-edge tools to ensure trust in secure authentication while sustaining guaranteed privacy.

Which tool or component developed in your WP have you found most useful, and why?

SSI establishes a set of tools enabling secure authentication and access to various TANGO services. Thanks to the built-in modularity, the toolset promises easy integration to new TANGO functionalities. The User Wallet manages personal credentials of the user, whereas the Agent handles the interface for verifiable credential issuance. Last but not least, Zero-Knowledge Proofs provide privacy with inherent trust. 

Which technologies in WP4 have impressed you the most from a technical point of view?

Undoubtedly, all tools have fulfilled ambitious expectations and beyond. If I should pick just one technology to ensure security, I would say the tool providing countermeasures against side-channel attacks is an impressive and effective solution for this purpose. Moreover, the approach represents an intriguing course of research.

Which tools from your WP seemed to engage end users the most across the pilots?

The onboarding tool with related ePassport application sparked a lot of interest among the end users. In this robust application, the users are able to conveniently mobilize their passport data for further secure identity usage.

What is one technical challenge you faced while working with the tools — and how did you overcome it?

Due to the novelty of the developed technologies, the integration phase posed occasional challenges related to synchronization and standard availability. However, challenges were corrected by consistent follow-up meetings and strengthened communication. In TANGO’s WP4, the collaboration throughout the whole WP lifetime has been exceptionally good among the partners.

What advantages do Decentralized Identifiers and Verifiable Credentials offer for managing identity in distributed environments?

Decentralized Identifiers and Verifiable Credentials revolutionize identity management in distributed environments by enhancing security, privacy, and interoperability. These innovations are shaping the future of identity verification, making interactions more secure, efficient, and user-centric. 

Where do you see potential for further development or application of your approach in the future?

I am happy to say all tools provide exceptionally interesting opportunities for further development. For instance, both the User Continuous Behavioral Authentication and Device Continuous Behavioral Authentication tools can enrich various services thanks to combining technologies such as biometrics and machine learning. Both fields enhance traditional authentication methods by adding a dynamic security layer, reducing reliance on static credentials, and improving resilience against sophisticated cyber threats.