Verifiable Credentials
and
Decentralized Identifiers
IIW XXVI
April 3rd-5th 2018
1
What do we mean by Credential?
2
W3C Verifiable Credentials
3
The mission of the W3C Verifiable Claims Working Group:
Express credentials on the Web in a way that is cryptographically secure, privacy respecting, and automatically verifiable.
Anatomy of a Verifiable Credential
4
Verifiable Credential
Issuer Digital Signature
Claims
Claims
Claims
Credential Identifier
Credential Metadata
Credential Metadata
Credential Metadata
Verifiable Credentials Ecosystem
5
Issuer
(Website)
Government, Employer, etc.
Verifier
(Website)
Company, Bank, etc.
Holder
(Digital Wallet /
Personal Data Store)
Citizen, Employee, etc.
Issue Credentials
Present
Profiles
Verifiable Credentials Status
7
WG Launch
(May 2017)
FPWD, WDs
(Aug 2017-today)
Implementations
(Nov 2017-today)
Complete Test Suite
(Jul 2018)
CR
(Oct 2018)
PR
(Jan 2019)
Roadmap
Spec/Issue Regular Contributors: 15
Weekly WG Participants: 12-18 / 50
Known Corporate Implementation Commitments: 10
Questions about Verifiable Credentials?
Anatomy of a Verifiable Credential
9
Which identifiers do we use today?
10
jdoe@bigcorp.com
https://flitter.com/jdoe
Why is this a problem?
11
The Web’s Identifier Problem
12
To date, every identifier you use online does not belong to you; it belongs to someone else.
This results in problems related to cost, data portability, data privacy, and data security.
Web Identifiers Today
13
Domain Name System
(Identifiers are leased to individuals)
Issuer
(Website)
Government, Employer, etc.
Verifier
(Website)
Company, Bank, etc.
Holder
(Digital Wallet /
Personal Data Store)
Citizen, Employee, etc.
Issue Credentials
Present
Profiles
What is missing?
14
Many portable identifiers for any person, organization, or thing that does not depend on a centralized authority, are protected by cryptography, and enable privacy and data portability.
Decentralized Identifiers
15
A new type of globally resolvable, cryptographically-verifiable identifier, registered directly on a distributed ledger (aka Blockchain)
What does a DID look like?
16
did:example:123456789abcdefghijk
Scheme
DID Method
DID Method Specific String
did:v1:nym:DwkYwcoyUXHNkpj3whn4DgXB4fcg9gj95vKxYN2apkZD
Example:
DIDs Resolve to DID Documents
17
{� "@context": "https://w3id.org/veres-one/v1",� "id": "did:v1:nym:DwkYwcoyUXHNkpj3whn4DgXB4fcg9gj95vKxYN2apkZD",� "authentication": [{� "type": "Ed25519SignatureAuthentication2018",� "publicKey": [{� "id": "did:v1:test:nym:DwkYwcoyUXHNkpj3whn4DgXB4fcg9gj95vKxYN2apkZD#authn-key-1",� "type": "Ed25519VerificationKey2018",� "owner": "did:v1:nym:DwkYwcoyUXHNkpj3whn4DgXB4fcg9gj95vKxYN2apkZD",� "publicKeyBase58": "DwkYwcoyUXHNkpj3whn4DgXB4fcg9gj95vKxYN2apkZD"� }]� }],� "service": [{� "type": "ExampleMessagingService",� "serviceEndpoint": ”https://example.com/services/messages”� }],� … more DID-specific information here …
}
1. Authentication Mechanisms
3. Service Discovery
2. Public Key Material
Decentralized Identifiers
18
Decentralized Identifiers
(Identifiers are owned by individuals)
Blockchains / DHTs
(Decentralized Ledger)
Veres One, Sovrin, Bitcoin, Ethereum, etc.
Issuer
(Website)
Government, Employer, etc.
Verifier
(Website)
Company, Bank, etc.
Holder
(Digital Wallet /
Personal Data Store)
Citizen, Employee, etc.
Issue Credentials
Present
Profiles
19
Decentralized Identifiers Status
20
Technology Incubation
(May 2014 - today)
Specification and Implementations
(October 2016 - today)
W3C DID WG
(Dec 2018-2020)
Roadmap
Spec/Issue Regular Contributors: 12
Weekly Community Group Participants: 15-28 / 161
Known Corporate Implementation Commitments: 13
Implementers
21
Method | DID prefix |
Bitcoin Reference | did:btcr: |
Ethereum uPort | did:uport: |
IPFS | did:ipfs: |
IPDB | did:ipdb: |
Sovrin | did:sov: |
Veres One | did:v1: |
22
VERES ONE
Questions about Decentralized Identifiers?
Manu Sporny | CEO | Digital Bazaar
Email: msporny@digitalbazaar.com
Twitter: @manusporny
https://www.linkedin.com/in/manusporny/
24