Self Sovereign Identity
Go to file
2018-12-11 18:14:59 -05:00
awesome-sovrin housekeeping 2018-12-11 12:10:27 -05:00
blockchain-id2.toml Rename issues.toml to blockchain-id2.toml 2018-12-11 17:58:57 -05:00
blockchain-id.toml minor edit toml 2018-12-03 10:51:36 -05:00
contributing.md Update contributing.md 2018-12-11 18:02:52 -05:00
LICENSE Create LICENSE 2018-11-15 13:01:53 -05:00
README.md Update README.md 2018-12-11 18:14:59 -05:00

Awesome Decentralized Identity Awesome

DID, Blockchain and Self-Sovereign Identity Resources

Imagine a world where you are in direct control of your personal information; a world where you can limit and control how much information you share while retaining the ability to transact in the world. This is self-sovereign identity, and it is already here. Blockchain is the underlying technology paving the path to self-sovereign identity through decentralized networks. It ensures privacy and trust, where transactions are secure, authenticated and verifiable and endorsed by relevant, permissioned participants. -Jerry Cuomo (IBM)

Contents

A Note from the Editor^

Thanks to those who are working to make our identity experience, and the world, a better place.

—Information is not so easily organized in a linear fashion. This list is a by-product of an effort to enter the best blockchain, self-sovereign, and decentralized identity links into a database to will power a web-app for search, navigation by tags, and pages like this with pre-arranged information. The SuperSource will have comments, submissions, ratings and reactions; so that it can become a collabroative effort among anyone who is interested. Furthermore, the Crypto SuperSource is a growing collection of all types of crypto related information, not only ID.

In the mean-time, after gathering all of the links I had already into one collection, I knew I could make an awesome list out of them sooner than a live demo of the app that is in progress. Now there are many more links than I began with.

I'm also working on /awesome-sovrin as a place to focus more on the Sovrin\Indy protocol and ecosystem. I hope for these 'Awesome' lists to compliment each-other along with /peacekeeper/blockchain-identity. I'm open to suggestions on how to do that.

This is still a work in progress, I expect it to mature over the next month or so.

Pull Requests Welcome

History^

This isn't a firm historical outline, just enough to provide context for the rest.

Internet Identity Workshop^

In 2005, Kaliya Young[twitter], Phil Windley[twitter], Drummond Reed[twitter][blog], and Doc Searls[twitter][blog] hosted the first Internet Identity Workshop(IIW)[twitter] in Berkeley to discuss "architectural and governance proposals for Internet-wide identity services and their underlying philosophies." -Announcing IIW 2005

Since then, the IIW has met bi-anually, actively supporting the development of the identity software-ecosystem, including OpenID('05), OpenID 2.0('06), OAuth('10), FIDO('13) and OpenID Connect('14).

IIW participants began the effort towards creating a truly "user centric identity," in contrast to identity solutions whos focus has been fulfilling the needs of the enterprise. The pioneers of decentralized identity have long struggled against the "identity silo paradox," that while the identerati continually work on solutions to break up these silos, the enterprise has had a strong financial incentive to retain them.

In April of 2014, the European Parliament demonstrates strong support for the GDPR, which passes back and forth through the European Council, Commision and Parliment throught the rest of the year.

8/14 The Credentials Community Group[3] forms, hosted by World Wide Web Consortium(W3C)[twitter][github] : "to forge a path for a secure, decentralized system of credentials that would empower both individual people and organizations on the Web to store, transmit, and receive digitally verifiable proof of qualifications and achievements." —proposed by Manu Sporney[twitter][4]

What is Sovereign Source Authority? shows an early use of 'sovereign' in relation to our internet identities. The term "Self Sovereign Identity" started becoming widely used in 2014.[5][6]

Bitnation and the United Nations^

9\15 Bitnation "seeks to establish the concept of 'world citizenship' via a bitcoin based identity, offering 'blockchain emergency IDs' to refugees.[7]

The same month, the UN unveiled it's Agenda for Sustainable Development.

  • Promote peaceful and inclusive societies for sustainable development, provide access to justice for all and build effective, accountable and inclusive institutions at all levels
  • Substantially reduce corruption and bribery in all their forms Develop effective, accountable and transparent institutions at all levels
  • By 2030, provide legal identity for all, including birth registration
  • Ensure public access to information and protect fundamental freedoms, in accordance with national legislation and international agreements —Excerpt: Transforming our world: the 2030 Agenda for Sustainable Development (emphasis mine)
  • DIGITAL IDENTITY AS A BASIC HUMAN RIGHT
  • AID:Tech [twitter] — "is a voucher and digital identity solution for refugees. A digital record of a person's identity is stored on a smart card, along with various additional information. Blockchain technology is used to distribute all resources in a highly traceable manner."

