Self Sovereign Identity
Go to file
2018-12-15 13:29:23 -05:00
awesome-indy move note 2018-12-15 13:29:23 -05:00
blockchain-id2.toml Rename issues.toml to blockchain-id2.toml 2018-12-11 17:58:57 -05:00
blockchain-id.toml minor edit toml 2018-12-03 10:51:36 -05:00
contributing.md Update contributing.md 2018-12-15 10:13:54 -05:00
LICENSE Create LICENSE 2018-11-15 13:01:53 -05:00
README.md behind the cloud 2018-12-15 12:04:49 -05:00

Awesome Decentralized Identity Awesome

DID, Blockchain and Self-Sovereign Identity Resources

Imagine a world where you are in direct control of your personal information; a world where you can limit and control how much information you share while retaining the ability to transact in the world. This is self-sovereign identity, and it is already here. Blockchain is the underlying technology paving the path to self-sovereign identity through decentralized networks. It ensures privacy and trust, where transactions are secure, authenticated and verifiable and endorsed by relevant, permissioned participants. -Jerry Cuomo (IBM)

[T]witter • [G]ithub • [B]log • [wp] whitepaper • [D]ocumentation • [F]orums • [C]hat • [tele]gram • [web]site • [ϟ] related resource • [>] related section • [^] back to the contents.

Contents

A Note from the Editor^

Thanks to those who are working to make our identity experience, and the internet, a better place.

—Information is not so easily organized in a linear fashion. This list is a by-product of a few clients asking me to write about Hyperledger Indy, which led to writing a few more articles about Indy, which inspired me to enter all of the best blockchain, self-sovereign, and decentralized identity links into a database I've been working on; to power a web-app for search, navigation by tags, etc. The SuperSource app will have comments, submissions, ratings and reactions; so that it can become a collabroative effort among anyone who gets involved. Furthermore, the Crypto Library is a growing collection of all types of crypto related information, not only ID.

In the mean-time, after gathering all of the links I had already into one collection, I knew I could make an awesome list out of them sooner than a live demo of the app that is in progress. Now, of course, there are many more links than I began with; and it was already a bit more expansive than typical Awesome lists. Pehaps this would be better called "epic-decentralized-id" or is that too much?

ϟ I'm also working on /awesome-indy (formerly called 'awesome-sovrin') as a place to focus more on the Sovrin\Indy protocol, governance, and ecosystem, and have spent some time on /peacekeeper/blockchain-identity, as well. I hope for these lists to compliment each-other.ϟ

For now, I'm becoming more familiar with all of this material, and how it fits together in the decentralized identity space. I expect to be actively engaged with this repository for the next month or so. Within that time it should become a more organized space, and easier for contributors to get involved.

Pull Requests and\or Crypto Contributions Welcome

History^

This isn't meant to be a complete historical outline, just enough iiw\rwot backround to provide context for the rest.

The Augmented Social Network and the IDCommons^

  • The Augmented Social Network: Building Identity and Trust into the Next-Generation Internet, presented at the June 2003 Planetwork conference and published in First Monday the Peer-Reviewed Journal on the Internet 8/4/03.

    "This paper proposes the creation of an Augmented Social Network (ASN) that would build identity and trust into the architecture of the Internet"

Ideas from the ASN were the foundation of much that followed.

The Identity Commons (2001-Present) was originally created by Owen Davis and Andrew Nelson in 2001 to evangelize the creation of a decentralized user-centric identity infrastructure and to address the resulting social trust issues.

"Their most important contribution may have been the creation, in association with the Identity Gang, of the Internet Identity Workshop (2005-Present) working group. "[ϟ]

Internet Identity Workshop^

In 2005, Kaliya Young[T], Phil Windley[T][V], Drummond Reed[T][B], and Doc Searls[T][B] hosted the first Internet Identity Workshop(IIW)[T] in Berkeley to discuss "architectural and governance proposals for Internet-wide identity services and their underlying philosophies." -Announcing IIW 2005

Since then, the IIW has met bi-anually, actively supporting the development of the identity software-ecosystem, including OpenID('05), OpenID 2.0('06), OAuth('10), FIDO('13) and OpenID Connect('14).

IIW participants began the effort towards creating a truly "user centric identity," in contrast to identity solutions whos focus has been fulfilling the needs of the enterprise. The pioneers of decentralized identity have long struggled against the "identity silo paradox," that while the identerati continually work on solutions to break up these silos, the enterprise has had a strong financial incentive to retain them.

In April of 2014, the European Parliament demonstrates strong support for the GDPR, which passes back and forth through the European Council, Commision and Parliment throught the rest of the year.

