MarketPalace

Abstract

Fraudulent behavior within online marketplaces is a prominent but unsolved problem. Most marketplace operators try to mitigate this behavior by serving as the central authority. This approach requires user data collection and is not privacy-friendly. In an attempt to build a foundation for solving the fraud concerns and privacy issues, this paper elaborates on the design and implementation of a simple marketplace system using peer-to-peer (P2P) technology in combination with a Self-Sovereign Identity (SSI) solution. The P2P network ensures no single points of control, reduces risks of a big data breach and simply costs less to operate. The SSI solution makes sure that users cannot create multiple accounts to whitewash their dishonest behavior. Ensuring every user has only one identity makes the platform Sybil-resistant. In contrast to other identity verification systems used in marketplaces, such as Facebook Login, SSI aims to put the user in control and to not collect personal data. Users know what data are asked and give explicit consent for each request. This user-centric approach makes them privacy-friendly. Reaching Sybil resistance without having a central authority in a marketplace has not been done before. In the future a reputation system can be built on top of the Sybil-resistant P2P system, ensuring users’ behavior can not be whitewashed. Several methods are used during the design and the implementation process. They include the Scrum framework, MoSCoW prioritization and Class-Responsibility-Collaboration cards. Git was used for version control while code quality was kept high through a custom CI setup. Additionaly, every merge request required at least two approvals to ensure thorough code review. This resulted in an application that is both Sybil-resistant and privacy-friendly