decentralized-id.github.io/self-sovereign/characteristics-of-sovereign-identity.md

6.5 KiB
Raw Blame History

Core Characteristics of Sovereign Identity

From Joe Andrieu's A TechnologyFree Definition of SelfSovereign Identity, for comparison with the Ten Principles of Self Sovereign Identity and continued discussion:

Control. Acceptance. Zero Cost.

These are the three fundamental characteristics of selfsovereign identity.

CONTROL

  • Selfsovereign identities are controlled by the individual:
    • Selfgeneratable and Independent: Individuals must be able to create identity information without asking for permission and be able to assert identity information from any authority. The resulting identity must have the same technical reliability as those provided by wellknown, “official” sources. The observer, of course, is always free to decide whether or not a given piece of information is meritorious, but the information must be able to be verified as a nonrepudiatable statement of correlation using exactly the same mechanisms regardless of source. Further, individuals must be able to present selfgenerated identity information without disclosing that the authority in the claim is the subject of the claim.
    • Optin: The affordance for asserting identity information starts with the individual. While an individual may present claims from known or accepted third party authorities, it is the individual who asserts that the claim applies to them. Selfsovereign identities begin with the will of the individual, with the intentional presentation of identity information.
    • Minimal Disclosure: Individuals should be able to use services with minimal identity information. Features that depend on enhanced correlation must be understood by the average user. Such features should be permissioned with the highest granularity, so functions independent of correlation work equally well alongside those dependent on it. It is not acceptable to deny services because of a refusal to provide unrelated information.
    • Nonparticipation: Individuals must be able to choose to not provide identity information for services where it isnt absolutely required. Any spontaneous identifiers necessary for a service to function, such as cookies or session ids, must use the same infrastructure for consent, persistence, transience, and disclosure as if provided by the individual.
    • Optout: Individuals should be able to optout of identifying records postfacto as a matter of course. People should be able to stop the use of a correlating identity information by request. Some transactions necessarily require long term retention of identity information, such as financial transactions, purchases, and shipments. Actions that create permanent records should be clearly marked and communicated such that the retention is expected and understood by the average person. All other actions which leverage a selfsovereign identity should be decorrelated ondemand and said identifiers should no longer be used to correlate that individual across contexts.
    • Recoverable: Sovereign identities must be robust enough to be recovered even if hard drives are lost, wallets stolen, or birth certificates lost in a fire. Selfsovereign identities must provide a way for individuals to recover and reassert that existing identify information applies to them even in the face of complete loss of credentials. This may be challenging given current technical proposals, but the point of this paper is to explore the nontechnical requirements of a selfsovereign identity. To fully address the needs of UN Sustainable Development Goal 16.9, identity assurance cant depend on pieces of paper, devices, or other artifacts that can be lost, stolen, destroyed, and falsified.

ACCEPTANCE

  • Selfsovereign identities are accepted wherever observers correlate individuals across contexts.
    • Standard: There is an open, public standard managed through a formal standards body, free to use by anyone without financial or intellectual encumbrance. Simple The core standard (schema, serialization, and protocols) must be atomically minimal, providing the barest data set, allowing complexity to emerge not from a complicated data model but from a multiplicity of information types, authorities, and observations.
    • Nonrepudiatable: Individual claims should be cryptographically signed to assure nonrepudiatable statements of correlation. Long term, public and semipublic ledgers should be used to record claims that become statistically impossible to falsify over time. Selfsovereign identities, at a minimum depend on cryptographic assurances, and most likely will be further enabled by nonrepudiatable public ledgers.
    • Reliable: Access to selfsovereign identities must be at least as reliable as access to the Internet. It should not rely on any individual or group of centralized servers, connections, or access technologies. Substantially Equivalent Above all, selfsovereign identities must meet the needs of legacy identity observers at least as well as current solutions. If the core architecture is inherently less capable than existing approaches there is little hope of systemic adoption.

ZERO COST

  • Finally, any proposed standard for selfsovereign identity must be adoptable at absolutely minimal cost.
    • Not only must it be free of licensing encumbrances, it must be implementable with readily available, inexpensive, commodity hardware running common operating systems. If it cant be achieved using todays commodity products, then we must help manufacturers incorporate what we need.

      In order to reach every last person on the planet—the explicit target of UN Sustainable Development Goal 16.9—selfsovereign identity must be realizable at massive scale with close to zero marginal cost. The systems we use to make sense of the resulting identity transactions will provide more than enough consulting, software, and hardware revenue to finance the development of the core enabling technology. Just as the web browser was a zero cost entry into a vast economic and innovation engine of the worldwide web, so too must selfsovereign identity begin with the most costeffective onramp that can be engineered.