8/14 The Credentials Community Group[ϟ] forms, hosted by World Wide Web Consortium(W3C)[T][G] : "to forge a path for a secure, decentralized system of credentials that would empower both individual people and organizations on the Web to store, transmit, and receive digitally verifiable proof of qualifications and achievements." —proposed by Manu Sporney[T] (of digitalbazaar.com)

What is Sovereign Source Authority? shows an early use of 'sovereign' in relation to our internet identities. The term "Self Sovereign Identity" started becoming widely used in 2014.[ϟ][ϟ]

Bitnation and the United Nations^

9\15 Bitnation "seeks to establish the concept of 'world citizenship' via a bitcoin based identity, offering 'Blockchain Emergency IDs' to refugees.[ϟ]

The same month, the UN unveiled it's Agenda for Sustainable Development:

  • Promote peaceful and inclusive societies for sustainable development, provide access to justice for all and build effective, accountable and inclusive institutions at all levels
  • Substantially reduce corruption and bribery in all their forms Develop effective, accountable and transparent institutions at all levels
  • By 2030, provide legal identity for all, including birth registration
  • Ensure public access to information and protect fundamental freedoms, in accordance with national legislation and international agreements—(emphasis mine)
  • DIGITAL IDENTITY AS A BASIC HUMAN RIGHT
  • AID:Tech [T] — "is a voucher and digital identity solution for refugees. A digital record of a person's identity is stored on a smart card, along with various additional information. Blockchain technology is used to distribute all resources in a highly traceable manner." (another early example of blockchain for humanitarian aide)

Rebooting the Web Of Trust^

In relation to SSI, 'Web of Trust' is a network of relationships that attest to our identity claims. Each party attesting to your identity information becomes a strand in your web of trust.

The first Rebooting Web of Trust(RWoT) workshop was held during November 2015; attracting the likes of Vitalik Buterin, Peter Todd, Gregory Maxwell, Joel Dietz, Christopher Allen, and Jon Callas, according to Andreas Antonopolis.

That workshop, produced 5 technical white papers:
5 WoT-usecases ϟ Decentralized PKI ϟ Smart Signatures ϟ Creating a New World of Trust

The Web of Trust is a buzzword for a new model of decentralized self-sovereign identity. Its a phrase that dates back almost twenty-five years, the classic definition derives from PGP [...] the vibrant blockchain community is also drawing new attention to the concept we aim to reboot it. - Rebranding the Web of Trust

At the end of 2015, the Department of Homeland Security announced that it had funds available for the development of Blockchain Security and Identity Verification Technologies.

ID2020 and the GDPR^

  • 4/16 the EU adopted the GDPR to be enacted as law May 2018.
  • The second RWoT workshop ran in conjunction with the UN's ID2020 Summit in New York that May; clearly a significant time for decentralized identity:

    1.1 Billion people live without an officially recognized identity — This lack of recognized identification deprives them of protection, access to services, and basic rights. ID2020 is a public-private partnership dedicated to solving the challenges of identity for these people through technology. - id2020.org

  • Identity Crisis: Clear Identity through Correlation
  • Christopher Allen[T][G] details the overarching history of internet idenitity standards in his seminal work (submitted to ID2020\RWoT workshop):
    • The Path to Self-Soverereign Identity[ϟ] details the history of identity standards leading up to self-sovereign and details the 10 principles of self-sovereign identity.

      I am part of the team putting together the first ID2020 Summit on Digital Identity at the United Nations

  • Identity System Essentials 3/16 (Original Evernym Identity WP also submitted to ID2020\RWoT workshop)

Evident from the other whitepapers submitted to the second RWoT Workshop, the DID identifier had begun to emerge:

  • Decentralized Identifiers (DIDs) and Decentralized Identity Management (DIDM)

    "Decentralized Identifiers (DID) stored in a permissioned blockchain enable principals to directly control their own identities with cryptographic proofs and secure, addressable network endpoints. DIDs further enable a Decentralized Identity Management (DIDM) infrastructure that will empower people and organizations to securely and confidentially manage and assert their identities."

  • Requirements for DIDs

    "Respect Network is conducting a research project for the U.S. Department of Homeland Security, HSHQDC-16-C-00061, to analyze the applicability of blockchain technologies to a decentralized identifier system. Our thesis is that blockchains, or more generically distributed ledgers, are a potentially powerful new tool for “identity roots” — the starting points for an Internet identity. However “blockchain identity” may not fully address the core security and privacy principles needed in a complete identity system. In this case DIDs — Decentralized Identifiers rooted on a distributed ledger — may end up being a foundational building block for higher level identity management solutions. -

  • At this point in time DLT innovation, the United Nations Sustainable Development Goals, and the EU GDPR all came together supporting a core identirati tenant: Eliminating id data silos and empowering users regarding digital identity.