Rebooting the Web Of Trust^

In relation to SSI, 'Web of Trust' is a network of relationships that attest to our identity claims. Each party attesting to your identity information becomes a strand in your web of trust.

The first Rebooting Web of Trust(RWoT) workshop was held during November 2015; attracting the likes of Vitalik Buterin, Peter Todd, Gregory Maxwell, Joel Dietz, Christopher Allen, and Jon Callas, according to Andreas Antonopolis.

That workshop, produced 5 technical white papers:
5 WoT-usecases | Decentralized PKI | Smart Signatures | Creating a New World of Trust

The Web of Trust is a buzzword for a new model of decentralized self-sovereign identity. Its a phrase that dates back almost twenty-five years, the classic definition derives from PGP [...] the vibrant blockchain community is also drawing new attention to the concept we aim to reboot it. - Rebranding the Web of Trust

At the end of 2015, the Department of Homeland Security announced that it had funds available for the development of Blockchain Security and Identity Verification Technologies.

ID2020 and the GDPR^

4/16 the EU adopted the GDPR, enacted as law May 2018. Christopher Allen[twitter][github] details the overarching history of internet idenitity standards in his seminal work (Also submitted to the ID2020\RWoT workshop):

  • The Path to Self-Soverereign Identity[8] details the history of identity standards leading up to self-sovereign and details the 10 principles of self-sovereign identity.

    I am part of the team putting together the first ID2020 Summit on Digital Identity at the United Nations

  • The second RWoT workshop ran in conjunction with the UN's ID2020 Summit in New York that May:

    1.1 Billion people live without an officially recognized identity — This lack of recognized identification deprives them of protection, access to services, and basic rights. ID2020 is a public-private partnership dedicated to solving the challenges of identity for these people through technology. - id2020.org

  • Identity Crisis: Clear Identity through Correlation
  • Identity System Essentials 3/16 (Original Evernym Identity WP also submitted to ID2020\RWoT workshop)

Evident from whitepapers submitted to the RWoT\ID2020 Workshop, the DID identifier had begun to emerge:

  • Decentralized Identifiers (DIDs) and Decentralized Identity Management (DIDM)

    "Decentralized Identifiers (DID) stored in a permissioned blockchain enable principals to directly control their own identities with cryptographic proofs and secure, addressable network endpoints. DIDs further enable a Decentralized Identity Management (DIDM) infrastructure that will empower people and organizations to securely and confidentially manage and assert their identities."

  • Requirements for DIDs

    "Respect Network is conducting a research project for the U.S. Department of Homeland Security, HSHQDC-16-C-00061, to analyze the applicability of blockchain technologies to a decentralized identifier system. Our thesis is that blockchains, or more generically distributed ledgers, are a potentially powerful new tool for “identity roots” — the starting points for an Internet identity. However “blockchain identity” may not fully address the core security and privacy principles needed in a complete identity system. In this case DIDs — Decentralized Identifiers rooted on a distributed ledger — may end up being a foundational building block for higher level identity management solutions. -

  • At this point in time DLT innovation, the United Nations Sustainable Development Goals, and the EU GDPR all came together supporting a core identirati tenant: Eliminating id data silos and empowering users regarding digital identity.

Decentralized Identity Foundation^

Resources

Self Sovereign Identity^

0/ “Self-Sovereign Identity: A Progress Report”…

— Christopher Allen (@ChristopherA) April 25, 2018

Selected 'Rebooting Web of Trust' Whitepapers^

RWoT Use Cases^

World Wide Web Consortium^

DID the Decentralized Identifier^

DID Auth^

Evernym^

The Sovrin Foundation^

Selected articles from Windley.com ^

Hyperledger Indy^

IDEMix ZKP ^

—Zero Knowledge Proofs in Indy

Our zero-knowledge proofs are part of the Idemix protocol, where they are used to prove the possession of Camenisch-Lysyanskaya credentials. We also use zero-knowledge proofs in the revocation protocol, which is based on cryptographic accumulators. —What Zero Knowledge Poof Algorithm is used in Sovrin?

