Identosphere 167: Retrospectives • eIDAS2 Redlines • Don't Sell SSI … build on top of it • vLEI demystified • OIDC is 10yrs Old
Everything related to decentralized identity and verifiable credentials including standards and development: updates, walkthroughs, from the enterprise to web3, real world use, policy and research.
We Gather, You Read!
3+ years and still aggregating industry info: No Marketing, No Sponsorship, Just the top stories in the Verifiable Credentials galaxy!
If you have end of the year small leftovers in your budget - please consider giving some to us :) Contact Kaliya (kaliya [at] identitywoman.net) to get an invoice or find other paths to payment - like ACH or Wires
[Davos, Switzerland] GBBC’s 7th Annual Blockchain Central Davos 1/14-18
[Tokyo, Japan] Registration Open for OpenID Foundation Hybrid Workshop 01/18
[Virtual] FTC Tech Summit 1/25
[Brussels] EU Policy Devroom at FOSDEM 02/04
[EU] DIGITAL HORIZONS 360 Sponsorship Invitation. Hospitality Technology Innovation 02/20-21 Spain
Annual Privacy Forum 2024 Enisa. Submissions due 04/15
[California] Internet Identity Workshop #38 04/16-18 (super earlybird tickets end Friday)
Polygon Marketing & Events Lead Dragonfly
SpruceID Senior Product Manager Dynamite Jobs
Notabene Enterprise Sales Director, EMEA CryptoCareers
IOTA Rust Engineer Full Time (Remote) - You will be shaping and adding new features to our Self Sovereign Identity library and work within a team of highly skilled software engineers working on bleeding edge digital identity and distributed ledger technology.
Program Officer, Technology in the Public Interest MacArthur Foundation
Decentralization in 2024 Paray 2024-01-02
SSI specifications such as W3C VC, OpenID for Verifiable Credentials, SD-JWT – are all directly or indirectly spearheaded by large tech companies and gaining attention due to potential adoption with European Digital Identity Architecture and Reference Framework, NIST, DHS, etc. It is not difficult to see why these centralized structures are pushing for mostly federated SSI solutions – the EU Parliament sees SSI as a means of enforcing its privacy regime while NIST sees SSI as a means of strengthening cybersecurity and the DHS wants to deploy it as a means of improving physical security.
Credentials galore - the new megatrend 2024-01-03 Finextra
2024 will be the year when especially central and local governments will realise that they have the p r i m a r y responsibility to make the migration to trust infrastructure happen fast.
Phocuswright Analysis Share Their Travel Industry Predictions for 2024 2024-01-02 Morgan Hines
Digital identity technology will transform customs and immigration. Countries will move quickly to adopt decentralized digital identity technologies integrating biometrics (facial recognition), ICAO ePassports and self-sovereign identity credentials stored in traveler digital wallets. As a result, travelers will only need their faces and a two-second scan process (no phone or passport required) to enter a country. This technology will eventually expand into airplane boarding, hotel registration, ground transportation, dining, event ticketing and tours activities in the coming years.
Don't Sell SSI … build on top of it. Outlook of 2023 in SSI journey Volodymyr Pavlyshyn
Moving forward, we should focus on creating products that genuinely enhance people’s lives while respecting their privacy and data sovereignty. It’s not just about selling a technology; it’s about integrating it meaningfully into the fabric of daily life. This approach will drive actual adoption and appreciation of SSI and related technologies.
[tiktok] talking about the challenge of product market fit Harrison Tang
On the IdentI3 podcast, I opened up about the hurdles in the journey of self-sovereign identity and verifiable credentials
FinClusive, Verida, and cheqd Announce Partnership to Introduce a Reusable KYC/KYB Digital Credential Finclusive 2023-12-04
including significant cost savings for customer onboarding and KYC/KYB verification. It will also enable a simplified customer experience, reducing customer drop-off rates and friction during onboarding while
vLEI Demystified Part 1: Comprehensive Overview 2023-12 Yanisa Sunanchaiyakarn, Finema
The vLEI is a globally interoperable framework that enables individuals to digitally verify their status as authorized representatives of LEI-registered organizations worldwide.
