معرفی هویت دیجیتال در متاورس، شناسایی چالش‎‎های حقوقی مربوط ‏به آن و جست‌وجوی راه حل

نوع مقاله : مقاله پژوهشی

نویسندگان

1 دانش آموختۀ دکتری حقوق خصوصی، دانشکدۀ حقوق و علوم سیاسی، دانشگاه فردوسی مشهد، مشهد، ‏ایران. ‏

2 دانشیار گروه حقوق خصوصی، دانشکدۀ حقوق و علوم سیاسی، دانشگاه فردوسی مشهد، مشهد، ایران.‏‎ ‎‏ ‏

چکیده

متاورس فضای دیجیتالی سه‌بعدی است که برای افراد با ایجاد حسِ حضور، امکان تعامل و کسب تجارب مختلف را فراهم می‌کند. این دنیای مجازی که در حال حاضر فراوان استفاده می‌شود، بستری نوین نیست لیکن امروزه به‌دلیل توسعۀ فناوری‌های مختلف، بیش‌ازپیش بر ابعاد مختلفی از زندگی اشخاص اثرگذار است. در این محیط، کاربران می‌توانند با ماهیت‌های دیجیتالی به نام آواتار، خودِ دیگری از هویتشان ارائه کنند و در قالب این هویت دیجیتال یا هویت مجازی با دیگران تعامل داشته باشند و به فعالیت بپردازند. در کنار مزایایی که این جهان دیجیتال به ارمغان آورده است، چالش‌های بسیاری را نیز ایجاد کرده است که از جملۀ آنها چالش‌های حقوقی است. در واقع رونق متاورس، مسائل حقوقیِ مختلفی ازجمله چگونگی حمایت از هویت دیجیتالی اشخاص در متاورس را مطرح کرده است. این جستار با روشی توصیفی - تحلیلی، سعی کرده است ضمن تعریف هویت دیجیتال در متاورس به چالش‌های حقوقی مربوط به هویت‌های مجازی در این محیط و ارائۀ راه‌حلی جهت پاسخ به معضلاتِ پیش رو، بپردازد. به موجب برآمد پژوهش، استفادۀ موردی از برخی قوانین و مقررات خاص مانند مقررات اروپایی حفاظت از داده و قانون هوش مصنوعی اتحادیۀ اروپا در کنار بهره‌مندی از فناوری بلاک‌چین با توجه به استفاده از نوع متناسب آن، می‌تواند در خصوص حمایت‌های مؤثر از هویت‌های دیجیتال کارامد باشد.

کلیدواژه‌ها


عنوان مقاله [English]

Introducing Digital Identity in Metaverse, ‎Identifying Related Legal Challenges and Solutions

نویسندگان [English]

  • Mahdieh Latifzadeh 1
  • sayyed mohammad mahdi qabuli dorafshan 2
1 ‎PhD Graduated in Private Law, Faculty of Law and Political Science, ‎Ferdowsi University of Mashhad, Mashhad, Iran. ‎
2 Associate Professor, Department of Private Law, Faculty of Law and ‎Political Science, Ferdowsi University of Mashhad, Mashhad, Iran.‎
چکیده [English]

Abstract
Metaverse is a Three-dimensional (3D) virtual framework where users can communicate with each other and engage in various activities. Despite the advantages that have led to the development of Metaverse, this environment also has many legal challenges. Along with new opportunities, this virtual world has caused different legal problems. Among these problems are issues related to preserving the integrity of the physical and spiritual personality of people, as well as how to protect intellectual property rights and even material property rights of people. Regardless of the challenges, one of the most important concerns for users who are active in this virtual world is how to protect their digital identity and personal data in the metaverse. Explaining that people in the metaverse are in the form of avatars; Avatars are a representation of a person's personality in the metaverse and allow users to recreate not only their physical appearance but also their movements and behaviors. The use of avatars has created various challenges. One of the most important challenges is how to protect information privacy, specifically protecting personal data in the Metaverse, as well as the possibility of giving avatars personality. The stated issues are the main questions that this research has answered with a descriptive-analytical approach and the use of comparative studies.
Now there is no specific law for metaverse. Therefore, it is difficult to control this virtual world and the flow of legal protections for it, even though many people are related to Metaverse for various reasons and the lack of a legal framework is inappropriate and even dangerous. According to the above, the solution is to use related legal frameworks in the effective legal systems regarding Metaverse as well as the Iranian legal system. In other words, some provisions of related laws and regulations in the EU legal system can be used as an effective legal system for this issue. The European Digital Identity Regulation, as well as the legal related to artificial intelligence in this legal system, are among these matters. In addition, it is appropriate to pay attention to the legal frameworks related to the protection of personal data in each of the legal systems due to the connection between digital identity and personal data. In this regard, it is possible to use the European General Data Protection Regulation and the proposed documents related to personal data in Iranian law. Considering that one of the most important aspects of protection based on the previous frameworks is the existence of various obligations for controllers and processors and numerous rights for data subjects; It seems that the use of these obligations and rights in Metaverse will lead to legal protections in this environment.
blockchain technology can also be used to control the metaverse. Blockchain is a safe and widely used technology that is significant in various fields. Regarding the current discussion, blockchain can be used as a platform for realizing legal protection in the metaverse and monitoring it. Each of the different types of blockchain - mentioned in this research - controls the metaverse in a way and specifically protects personal data and identities in this environment. According to the results of this research, it seems that the use of private blockchains is more suitable due to the better implementation of laws and regulations on it, as well as the ability of legal institutions to monitor it. Of course, the use of this technology has also been evaluated in some legal systems, including the European Union, while this has not been achieved in Iranian law. For this reason, the Iranian legislator should - with the help of people who are experts in this technology - determine the legal opinion regarding which of the types of blockchain is more suitable for realizing comprehensive protection for digital identities in the metaverse.

