No content

Self introduction Copyright © 2020, Naohiro Fujie, All Rights Reserved 2

Today’s agenda items Copyright © 2020, Naohiro Fujie, All Rights Reserved 3

• Identifier • Identity Japan Osaka Fujie Fujie Fujie Fujie Copyright © 2020, Naohiro Fujie, All Rights Reserved 4

Identity https://blog.goodaudience.com/how-blockchain-could-become-the-onramp-towards-self-sovereign-identity-dd234a0ea2a3 Copyright © 2020, Naohiro Fujie, All Rights Reserved 5

Identity https://sovrin.org/faq/what-is-self-sovereign-identity/ recognizes an individual should own and control their identity without the intervening administrative authorities Copyright © 2020, Naohiro Fujie, All Rights Reserved 6

Car rental Store Company Hospital User present identity by their choice Trust issuers No need to validate identity by accessing issuers Issue identity Copyright © 2020, Naohiro Fujie, All Rights Reserved 7

Copyright © 2020, Naohiro Fujie, All Rights Reserved 8

Copyright © 2020, Naohiro Fujie, All Rights Reserved 9

Aspect Requirements for SSI Issues on current identity model Users Do not rely on a specific identity provider Business continuity and availability If the identity provider stop their business, user can not use federated services. Account management All accounts are managed under policies of the identity provider and if they suspend the accounts, users can no longer use federated services. Privacy considerations IdPʼs awareness of users behaviours IdP can know which services the user wants to use by identity federation. Attribute management IdP and RP decide which attributes are provided between them Account linkage by correlation of RPs RP can know unintended attributes by correlation with other RPs Service Provide rs Able to trust identity which was presented by users Trust claim values Based on the identity proofing/KYC process on the IdP Trust issuers Pre-established trust(static trust) Copyright © 2020, Naohiro Fujie, All Rights Reserved 10

Aspect Requirements for SSI Issues on current identity model Users Do not rely on a specific identity provider Business continuity and availability If the identity provider stop their business, user can not use federated services. Account management All accounts are managed under policies of the identity provider and if they suspend the accounts, users can no longer use federated services. Privacy considerations IdPʼs awareness of users behaviours IdP can know which services the user wants to use by identity federation. Attribute management IdP and RP decide which attributes are provided between them Account linkage by correlation of RPs RP can know unintended attributes by correlation with other RPs Service Provide rs Able to trust identity which was presented by users Trust claim values Based on the identity proofing/KYC process on the IdP Trust issuers Pre-established trust(static trust) Copyright © 2020, Naohiro Fujie, All Rights Reserved 11 3 1 5 4 2 6 Numbers in The Laws Of Identity in SSI

Identifiers Copyright © 2020, Naohiro Fujie, All Rights Reserved 12

Copyright © 2020, Naohiro Fujie, All Rights Reserved 13

• How to trust issued claims • How to trust the issuer Copyright © 2020, Naohiro Fujie, All Rights Reserved 14

Copyright © 2020, Naohiro Fujie, All Rights Reserved 15 Aspect Requirements for SSI Issues on current identity model Users Do not rely on a specific identity provider Business continuity and availability If the identity provider stop their business, user can not use federated services. Account management All accounts are managed under policies of the identity provider and if they suspend the accounts, users can no longer use federated services. Privacy considerations IdPʼs awareness of users behaviours IdP can know which services the user wants to use by identity federation. Attribute management IdP and RP decide which attributes are provided between them Account linkage by correlation of RPs RP can know unintended attributes by correlation with other RPs Service Provide rs Able to trust identity which was presented by users Trust claim values Based on the identity proofing/KYC process on the IdP Trust issuers Pre-established trust(static trust)

Copyright © 2020, Naohiro Fujie, All Rights Reserved 16

Car rental Store Company Hospital User present identity by their choice Trust issuers No need to validate identity by accessing issuers Issue identity Copyright © 2020, Naohiro Fujie, All Rights Reserved 17 How to trust the presented identity without asking to the issuer

Car rental Store Company Hospital User present identity by their choice Trust issuers Issue identity Copyright © 2020, Naohiro Fujie, All Rights Reserved 18 PKI

Car rental Store Company Hospital User present identity by their choice Trust issuers Issue identity Copyright © 2020, Naohiro Fujie, All Rights Reserved 19 PKI Who operates the PKI?

Car rental Store Company Hospital User present identity by their choice Trust issuers Issue identity Copyright © 2020, Naohiro Fujie, All Rights Reserved 20 PKI No falsification of the key by the issuer or the operators?

Car rental Store Company Hospital User present identity by their choice Trust issuers Issue identity Copyright © 2020, Naohiro Fujie, All Rights Reserved 21 PKI on DLT Register wallet and bind to the identity

DLT(Public Key Infrastructure) Gov/Telco/Banks etc Userʼs ID Wallet Applications Copyright © 2020, Naohiro Fujie, All Rights Reserved 22

Copyright © 2020, Naohiro Fujie, All Rights Reserved 23

Copyright © 2020, Naohiro Fujie, All Rights Reserved 24

Sovrin Foundation’s governance model Holder /Prover Issuer Verifier Verifiable Credential Proof Trust Trust Verifiable Credential Governanc e Authority Governance Framework Publishes Holder /Prover Issuer Verifier Verifiable Credential Proof Trust Copyright © 2020, Naohiro Fujie, All Rights Reserved 25

Sovrin Governance Framework https://docs.google.com/document/d/1WqUOqdTBc3JACIlRviJoWJRcJHTNTNzk9_As9v-jwrY Copyright © 2020, Naohiro Fujie, All Rights Reserved 26

Copyright © 2020, Naohiro Fujie, All Rights Reserved 27

Copyright © 2020, Naohiro Fujie, All Rights Reserved 28

Copyright © 2020, Naohiro Fujie, All Rights Reserved 29

Copyright © 2020, Naohiro Fujie, All Rights Reserved 30 OIDC4IDA VC Philosophy IdP centric User centric Focus on Identity verification on IdP Identity verification on RP Provides Verified identity information Verifiable identity information Based on Pre-established trust relationship between RP and IdP Immutability of a DLT

https://identity.foundation/presentation-exchange/ Copyright © 2020, Naohiro Fujie, All Rights Reserved 31

Copyright © 2020, Naohiro Fujie, All Rights Reserved 32

Copyright © 2020, Naohiro Fujie, All Rights Reserved 33 OpenID Provider DID SIOP Wallet Holder Wallet Verifier KYC providers SIOP Wallet RP Issuer Presentation Exchange OIDC4IDA VC VC Presentation Exchange JWT VC JWT OIDC4IDA Distributed Claim OpenID Connect DID/VC

Copyright © 2020, Naohiro Fujie, All Rights Reserved 34 Write issuing information In university Private sectors Inter universities Verify ceriticates Record students information - Digital student card - Identity proofing at online classes - Portable certificates - Inter universities ID federation - Digitalized certificates - Payment system integration Login with student ID Issue certificates (enrolment, graduates) Students ID federation Registration/Issue Use cases Digital Student Card Certificate Issuing sys ID platform Distributed Ledger Technology keio.jp

Summary/Conclusion Copyright © 2020, Naohiro Fujie, All Rights Reserved 35