CoviChain: A Blockchain Based COVID-19 Vaccination Passport

TL;DR

CoviChain introduces a privacy-preserving blockchain framework for COVID-19 vaccination passports that uses biometric hashing to authenticate users without revealing personal data, enabling safe societal reopening.

Contribution

The paper presents a novel two-factor authentication method employing locality sensitive hashing over iris features for anonymous vaccination record access on blockchain.

Findings

Ensures user privacy by not storing personal data on blockchain.

Uses biometric hashing for secure, anonymous authentication.

Facilitates safe reopening while respecting civil liberties.

Abstract

Vaccination passports are being issued by governments around the world in order to open up their travel and hospitality sectors. Civil liberty campaigners on the other hand argue that such mandatory instruments encroach upon our fundamental right to anonymity, freedom of movement, and are a backdoor to issuing "identity documents" to citizens by their governments. In this paper we present a privacy-preserving framework that uses two-factor authentication to create a unique identifier that can be used to locate a person's vaccination record on a blockchain, but does not store any personal information about them. Our main contribution is the employment of a locality sensitive hashing algorithm over an iris extraction technique, that can be used to authenticate users and anonymously locate vaccination records on the blockchain, without leaking any personally identifiable information to the blockchain. Our proposed system allows for the safe reopening of society, while maintaining the privacy of citizens.