Identity Mixer is not directly (re)implemented by Sovrin, but its cryptographic foundations are very similar, and Sovrins implementation includes most of its extended features (predicates, multi-credential, revocation, advanced issuance…). One of the researchers who helped to create Identity Mixer is on Sovrins Technical Governance Board and has offered insight to keep the implementations aligned on goals and methods. —How is IDEMix Implemented?

IBM^

Ethereum^

Ethereum Identity Applications^

  • uPort [github] [twitter]
  • Deloitte SmartID [github]
    • "Smart Identity uses the Ethereum blockchain to represent an identity using a smart contract, attributes can be added by the identity owner and are stored in hash form"
  • Nuggets [wp]
    • "is a blockchain platform giving users a single biometric tool for login, payment and identity verification. It stores an individual's information in a "personal cloud" in "zero-knowledge blockchain storage".
  • Jolocom
    • a "SmartWallet" for everyone to own their personal digital identity, using Social Linked Data, WebID, and verifiable claims standards via Ethereum smart contracts.
  • Democracy Earth Foundation [github]
    • developing Sovereign, a blockchain direct democracy tool using "vote" tokens to grant democratic participation rights to every human. A proof-of-individuality (POI) process based on peer-to-peer validation establishes that a self-sovereign identity is uniquely tied to a single person. The project introduces a number of interesting socio-technical concepts such as "Social Smart Contract", "Initial Rights Offering", and "Cryptographically Induced Equality". Cooperation is happening with other decentralized identity initiatives such as Blockstack and uPort.
  • poa.network[HBBFT] POA Network is an Ethereum-based platform that offers an open-source framework for smart contracts. POA Network is a sidechain to Ethereum utilizing Proof of Authority as its consensus mechanism.

State Led Initiatives^

Canada ^

Netherlands^

USA^

Spain^

  • Alastria [github]
    • a non-profit consortium building a national blockchain ecosystem for Spain. The security and veracity of information will be ensured through the identification of natural and legal persons, while at the same time allowing citizens to have control over their personal information in a transparent way following the guidelines set by the European Union.

Switzerland^

Estonia^

Blockchain ID Initiatives ^

  • Danube Tech — digital identity and personal data, including personal agents, semantic graphs, and blockchain [xdi] [navigator]
  • Identity at Coinbase: Welcoming the Distributed Systems team [wired]
  • Shocard — "Blockchain-Based Mobile Identity Platform"
  • Authenteq [twitter] [github]
    • enables users to create their own sovereign digital IDs which are stored encrypted on BigChainDB
  • JLinc — registers cryptographic public keys on the Stellar blockchain.

    "The founders have been at the center of a community of developers working on “user-centric digital identity for almost two decades."

  • Internet of People — "an open, decentralized infrastructure consisting of device-to-device communication, blockchain tokens, profile servers, and other components." -Founded by Fermat
  • Blockchain Helix[ico][wp]
    • "Identity as a Service", "Data as a Service" and "Blockchain as a Service" The company offers to increase the speed of KYC/AML processes while hughly decreasing the cost
  • Civic launches: identity.com[github][blog]
  • Mooti | docs
    • offers an "identity chain" technology that makes it possible to issue and revoke verified claims using elliptic curve cryptography (curve25519, secp256k1) and includes privay-enhancing features
  • Spidchain [wp]
    • "offers a platform for self-sovereign identity, including desktop and mobile apps for end-users. It uses Decentralized Identifiers (DIDs) - backed by optionally Bitcoin or Ethereum - to implement a marketplace for verifiable claims. The Spidchain applications allow individuals to create, recover, and revoke DIDs, to authenticate, to sign and verify files and claims, and more."
  • Cicada
    • a Dapp platform built for a "direct democracy." envisions using iris scans to generate decentralized universal identifiers ("HUIDs") for every human on the planet, a method referred to as "biocryptics". "HUIDs" can have "sub-IDs" to support selective disclosure. PII can be stored in an "info wallet". Key parts of the system also include smart contracts, zero-knowledge proofs, mixnets, and more."
  • Keyp —"Welcome to Europes fastest growing open digital identity ecosystem."
  • I/O Digital Foundation [whitepaper]
    • "offers a Proof-of-Stake blockchain called Decentralised Input Output Name Server (DIONS). It will enable applications such as identity and alias registration, storage of legal documents, key exchange, and encrypted messaging."