کلیدواژه‌ها [English]

  • Blockchain
  • Data Protection
  • Metaverse
  • Digital Identity
  • Self-Sovereign ‎Identity.‎
  1. منابع 

    الف) فارسی

    1. پیش‌نویس لایحه‌ی «صیانت و حفاظت از داده‌های شخصی» منتشرشده در تیرماه 1397
    2. شاکری، زهرا؛ یاسمن جعفرپور (1401)، «امکان‌سنجی اعمال حقوق معنوی مؤلف تحت فناوری‌های نوین اطلاعات و ارتباطات». حقوق فناوریهای نوین، 3(6)، 15-29. شناسه برنمود دیجیتالی: 10.22133/mtlj.2022.360779.1120
    3. طرح «الزام به انتشار داده و اطلاعات» اعلام وصول شده در مجلس مورخ آذرماه 1399
    4. عاکفی قاضیانی، موسی؛ سیدمصطفی میلانی؛ وحید عاکفی قاضیانی (1401)، «متاورس و چالش‏های حقوقی در حوزۀ حقوق اموال». حقوق فناوریهای نوین، 3(6), 143-153. شناسه برنمود دیجیتالی:DOI: 10.22133/mtlj.2022.353672.1109
    1. قانون «مدیریت داده ها و اطلاعات ملی» مصوب 1401
    2. میر شکاری، عباس (1396).حقوق شخصیت و حقوق مسئولیت مدنی در اتحادیه اروپا، تهران: سهامی انتشار

    ب) خارجی

    7. Alam, Tanweer (2019). Blockchain and its Role in the Internet of Things (IoT). International Journal of Scientific Research in Computer Science, Engineering and Information Technology, 151–157. https://doi.org/10.32628/CSEIT195137

    8. Barfield, Woodrow (2006). Intellectual property rights in virtual environments: considering the rights of owners, programmers and virtual avatars. Akron Law Review, 93(3), 649–700. Accessed 20 October 2022, from ttps://law.bepress.com/cgi/viewcontent.cgi? article=4342&context=expresso

    9. Barfield, Woodrow, and Marc Blitz (2018). Research Handbook on the Law of Virtual and Augmented Reality. Edward Elgar Publishing. https://doi.org/10.4337/9781786438591

    10. Bavana k, (2022). “Privacy in the Metaverse” . Jus Corpus Law Journal, 2(3), 1–11. Accessed 8 November 2022, from https://www.juscorpus.com/wp- content/uploads/2022/03/2.-K.-Bavana.pdf

    11. Beduschi, Ana (2019). “Digital identity: Contemporary challenges for data protection, privacy and non-discrimination rights”. Big Data & Society, 6(2), 1–6.

        https://doi.org/10.1177/2053951719855091

    12. Bernal Bernabe, Jorge, Jose Luis Canovas, Jose L. Hernandez-Ramos, Rafael Torres Moreno, and Antonio Skarmeta (2019). Privacy-Preserving Solutions for Blockchain: Review and Challenges. IEEE Access, 7, 164908–164940. https://doi.org/10.1109/ACCESS.2019.2950872

    13. Belk, Russell, Mariam Humayun, and Myriam Brouard (2022). Money, possessions, and ownership in the Metaverse: NFTs, cryptocurrencies, Web3 and Wild Markets. Journal of Business Research, 153, 198-205. https://doi.org/10.1016/j.jbusres.2022.08.031

    14. Bird & Bird LLP. (2020a). Private Blockchains (pp. 1–4).

    15. Bird & Bird LLP. (2020b). Public Blockchains (pp. 1–4).

    16. Cheong, Ben Chester (2022). Avatars in the metaverse: potential legal issues and remedies. International Cybersecurity Law Review, 3(2), 467–494.   https://doi.org/10.1365/s43439-022-00056-9

    17. Commission Nationale Informatique & Libertés. (2018). Solutions for a responsible use of the blockchain in the context of personal data (pp. 1–10).

