2021 W3C CCG

Encrypted Data Vaults

101

2021 W3C CCG

Encrypted Data Vaults 101

2021-07-27

EDV Primary Use Cases

2

Confidential, Provider-Agnostic Storage

Unified Storage

Continuous Backup

Wallet Data Portability

Identity Hub Backing Storage

Off-Ledger Storage

Unified Sharing

2021 W3C CCG

Encrypted Data Vaults 101

2021-07-27

Confidential, Provider-Agnostic Storage

​

​

Benefits

Storage Provider Alpha

Storage Provider Beta

Storage Provider Omega

Individual

Unified encrypted storage interface

Default: Provider cannot eavesdrop

3

1

2

Unified Storage

​

​

Benefits

Encrypted Data Vault

Mobile

Laptop

Desktop

Single view on data across devices

Device loss does not lead to data loss

4

1

2

Unified Sharing

​

​

Benefits

Health Records

Doctor

Patient

Hospital

Single view on data across entities

Add/remove entities dynamically

5

1

2

Continuous Backup

​

​

Benefits

Primary

Secondary

Secondary

Always-active, continuous backups

Automatic failover and resync on recovery

6

1

2

Off-Ledger Storage

​

​

Benefits

IoT Device

Corporation

Individual

Government

Trade-sensitive data kept off-ledger

Reduction in ledger storage requirements

7

1

2

Wallet Data Portability

Benefits

Storage Provider

Alpha

Wallet Provider Beta

Wallet Provider

Omega

Individual

No-Vendor lock Wallet provider switching

Not necessary to switch storage providers

8

1

2

Identity Hub Backing Storage

Benefits

Music

Financial History

Medical History

Family Photos

Identity

Hub

Unified interface to storage

Sharing policies separate from Storage policies

9

1

2

Encrypted Data Vault Operations

Operations

Individual

EDV Client

EDV Server

Create

Read

Update

Delete

Query

Operation

(Unencrypted)

Operation

(Encrypted)

10

1

2

3

4

5

STORE {

"id": "urn:uuid:94684128-c42c-4b28-adb0-aec77bf76044",

"sequence": 0,

"jwe": {

"protected": "eyJlbmMiOiJDMjBQIn0",

"recipients": [{

"header": {

"alg": "A256KW",

"kid": "https://example.com/kms/zSDn2MzzbxmX"

},

"encrypted_key": "OR1vdCNvf_B68mfUxFQVT-vyXVrBembuiM40mAAjDC1-Qu5iArDbug"

}],

"iv": "i8Nins2vTI3PlrYW",

"ciphertext": "Cb-963UCXblINT8F6MDHzMJN9EAhK3I",

"tag": "pfZO0JulJcrc3trOZy8rjA"

}

}

STORE {

"id": "urn:uuid:94684128-c42c-4b28-adb0-aec77bf76044",

"meta": {

"created": "2019-06-18"

},

"content": {

"message": "Hello World!"

}

}

Credits

11

• All icons are copyright icons8 - used under license (if you copy things from this slide deck, you will need an icons8.com license)
• Everything else CC-BY 4.0 Digital Bazaar

2021 W3C CCG

Encrypted Data Vaults 101

2021-07-27