The Story of Open SSI Standards - Drummond Reed/Evernym SSIMeetup.org

Decentralized Identity Foundation^

Additional Information on iid standards history^

Resources

Self Sovereign Identity^

0/ “Self-Sovereign Identity: A Progress Report”…

— Christopher Allen (@ChristopherA) April 25, 2018

Selected 'Rebooting Web of Trust' Whitepapers^

RWoT Use Cases^


The Story of Open SSI Standards - Drummond Reed/Evernym SSIMeetup.org

DID the Decentralized Identifier^

DID Adoption ^


The Story of Open SSI Standards - Drummond Reed/Evernym SSIMeetup.org

DID Auth^


The Story of Open SSI Standards - Drummond Reed/Evernym SSIMeetup.org

Verifiable Claims^


The Story of Open SSI Standards - Drummond Reed/Evernym SSIMeetup.org

Hubs-Agents^

Universal Resolver^

Decentralized Key Management DKMS^


The Story of Open SSI Standards - Drummond Reed/Evernym SSIMeetup.org

Evernym^

The Sovrin Foundation^

Selected articles from Windley.com ^

Hyperledger Indy^

Decentralized Public Key Infrastructure DPKI^

Structured Data Standards^

  • Learning Machine developed Blockcerts Univesal Identifier —open standard for issuing and verifying blockchain-based official records; The project offers open-source libraries, tools, and mobile apps. MIT has issued digital certificates based on this standard.
  • Schema — a collaborative, community activity with a mission to create, maintain, and promote schemas for structured data on the Internet. Schema.org vocabulary can be used with many different encodings, including RDFa, Microdata and JSON-LD. These vocabularies cover entities, relationships between entities and actions, and can easily be extended through a well-documented extension model. Over 10 million sites use Schema.org to markup their web pages and email messages. Many applications from Google, Microsoft, Pinterest, Yandex and others already use these vocabularies to power rich, extensible experiences."
    • ÆTERNITY [G]: using Schema's standards: "offers an identity architecture where every account has a unique ID number, and unique names can be registered and linked to arbitrary data such as addresses on the blockchain. Schema's are used for representing data about persons and organizations."
  • DIDs[>] and Verifiable Claims of the W3C [>]

IBM^

Ethereum^

Ethereum Identity Applications^

  • uPort [G] [T]
  • Deloitte SmartID [G]
    • "Smart Identity uses the Ethereum blockchain to represent an identity using a smart contract, attributes can be added by the identity owner and are stored in hash form"
  • Nuggets [wp]
    • "is a blockchain platform giving users a single biometric tool for login, payment and identity verification. It stores an individual's information in a "personal cloud" in "zero-knowledge blockchain storage".
  • Jolocom
    • a "SmartWallet" for everyone to own their personal digital identity, using Social Linked Data, WebID, and verifiable claims standards via Ethereum smart contracts.
  • Democracy Earth Foundation [G]
    • developing Sovereign, a blockchain direct democracy tool using "vote" tokens to grant democratic participation rights to every human. A proof-of-individuality (POI) process based on peer-to-peer validation establishes that a self-sovereign identity is uniquely tied to a single person. The project introduces a number of interesting socio-technical concepts such as "Social Smart Contract", "Initial Rights Offering", and "Cryptographically Induced Equality". Cooperation is happening with other decentralized identity initiatives such as Blockstack and uPort.
  • poa.network[D] POA Network is an Ethereum-based platform that offers an open-source framework for smart contracts. POA Network is a sidechain to Ethereum utilizing Proof of Authority as its consensus mechanism.