    18. Colcelli, Valentina (2019). Joint Controller Agreement Under GDPR. Eu and Member States – Legal and Economic Issues, 3, 1030–1047. https://doi.org/10.25234/eclic/9043

    19. Dremliuga, Roman, Olga Dremliuga, and Andrei Iakovenko (2020). Virtual Reality: General Issues of Legal Regulation. Journal of Politics and Law, 13(1), 75–81. https://doi.org/10.5539/jpl.v13n1p75

    20. Dwivedi, Yogesh K., Laurie Hughes, Abdullah M. Baabdullah, Samuel Ribeiro-Navarrete, Mihalis Giannakis, Mutaz M. Al-Debei, Denis Dennehy, Bhimaraya Metri, Dimitrios Buhalis, Christy M. K. Cheung, Kieran Conboy, Ronan Doyle, Rameshwar Dubey, Vincent Dutot, Reto Felix, D. P. Goyal, Anders Gustafsson, Chris Hinsch, Ikram Jebabli, Marijn Janssen, Young-Gab Kim, Jooyoung Kim, Stefan Koos, David Kreps, Nir Kshetri, Vikram Kumar, Keng-Boon Ooi, Savvas Papagiannidis, Ilias O. Pappas, Ariana Polyviou, Sang-Min Park, Neeraj Pandey, Maciel M. Queiroz, Ramakrishnan Raman, Philipp A. Rauschnabel, Anuragini Shirish, Marianna Sigala, Konstantina Spanaki, Garry Wei-Han Tan, Manoj Kumar Tiwari, Giampaolo Viglia, and Samuel Fosso Wamba (2022). Metaverse beyond the hype: Multidisciplinary perspectives on emerging challenges, opportunities, and agenda for research, practice and policy. International Journal of Information Management, 66, 1–55. https://doi.org/10.1016/j.ijinfomgt.2022.102542

    21. EUR-Lex. (2016). Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation – GDPR). Official Journal of the European Union, 1–88.

    22. European Commission. (2021). Laying down harmonised rules on artificial intelligence (Artificial Intelligence Act) and amending certain union legislative acts.

    23. European Commission. (2022). European Data Governance Act . Accessed 26 May 2023, from https://digital-strategy.ec.europa.eu/en/policies/data-governance-act

    24. European Commission. (n.d.). European Digital Identity. Accessed 29 June 2022, from https://ec.europa.eu/info/strategy/priorities-2019-2024/europe-fit-digital-age/european-digital-identity_en

    25. Gadekallu, Thippa Reddy, Thien Huynh-The, Weizheng Wang, Gokul Yenduri, Pasika Ranaweera, Quoc-Viet Pham, Daniel Benevides da Costa, and Madhusanka Liyanage (2022). Blockchain for the Metaverse: A Review. Computer Science, 1–17. https://doi.org/10.48550/arXiv.2203.09738

    26. Heister, Stanton, and Kristi Yuthas (2022). How Blockchain and AI Enable Personal Data Privacy and Support Cybersecurity. In book: Blockchain Potential in AI. IntechOpen. https://doi.org/10.5772/intechopen.96999

    27. Huang, Dijiang, Chun-Jen Chung, Qiuxiang Dong, Jim Luo, and Myong Kang (2019). Building private blockchains over public blockchains (PoP). Proceedings of the 34th ACM/SIGAPP Symposium on Applied Computing, 355–363. https://doi.org/10.1145/3297280.3297317

    28. Ibáñez, Luis-Daniel, Kieron O’Hara, and Elena Simperl (2018). On Blockchains and the General Data Protection Regulation. (pp. 1–13).