[Linkedin] EIDAS regulation after EIDAS 2 redlined 2024-01-03 Nacho Alamillo Domingo
We have prepared an *** unofficial *** eIDAS consolidated version, as amended by the eIDAS 2 soon-to-be approved text.
Decentralized Identity and Self-Sovereign Identity: Legal Considerations 2023-11-06 Smart Sight
It’s imperative for policymakers, legal experts, and technologists to collaboratively navigate this evolving landscape to establish a robust and adaptive legal framework for digital identity.
Verifiable Credentials and mdocs – a tale of two protocols 2024-01-03 Spherical Cow Productions
[explainer] Understanding vLEI and the Use of KERI Architecture 2024-01-04 Ubisecure RapidLEI
In this article, we explore the vLEI (verifiable Legal Entity Identifier) and KERI (Key Event Receipt Infrastructure). KERI is the technology that vLEI is built on.
It’s been a busy few years… 2023-12-30 IDIM Musings, Andrew Hughes
In 2019 I decided to leave independent consulting and join a large corporation – IDEMIA – you might notice their logos at airport security stations. My job was to be embedded in the ISO subcommittee for Mobile Driving License, a.k.a. the ISO 18013-5 mDL standard and to support IDEMIA’s mobile eID/mDL product team.
Heading to ISO SC 37 — Biometrics January 2024 2024-01-03 IDM Musings, Andrew Hughes
I have joined the Standards Council of Canada mirror committee for SC 37 (Biometrics) and will be attending the international meetings. The hard work has begun learning the committee culture, personalities and flow of projects.
[LinkedIn] RFC 9518: Centralization, Decentralization, and Internet Standards Tim Bouma
During the quiet time over the holidays, I have been reflecting and have begun to realize that the better debate framing is local versus remote, i.e., what do you want to retain as local authority versus delegating to a remote authority?
Standards in Action
Credebl is a Digital Public Good Digital Public Goods
The CREDEBL platform helps Governments and private entities implement a digital, foundational identity issuance and verification solution in a cost effective way by leveraging W3C Standards.
The Digital Public Goods Standard is a set of specifications and guidelines designed to maximise consensus about whether a digital solution conforms to the definition of a digital public good. Building on the UN Secretary General’s Roadmap for Digital Cooperation
Using Virtuoso as LDP Client and Server 2023-12-01 OpenLinkSW
It formalizes Linked Data deployment and use by standardizing the representation and behavior of, and the generation and processing of HTTP requests regarding, Linked Data Platform Resources 2 (LDPRs) and Linked Data Platform Containers 1 (LDPCs). Using the Linked Data Platform thereby increases availability and accessibility of Linked Data on the Web. [...] Virtuoso’s LDP functionality is a built-in, integral part of the product.
Email addresses are not good 'permanent' identifiers for accounts 2023-12-30 Chris Siebenmann
Rich discussion on Hacker News about the issues with OIDC vs Passports vs Decentralized Identity
Even if you have to remember an email address for account recovery, you want your internal identifier for accounts to be meaningless. This will make your life much simpler in the long run, even if this is never exposed to people.
Ten Years of OpenID Connect and Looking to the Future 2023-12-19 Mike Jones
The adoption of OpenID Connect has exceeded our wildest expectations. The vast majority of federated signins to sites and applications today use OpenID Connect. Android, AOL, Apple, AT&T, Auth0, Deutsche Telekom, ForgeRock, Google, GrabTaxi, GSMA Mobile Connect, IBM, KDDI, Microsoft, NEC, NRI, NTT, Okta, Oracle, Orange, Ping Identity, Red Hat, Salesforce, Softbank, Symantec, T-Mobile, Telefónica, Verizon, Yahoo, and Yahoo! Japan, all use OpenID Connect, and that’s just the tip of the iceberg. While OpenID Connect is “plumbing” and not a consumer brand, it’s filling a need and doing it well.
