14 KiB
date | title | description | excerpt | permalink | redirect_from | canonical_url | categories | tags | header | last_modified_at | ||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
2020-11-26 | Identifiers & Discovery Working Group | Specifications, implementations, test suites, etc. related to creation, derivation, resolution, management, use of all forms of decentralized identifiers | Members of the Working Group are engaged in development of protocols and systems that enable creation, resolution, and discovery of decentralized identifiers and names across underlying decentralized systems, like blockchains and distributed ledgers. | organizations/identity-foundation/wg/identifiers-and-discovery/ | organizations/identity-foundation/identifiers-and-discovery-wg/ | https://decentralized-id.com/organizations/identity-foundation/wg/identifiers-and-discovery/ |
|
|
|
2020-11-26 |
DIF - Identifiers and Discovery Working Group - GitHub - Slack
Members of the Working Group are engaged in development of protocols and systems that enable creation, resolution, and discovery of decentralized identifiers and names across underlying decentralized systems, like blockchains and distributed ledgers.
- I&D WG Charter
- Specifications, implementations, test suites, etc. related to creation, derivation, resolution, management, use of all forms of decentralized identifiers (i.e. including, but not limited to W3C DIDs)
- Relationship between identifier systems (e.g. DID and domain names)
- Relationship between identifiers and other decentralized identity building blocks (e.g. EDV)
- Discovery protocols (e.g. for hubs, agents)
- Establishment and maintenance of control authority over an identifier (e.g. KERI)
- Security and trust in identifier infrastructure (e.g. Linked Data Security)
- Work on concrete DID methods
- Mailing list
A key piece of the decentralized identity equation is how people, organizations, and devices can be identified and located without centralized systems of identifiers (e.g. email addresses). DIF members are actively working on protocols and implementations that enable creation, resolution, and discovery of decentralized identifiers and names across decentralized systems, like blockchains and distributed ledgers.
- Meeting page
For this call, you are encouraged to turn your video on. This is a good way to build rapport given we are a large, disparate group experiencing a lot of churn.
This document is live-edited DURING each call, and stable/authoritative copies live on our github repo under /agenda.md . Please note that we might not notice a pullrequest in time, but you are free to propose agenda items for future meetings via hackmd.
Specs & Projects
Universal Resolver
Spec and implementation of a driver-based framework that enables resolution of DIDs.
- decentralized-identity/universal-resolver
A Universal Resolver is an identifier resolver that works with any decentralized identifier system, including Decentralized Identifiers (DIDs).
- Driver Development
The Universal Resolver's function is wrapping an API around a number of co-located Docker containers running DID-method-specific drivers. The Universal Resolver is designed to support additional DID methods as they are developed by the community. The contribution for a new DID method driver consists of a Docker image which exposes an HTTP interface for resolving DIDs. New contributions are submitted as Pull Requests to the Universal Resolver (this) repository.
- Driver Development
- decentralized-identity/universal-resolver-frontend - Frontend web UI for Universal Resolver.
- decentralized-identity/universal-resolver-java
- decentralized-identity/universal-resolver-python
Resolver Drivers
- decentralized-identity/uni-resolver-driver-did-erc725 - A Universal Resolver driver for did:erc725 identifiers.
- decentralized-identity/uni-resolver-driver-did-ion - Universal Resolver Driver for Identity Overlay Network (ION) DIDs
- decentralized-identity/uni-resolver-driver-did-key - A Universal Resolver driver for did:key identifiers.
- decentralized-identity/uni-resolver-driver-did-sov - A Universal Resolver driver for did:sov identifiers.
- decentralized-identity/uni-resolver-driver-did-stack - A Universal Resolver driver for did:stack identifiers.
- decentralized-identity/uni-resolver-driver-did-work - A Universal Resolver driver for did:work identifiers.
- decentralized-identity/uni-resolver-driver-dns - A Universal Resolver driver for domain names.
Universal Registrar
Spec and implementation of a driver-based framework that enables creation/updates/deactivation of DIDs.
- decentralized-identity/universal-registrar
A Universal Registrar is an identifier registrar that works with any decentralized identifier system, including Decentralized Identifiers (DIDs).
- Driver Development
The Universal Registrar's function is wrapping an API around a number of co-located Docker containers running DID-method-specific drivers. The Universal Registrar is designed to support additional DID methods as they are developed by the community. The contribution for a new DID method driver consists of a Docker image which exposes an HTTP interface for creating/updating/deactivating DIDs. New contributions are submitted as Pull Requests to the Universal Registrar (this) repository.
- Driver Development
- decentralized-identity/universal-registrar-frontend - Frontend web UI for Universal Registrar.