Humanitarian^

  • iRespond -international non-profit organization dedicated to solving the identity problem using a unique digital biometric identity solution
  • The Humanized Internet — "to defend the rights of vulnerable people, and give every human being worldwide secure, sovereign control over their own digital identity."
  • CheapID - identity standard designed for use in conflicted environment like those many refugees or disaster victims may find themselves in.
  • World Identity Netowork —Blockchain for Impact (BFI)-UN

Structured Data Standards^

  • Blockcerts — open standard for issuing and verifying blockchain-based official records; The project offers open-source libraries, tools, and mobile apps. MIT has issued digital certificates based on this standard.
  • Schema — a collaborative, community activity with a mission to create, maintain, and promote schemas for structured data on the Internet. Schema.org vocabulary can be used with many different encodings, including RDFa, Microdata and JSON-LD. These vocabularies cover entities, relationships between entities and actions, and can easily be extended through a well-documented extension model. Over 10 million sites use Schema.org to markup their web pages and email messages. Many applications from Google, Microsoft, Pinterest, Yandex and others already use these vocabularies to power rich, extensible experiences."
    • ÆTERNITY [github]: using Schema's standards: "offers an identity architecture where every account has a unique ID number, and unique names can be registered and linked to arbitrary data such as addresses on the blockchain. Schema's are used for representing data about persons and organizations."
  • DIDs the Decentralized Identifiers of the W3C^

Decentralized Public Key Infrastructure DPKI^

Personal Data: Wallets, Marketplaces, etc.^

  • Mydata [twitter] [papers] [declaration]
    • goal: to empower individuals with their personal data, thus helping them and their communities develop knowledge, make informed decisions, and interact more consciously and efficiently with each other as well as with organisations."
    • Consent[12] — "platform for trusted personal data applications and services, using Ethereum smart contracts to implement decentralized identifiers, verified credentials, consent receipts, a web of trust, and exchange of assets and value."
  • Pillar Project [wp]
    • planning to offer a "Personal Data Locker" consisting of a wallet, browser, and token exchange. Personal assets will be put on a blockchain, and "Pillar" tokens will be issued."
  • Aversafe —"allows individuals to store personal details, work history, certificates and achievements. It leverages a permissioned blockchain for trusted audit and participation in the storage of attestation data separate from the actual data stored"
  • Datum [wp]
    • "network allows anyone to store structured data on a smart contract blockchain. Data can optionally be bought and sold on a marketplace using the DAT token. Datum leverages BigchainDB and IPFS as data storage backends. All data is encrypted and protected using AES256-GCM.
  • ONTology [github]— "a "Distributed Trust Network" which combines a cross-chain identity system, peer-to-peer data transmission, data authorization mechanisms, distributed data storage, attestation, and various industry-specific modules. It also includes an Ontology Crypto Package (OCP) and an Ontology Marketplace (OM)."
  • We can do better than selling our data-Doc Searls(IIW)
  • Pro-civis — "e-government as a service" platform called "eID+". It enables citizens to get an official, electronic Citizen-ID on a mobile app.
    • The platform includes the Vetri wallet and marketplace. 'Earn extra income and rewards by joining the data economy.'"

2018 Identity Landsacpe brought to you by: One World Identity — independent advisory and digital strategy consultancy focused on trust and the data economy.

EU General Data Protection Regulation Act^

Reports^

Assorted Thoughts

  • Decentralized Identity Trilemma

    There seems to exist a trilemma in decentralized identity analogous to @Zooko's triangle. None of the existing solutions are at the same time: 1) privacy-preserving, 2) Sybil-resistant 3) self-sovereign -[twitter]

  • Proof of Thought (PoT)
  • Queer Privacy

    Stories about using the Internet as a tool to find out more about yourself, and as a tool to express and empower; about the dangers of Internet censorship and about the practical realities of maintaining multiple distinct digital identities.

  • @SarahJamieLewis Twitter thread on Identity

    Any technology which relies on the existence of, or attempts to create a, global, unique identity is oppressive by design. Stop" innovating" oppressive structures.

Research-Papers^

Video^

Podcasts^

Sources^


Brought to you by The Crypto Library—Super Source

If you find this to be a valuable resource, feel free to share a tip.
Your generosity is appreciated.

BTC— 1GvkjHtiy9LUjVkStnEAXxjhcoS56aCokY

DOGE— DSzMxfABB8EwKiumzV7YHhS7HTvWAyM7QF