Personal Data: Wallets, Marketplaces, etc.^

  • Mydata [T] [D] [D]
    • goal: to empower individuals with their personal data, thus helping them and their communities develop knowledge, make informed decisions, and interact more consciously and efficiently with each other as well as with organisations."
    • Consent[ϟ] — "platform for trusted personal data applications and services, using Ethereum smart contracts to implement decentralized identifiers, verified credentials, consent receipts, a web of trust, and exchange of assets and value."
  • Pillar Project [wp]
    • planning to offer a "Personal Data Locker" consisting of a wallet, browser, and token exchange. Personal assets will be put on a blockchain, and "Pillar" tokens will be issued."
  • Aversafe —"allows individuals to store personal details, work history, certificates and achievements. It leverages a permissioned blockchain for trusted audit and participation in the storage of attestation data separate from the actual data stored"
  • Datum [wp]
    • "network allows anyone to store structured data on a smart contract blockchain. Data can optionally be bought and sold on a marketplace using the DAT token. Datum leverages BigchainDB and IPFS as data storage backends. All data is encrypted and protected using AES256-GCM.
  • ONTology [G]— "a "Distributed Trust Network" which combines a cross-chain identity system, peer-to-peer data transmission, data authorization mechanisms, distributed data storage, attestation, and various industry-specific modules. It also includes an Ontology Crypto Package (OCP) and an Ontology Marketplace (OM)."
  • We can do better than selling our data-Doc Searls(IIW)
  • Pro-civis — "e-government as a service" platform called "eID+". It enables citizens to get an official, electronic Citizen-ID on a mobile app.
    • The platform includes the Vetri wallet and marketplace. 'Earn extra income and rewards by joining the data economy.'"

Blockchain ID Initiatives ^

  • Danube Tech — digital identity and personal data, including personal agents, semantic graphs, and blockchain (xdi) (navigator)
  • Identity at Coinbase: Welcoming the Distributed Systems team [ϟ]
  • Shocard — "Blockchain-Based Mobile Identity Platform"
  • Authenteq [T] [G]
    • enables users to create their own sovereign digital IDs which are stored encrypted on BigChainDB
  • JLinc — registers cryptographic public keys on the Stellar blockchain.

    "The founders have been at the center of a community of developers working on “user-centric digital identity for almost two decades."

  • Internet of People — "an open, decentralized infrastructure consisting of device-to-device communication, blockchain tokens, profile servers, and other components." -Founded by Fermat
  • Civic launches: identity.com[G][B]
  • Mooti [D]
    • offers an "identity chain" technology that makes it possible to issue and revoke verified claims using elliptic curve cryptography (curve25519, secp256k1) and includes privay-enhancing features
  • Spidchain [wp]
    • "offers a platform for self-sovereign identity, including desktop and mobile apps for end-users. It uses Decentralized Identifiers (DIDs) - backed by optionally Bitcoin or Ethereum - to implement a marketplace for verifiable claims. The Spidchain applications allow individuals to create, recover, and revoke DIDs, to authenticate, to sign and verify files and claims, and more."
  • Cicada
    • a Dapp platform built for a "direct democracy." envisions using iris scans to generate decentralized universal identifiers ("HUIDs") for every human on the planet, a method referred to as "biocryptics". "HUIDs" can have "sub-IDs" to support selective disclosure. PII can be stored in an "info wallet". Key parts of the system also include smart contracts, zero-knowledge proofs, mixnets, and more."
  • Keyp —"Welcome to Europes fastest growing open digital identity ecosystem."
  • I/O Digital Foundation [wp]
    • "offers a Proof-of-Stake blockchain called Decentralised Input Output Name Server (DIONS). It will enable applications such as identity and alias registration, storage of legal documents, key exchange, and encrypted messaging."

State Led Initiatives^

Canada ^

Netherlands^

USA^

Spain^

  • Alastria [G]
    • a non-profit consortium building a national blockchain ecosystem for Spain. The security and veracity of information will be ensured through the identification of natural and legal persons, while at the same time allowing citizens to have control over their personal information in a transparent way following the guidelines set by the European Union.

Switzerland^

Estonia^

Humanitarian^

2018 Identity Landsacpe brought to you by: One World Identity — independent advisory and digital strategy consultancy focused on trust and the data economy.

EU General Data Protection Regulation Act^

Reports^

Research-Papers^

Additional Thought around Identity

  • Decentralized Identity Trilemma

    There seems to exist a trilemma in decentralized identity analogous to @Zooko's triangle. None of the existing solutions are at the same time: 1) privacy-preserving, 2) Sybil-resistant 3) self-sovereign -[T]

  • Proof of Thought (PoT)
  • Queer Privacy

    Stories about using the Internet as a tool to find out more about yourself, and as a tool to express and empower; about the dangers of Internet censorship and about the practical realities of maintaining multiple distinct digital identities.

  • @SarahJamieLewis Twitter thread on Identity

    Any technology which relies on the existence of, or attempts to create a, global, unique identity is oppressive by design. Stop" innovating" oppressive structures.

Video^

Slideshare

Podcasts^

Sources^


Brought to you by The Crypto LibrarySuper Source

BTC— 1GvkjHtiy9LUjVkStnEAXxjhcoS56aCokY

DOGE— DSzMxfABB8EwKiumzV7YHhS7HTvWAyM7QF