Registrar Drivers
- decentralized-identity/uni-registrar-driver-did-btcr - A Universal Registrar driver for did:btcr identifiers.
- decentralized-identity/uni-registrar-driver-did-key - A Universal Registrar driver for did:key identifiers.
- decentralized-identity/uni-registrar-driver-did-sov - A Universal Registrar driver for did:sov identifiers.
- decentralized-identity/uni-registrar-driver-did-v1 - A Universal Registrar driver for did:v1 identifiers.
- decentralized-identity/uni-resolver-driver-did-btcr - A Universal Resolver driver for did:btcr identifiers.
- decentralized-identity/uni-resolver-driver-did-ccp - A Universal Resolver driver for Baidu did:ccp identifiers.
- decentralized-identity/uni-resolver-driver-did-dom - A Universal Resolver driver for did:dom identifiers.
.well-known DID configuration
Spec, docs, and implementations for discovering DIDs from .well-known HTTP(S) URIs.
- decentralized-identity/.well-known/
Making it possible to connect existing systems and Decentralized Identifiers (DIDs) is an important undertaking that can aid in bootstrapping adoption and usefulness of DIDs. One such form of connection is the ability of a DID controller to prove they are the same entity that controls an origin.
The DID Configuration resource provides proof of a bi-directional relationship between the controller of an origin and a DID via cryptographically verifiable signatures that are linked to a DID's key material. This document describes the data format of the resource and the resource location at which origin controllers can publish their DID Configuration.
- Spec
Making it possible to connect existing systems and Decentralized Identifiers (DIDs) is an important undertaking that can aid in bootstrapping adoption and usefulness of DIDs. One such form of connection is the ability of a DID controller to prove they are the same entity that controls an Internet domain.
The DID Configuration resource provides proof of a bi-directional relationship between the controller of an Internet domain and a DID via cryptographically verifiable signatures that are linked to a DID's key material. This document describes the data format of the resource and the resource location at which Internet domain controllers can publish their DID Configuration.
Due to the location of the DID Configuration resource, discovery of associated Decentralized Identifiers against a domain is trivial. However, the inverse (i.e given a DID-URI discover the associated domains) is deemed out of scope.
KERI - Key Event Receipt InfrastructureSpec and implementation of an identifier and key
rotation technology, where your primary root of trust is entropy, not any particular ledger.
- decentralized-identity/keri - Key Event Receipt Infrastructure - the spec and implementation of the KERI protocol
- decentralized-identity/kerigo - Go implementation of KERI (Key Event Receipt Infrastructure)
- decentralized-identity/kerijs - JavaScript (nodes) Implementation of the KERI core library.
- decentralized-identity/keriox - Rust Implementation of the KERI Core Library
- decentralized-identity/keripy - Python Implementation of the KERI Core Libraries
Peer DID Method Specification
A rich DID method that has no blockchain dependencies. The verifiable data registry is a synchronization protocol between peers.
- decentralized-identity/peer-did-method-spec
- Spec
This document defines a "peer" DID Method that conforms to the DID Spec. The method can be used independent of any central source of truth, and is intended to be cheap, fast, scalable, and secure. It is suitable for most private relationships between people, organizations, and things. We expect that peer-to-peer relationships in every blockchain ecosystem can benefit by offloading pairwise and n-wise relationships to peer DIDs.
DID Spec Extensions
Extension parameters, properties, and values for the DID spec registries.
Other Repositories
- decentralized-identity/did-common-java - Shared DID Java library.
- decentralized-identity/did-jwt - Create and verify DID verifiable JWT's in Javascript
- decentralized-identity/did-jwt-vc - Create and verify W3C Verifiable Credentials and Presentations in JWT format
- decentralized-identity/did-resolver - Universal did-resolver for javascript environments
- decentralized-identity/did-spec-extensions - Extension parameters, properties, and values for the DID spec registries.
- decentralized-identity/ethr-did-resolver - DID resolver for Ethereum Addresses with support for key management
- decentralized-identity/horcrux - Horcrux Protocol
- activestorage-horcrux
An ActiveStorage service option that uploads shares across one or more other storage services using Shamir Secret Sharing (via the tss-rb gem). Use it in your storage.yml file. It is not a mirror, but can be named as a storage service.
- decentralized-identity/context - DIF Security Contexts & Schemas for Linked Data
- decentralized-identity/fuzzy-encryption - A variant of a Fuzzy Vault cryptographic scheme designed for encrypting data with better human recovery features.
- decentralized-identity/jsonld-common-java - Shared JSON-LD Java library.
- jsonld-document-loader
Document loaders enable decentralized security, interoperability and extensibility while gaurding against vendor lock in.