    29. KAVUT, Sevgi (2021). The Digital Identities In The Context Of Blockchain and Artificial Intelligence. Journal Of Selçuk Communication, 14(2), 529–548. https://doi.org/10.18094/josc.865641

    30. Kondova, Galia, and Jörn Erbguth (2020). “Self-sovereign identity on public blockchains and the GDPR”. Proceedings of the 35th Annual ACM Symposium on Applied Computing, 342–345. https://doi.org/10.1145/3341105.3374066

    31. Lai, Roy, and David LEE Kuo Chuen (2017). Blockchain–From Public to Private. Handbook of Blockchain, Digital Finance, and Inclusion, Volume 2: ChinaTech, Mobile Security, and Distributed Ledger, 145.

    32. Livingstone, Sonia, Mariya Stoilova, and Rishita Nandagiri (2019). Children’s data and privacy online Growing up in a digital age an evidence review. In London School of Economics and Political Science (pp. 1–57).

    33. LÓPEZ, ARLOS ÁLVAREZ, and ÁNGEL CARRASCO PERERA (2022). What is a metaverse? (pp. 1–5).

    34. Madiega, Tambiama, Polona Car, Maria Niestadt, and Louise van de Pol (2022). Metaverse, Opportunities, risks and policy implications (pp. 1–12).

    35. Matsson, David (2022). GDPR, Blockchain & Personal data - The rights of the individual v. the integrity of Blockchain. In Gothenburg University Publications Electronic Archive (GUPEA) (pp. 1–64).

    36. Michèle, finck (2019). Blockchain and the general data protection regulation (pp. 1–120).

    37. Mystakidis, Stylianos (2022). Metaverse”. Encyclopedia, 2(1), 486–497. https://doi.org/10.3390/encyclopedia2010031

    38. Naik, Nitin, and Paul Jenkins (2020). Your Identity is Yours: Take Back Control of Your Identity Using GDPR Compatible Self-Sovereign Identity. Proceedings of 2020 7th IEEE International Conference on Behavioural and Social Computing, BESC 2020, 1–6. https://doi.org/10.1109/BESC51023.2020.9348298

    39. Ning, Huansheng, Hang Wang, Yujia Lin, Wenxi Wang, Sahraoui Dhelim, Fadi Farha, Jianguo Ding, and Mahmoud Daneshmand (2021). A Survey on Metaverse: the State-of-the-art, Technologies, Applications, and Challenges. In Cornell University (pp. 1–34). https://doi.org/10.48550/arxiv.2111.09673

    40. Nuss, Martin, Alexander Puchta, and Michael Kunz (2018). Towards blockchain-based identity and access management for internet of things in enterprises. In Trust, Privacy and Security in Digital Business: 15th International Conference, TrustBus 2018, Regensburg, Germany, September 5–6, 2018, Proceedings 15 (pp. 167-181)

    41. Rauchs, Michel, Andrew Glidden, Brian Gordon, Gina C. Pieters, Martino Recanatini, François Rostand, Kathryn Vagneur, and Bryan Zheng Zhang (2018). Distributed ledger technology systems: A conceptual framework. The Cambridge Centre for Alternative Finance (CCAF) (pp. 1-97)

    42. Siibak, Andra, and Giovanna Mascheroni (2021). Children’s data and privacy in the digital age. In CO:RE Short Report Series on Key Topics (pp. 1–13).

    43. Singh, Ramandeep (2022). User Privacy Protection in the Emerging World of Metaverse (pp. 1–7).

    44. Strehle, Elias (2020). Public Versus Private Blockchains. In Blockchain Research Lab (pp. 1–8).

    45.Sullivan, Clare (2018). Digital identity – From emergent legal concept to new reality. Computer Law & Security Review, 34(4), 723–731.  https://doi.org/10.1016/j.clsr.2018.05.015

    46. Tama, Bayu Adhi, Bruno Joachim Kweka, Youngho Park, and Kyung-Hyune Rhee (2017). A critical review of blockchain and its current applications. In 2017 International Conference on Electrical Engineering and Computer Science (ICECOS) (pp. 109-113).

    47. TeamViewer. (2022). Augmented Reality vs Virtual Reality. Accessed 25 May 2023, from https://www.teamviewer.com/en/augmented-reality-ar-vs-virtual-reality-vr/

    48.Tijan, Edvard, Saša Aksentijević, Katarina Ivanić, and Mladen Jardas (2019). Blockchain Technology Implementation in Logistics. Sustainability, 11(4), 1–13.  https://doi.org/10.3390/su11041185

    49.Wang, Yuntao, Zhou Su, Ning Zhang, Dongxiao Liu, Rui Xing, Tom H. Luan, and Xuemin Shen (2022). A Survey on Metaverse: Fundamentals, Security, and Privacy. In Cornell University (pp. 1–31).

    50. Zhenlin, Huang, Chen Hao, and Ahmed (2017). Metaverse digital identity white paper (pp. 1–22).