Distributed ledgers finally brought me a usable digital identity!

Transcript

1. https://creativecommons.org/lic enses/by-sa/4.0/ Distributed ledgers finally brought me a usable digital

   identity! Richard Esplin February 2019

2. Agenda • What is self-sovereign identity • Verifiable credentials •

   Hyperledger Indy • Governance

3. What is Self Sovereign Identity?

4. Carriers of Identity

5. None

6. Digital Identity

7. AND INTRODUCED TREMENDOUS PROBLEMS

8. None
9. None

10. Ten Principles of Self-Sovereign Identity 1. Users must have an

    independent existence. 2. Users must control their identities. 3. Users must have access to their own data. 4. Systems and algorithms must be transparent. 5. Identities must be long-lived. 6. Information and services about identity must be transportable. 7. Identities should be as widely used as possible. 8. Users must agree to the use of their identity. 9. Disclosure of claims must be minimized. 10. The rights of users must be protected. Christopher Allen, 2016 http://www.lifewithalacrity.com/2016/04/the-path-to-self-soverereign-identity.html

11. Also Known As User-Centric Identity User-Controlled Identity User-Owned Identity Bring

    Your Own Identity

12. Verifiable Credentials

13. W3C Verifiable Credentials Ecosystem Holder Issuer Verifier Issues Credential Presents

    Credential Decentralized Identifiers (DIDs) Public Blockchain or other Decentralized Network Signs Credential Countersigns Credential Verifies Signatures Wallet

14. Sovrin Verifiable Credentials Ecosystem Prover Issuer Verifier Issues Credential Presents

    Credential Decentralized Identifiers (DIDs) Public Blockchain Signs Credential Countersigns Credential Verifies Signatures Wallet Pairwise Pseudonymous DIDs Pairwise Pseudonymous DIDs

15. Sovrin Verifiable Credentials Ecosystem Prover Issuer Verifier Issues Credential Presents

    Credential Decentralized Identifiers (DIDs) Signs Credential Countersigns Credential Verifies Signatures Wallet Zero Know-ledge Encoding Zero Know-ledge Proof Public Blockchain

16. The Story of an Empty Aquarium

17. Aaliyah’s International Pets that are friendly to you, and the

    environment!

18. Verify our story! Credential from: Marine Stewardship Advocates Claim: fish

    sold by Aaliyah’s International are sustainably caught or bred Inspection Date: December 8, 2018 Inspection Number: 1576295029659

19. Connecting to: Aaliyah’s International Connect to arrange delivery Your delivery

    will be done by: Speedy Delivery Incorporated Credential from: Aaliyah’s International Claim: an employee from Speedy Delivery Incorporated may act on our behalf Date range: January 16, 2019 to January 31, 2019 Credential from: Richard Esplin Claim: an employee from Speedy Delivery Incorporated may access a porch delivery box in my possession. Date range: January 16, 2019 to January 31, 2019

20. Credential from: Aaliyah’s International Claim: an employee from Speedy Delivery

    Incorporated may act on our behalf Date range: January 16, 2019 to January 31, 2019 Update: delivery service has changed. Your delivery will be done by: Global Fish Delivery January 28, 2019 Revoked Credential from: Aaliyah’s International Claim: an employee from Global Fish Delivery may act on our behalf Date range: January 16, 2019 to January 31, 2019

21. Credential from: Richard Esplin Claim: an employee from Speedy Delivery

    Incorporated may access a porch delivery box in my possession. Date range: January 16, 2019 to January 31, 2019 Credential from: Richard Esplin Claim: an employee from Global Fish Delivery may access a porch delivery box in my possession. Date range: January 16, 2019 to January 31, 2019 Revoked

22. Credential from: Aaliyah’s International Claim: the following employee of Global

    Fish Delivery is acting as our representative Name: Julio Valdez Date range: January 28, 2019 to January 30, 2019 Credential from: Richard Esplin Claim: a porch delivery box in my possession accepted a package From: Julio Valdez an employee of Global Fish Delivery acting as a representative for Aaliyah’s International Date: January 29, 2019

23. Credential from: Richard Esplin Claim: Luciana Black has access to

    my front door Number of times: Unlimited Date range: January 16, 2019 to January 31, 2019 Credential from: Richard Esplin Claim: Luciana Black has access to a porch delivery box in my possession Number of times: 1 Date range: January 16, 2019 to January 31, 2019
24. None

25. Purpose-Built Public Blockchain Engineered solely for privacy-enhancing self-sovereign identity Global

    public utility that no single entity owns or controls Open source, open standards, open governance Fast, efficient—based on Hyperledger Indy

26. Hyperledger Indy

27. Hyperledger Indy Public Permissioned Blockchain Custom built for Identity RBFT

    Consensus

28. Hyperledger Indy Catalyst Plenum Node SDK Agents Ursa Wrappers LibVCX

    LibNullPay LibIndy Python NodeJS Rust Java ObjectiveC Cloud Thin Edge Wallet Static

29. Correlation = Linkability Attribute based correlation Identifier-based Correlation Signature or

    Hash-based Correlation Timing Inferences Including if Multiple Parties Share Information (Collusion) The problem is correlation

30. Ensuring privacy The prover chooses when to disclose. The prover

    selects what should be disclosed. Don’t share more attributes than necessary Don’t share with more precision than necessary The verifier and the issue do not communicate. The prover can present to any verifier. A proof can hold multiple credentials from multiple issuers. A credential is anonymously revocable.

31. More Than Code

32. All blockchains are governed—whether it is implicit or explicit.

33. Governance of Public Blockchains Open Source Communities Algorithmic* Governance Frameworks

    Bitcoin Ethereum Tezos EOS DFINITY QTum Sovrin Veres One Decred * See: https://medium.com/@leo_pold_b/blockchain-governance-takeaways-from-nine-projects

34. Creating Trust Moral Pressure Reputational Pressure Institutional Pressure Security Systems

    Bruce Schneier, 2012 Liars and Outliers: Enabling the Trust that Society Needs to Thrive

35. The BLT Business Legal Technical

36. Sovrin Governance Framework

37. 37 Digital Credential Governance Framework

38. Every digital credential intended to serve more than one issuer/verifier

    needs a domain-specific governance framework. It specifies what issuers will issue what credentials under what policies to achieve a community’s trust objectives. — Drummond Reed Chief Trust Officer, Evernym

39. Evernym’s Design Requirements A reliable self-sovereign solution: • Provides an

    open source option • Implements open standards • Is private by design • And private by default • Exists within a trust framework