[Japanese] Learn about OpenID Connect by creating an OpenID Provider 2024-01-06 IDMLab
I think OpenID Connect is a simple protocol, but you can't really understand it unless you feel like an OpenID Provider, so let's try it in the "Creating an OpenID Provider"
[Linkedin] KERI Protocol: A Path to Revolutionizing Digital Identity 2024-01-01 Chris Weaver
KERI stands out for its unique approach to managing digital identities. Unlike centralized systems, KERI is built on a decentralized model that emphasizes user control and security. Let's break down some of the key technical components of KERI:
If you are not aware of this, cheqd became one of the first Decentralised Identity networks to enable Zero Knowledge Credentials, ‘ZKCreds’, also known as AnonCreds. Leveraging the renowned and widely used AnonCreds Verifiable Credential format, cheqd, alongside Animo, has built ZKCreds into our tech stack, opening the door to a more privacy-preserving online experience for users.
CREDEBL Wrap Up 2023 2023-12-01 Ayanworks
The antecedent (alpha) version work began in August 2019. It leveraged a primitive home grown cloud agent, mediator agent, and edge wallet. During the pandemic times, we were super busy in integrating the platform with Aries Python Cloud Agent, thus making the solution more compliant and standards driven. Post pandemic days, our team was focused on serving a few customers.
Persona preserving reputation protocol (P2RP) for enhanced security, privacy, and trust in blockchain oracles 2024-01-05 Shengwei You, Kristina Radivojevic, Jarek Nabrzyski, Paul Brenner
This paper introduces a novel protocol, the Persona Preserving Reputation Protocol (P2RP), which leverages Decentralized Identity (DID)-based reputation systems to maintain security and user privacy while ensuring the trustworthiness of blockchain oracles. Leveraging the innovative application of Ordinary Differential Equations (ODEs)
Self-Sovereign Identity for Organizations: Requirements for Enterprise Software 2024-01 Ricardo Bochnia, Daniel Richter; Hochschule für Technik und Wirtschaft Dresden
adoption of SSI is impeded because the SSI community frequently overlooks the requirements of organizations. The organization’s roles as an issuer, verifier, and especially as a holder of Verifiable Credentials (VCs) remain largely unexplored. [...] To address this issue, we conducted a multi-method study to identify an initial set of general requirements for organizational SSI software. We used a triangulation approach consisting of a literature review, expert interviews, and product analysis. As a result, we present a comprehensive set of requirements grouped into three main categories: credential management, organizational identity and relationships, and additional requirements.
RIGHTS AND ETHICS IN BIOMETRIC POPULATION REGISTRATION 2023-10-09 IUSSP Working Paper
(i) facilitates individual research projects of three IUSSP Population, Ethics and Human Rights Fellows,
(ii) collectively produces interdisciplinary pedagogical materials that highlight ethics and human rights opportunities and challenges emerging from the modernization of population register systems;
(iii) shares essays and podcasts that highlight new research and debates from scholars and practitioners of population registers.
Digital Wallets can be the empowering service we need in Web 3.0 2023-12-23 Express Computer
Digital ecosystems are focused on enabling high-trust interactions between participants. Any engagement’s trustworthiness is built around the parties’ confidence in a transaction. And transactions emerge in contexts. Putting all these together, digital wallets can enable secure, trustworthy transactions with the contexts of “conversations”.
[podcast] Insights: How to manage your identity on web3 and blockchain 2023-11-29 11FS Content Hub (sponsored by Visa)
We’ll dive into what identity on blockchain means, how it works, learn about on-chain KYC, important use-cases, and its potential impact on AML checks and safeguarding users against financial crime; as well as the future of identity on the blockchain and how it is giving rise to a whole new generation of applications that redefine how we present ourselves on the internet.
Identity not SSI
Securing the Future: The Transformative Impact of Digital ID Seven Peaks Software
STORE SCORECARD at Ban Facial Recognition Ban Facial Recognition
The New News Business Doc Searls
Payments, Personas, Provenance 2023-11-12 David G.W. Birch
Would making “people” pay for accounts make any difference. No, of course not. The Blue checks that used to be a form of verification became something you paid for and are now often a signal that you’re a troll! Anyway, it is a terrible way to fight spam. That’s probably not Mr. Musk’s real objective thought, it’s probably just to get people’s credit card numbers and get them used to paying for TwiX. Will they though?