Identosphere 167: Retrospectives • eIDAS2 Redlines • Don't Sell SSI … build on top of it • vLEI demystified • OIDC is 10yrs Old
Everything related to decentralized identity and verifiable credentials including standards and development: updates, walkthroughs, from the enterprise to web3, real world use, policy and research.
3+ years and still aggregating industry info: No Marketing, No Sponsorship, Just the top stories in the Verifiable Credentials galaxy!
Consider supporting our efforts by PayPal, or Patreon!
If you have end of the year small leftovers in your budget - please consider giving some to us :) Contact Kaliya (kaliya [at] identitywoman.net) to get an invoice or find other paths to payment - like ACH or Wires
IOTA Rust Engineer Full Time (Remote) - You will be shaping and adding new features to our Self Sovereign Identity library and work within a team of highly skilled software engineers working on bleeding edge digital identity and distributed ledger technology.
SSI specifications such as W3C VC, OpenID for Verifiable Credentials, SD-JWT – are all directly or indirectly spearheaded by large tech companies and gaining attention due to potential adoption with European Digital Identity Architecture and Reference Framework, NIST, DHS, etc. It is not difficult to see why these centralized structures are pushing for mostly federated SSI solutions – the EU Parliament sees SSI as a means of enforcing its privacy regime while NIST sees SSI as a means of strengthening cybersecurity and the DHS wants to deploy it as a means of improving physical security.
2024 will be the year when especially central and local governments will realise that they have the p r i m a r y responsibility to make the migration to trust infrastructure happen fast.
Digital identity technology will transform customs and immigration. Countries will move quickly to adopt decentralized digital identity technologies integrating biometrics (facial recognition), ICAO ePassports and self-sovereign identity credentials stored in traveler digital wallets. As a result, travelers will only need their faces and a two-second scan process (no phone or passport required) to enter a country. This technology will eventually expand into airplane boarding, hotel registration, ground transportation, dining, event ticketing and tours activities in the coming years.
Moving forward, we should focus on creating products that genuinely enhance people’s lives while respecting their privacy and data sovereignty. It’s not just about selling a technology; it’s about integrating it meaningfully into the fabric of daily life. This approach will drive actual adoption and appreciation of SSI and related technologies.
including significant cost savings for customer onboarding and KYC/KYB verification. It will also enable a simplified customer experience, reducing customer drop-off rates and friction during onboarding while
The vLEI is a globally interoperable framework that enables individuals to digitally verify their status as authorized representatives of LEI-registered organizations worldwide.
It’s imperative for policymakers, legal experts, and technologists to collaboratively navigate this evolving landscape to establish a robust and adaptive legal framework for digital identity.
In this article, we explore the vLEI (verifiable Legal Entity Identifier) and KERI (Key Event Receipt Infrastructure). KERI is the technology that vLEI is built on.
In 2019 I decided to leave independent consulting and join a large corporation – IDEMIA – you might notice their logos at airport security stations. My job was to be embedded in the ISO subcommittee for Mobile Driving License, a.k.a. the ISO 18013-5 mDL standard and to support IDEMIA’s mobile eID/mDL product team.
I have joined the Standards Council of Canada mirror committee for SC 37 (Biometrics) and will be attending the international meetings. The hard work has begun learning the committee culture, personalities and flow of projects.
During the quiet time over the holidays, I have been reflecting and have begun to realize that the better debate framing is local versus remote, i.e., what do you want to retain as local authority versus delegating to a remote authority?
The CREDEBL platform helps Governments and private entities implement a digital, foundational identity issuance and verification solution in a cost effective way by leveraging W3C Standards.
The Digital Public Goods Standard is a set of specifications and guidelines designed to maximise consensus about whether a digital solution conforms to the definition of a digital public good. Building on the UN Secretary General’s Roadmap for Digital Cooperation
It formalizes Linked Data deployment and use by standardizing the representation and behavior of, and the generation and processing of HTTP requests regarding, Linked Data Platform Resources 2 (LDPRs) and Linked Data Platform Containers 1 (LDPCs). Using the Linked Data Platform thereby increases availability and accessibility of Linked Data on the Web. [...] Virtuoso’s LDP functionality is a built-in, integral part of the product.
Even if you have to remember an email address for account recovery, you want your internal identifier for accounts to be meaningless. This will make your life much simpler in the long run, even if this is never exposed to people.
The adoption of OpenID Connect has exceeded our wildest expectations. The vast majority of federated signins to sites and applications today use OpenID Connect. Android, AOL, Apple, AT&T, Auth0, Deutsche Telekom, ForgeRock, Google, GrabTaxi, GSMA Mobile Connect, IBM, KDDI, Microsoft, NEC, NRI, NTT, Okta, Oracle, Orange, Ping Identity, Red Hat, Salesforce, Softbank, Symantec, T-Mobile, Telefónica, Verizon, Yahoo, and Yahoo! Japan, all use OpenID Connect, and that’s just the tip of the iceberg. While OpenID Connect is “plumbing” and not a consumer brand, it’s filling a need and doing it well.
I think OpenID Connect is a simple protocol, but you can't really understand it unless you feel like an OpenID Provider, so let's try it in the "Creating an OpenID Provider"
KERI stands out for its unique approach to managing digital identities. Unlike centralized systems, KERI is built on a decentralized model that emphasizes user control and security. Let's break down some of the key technical components of KERI:
If you are not aware of this, cheqd became one of the first Decentralised Identity networks to enable Zero Knowledge Credentials, ‘ZKCreds’, also known as AnonCreds. Leveraging the renowned and widely used AnonCreds Verifiable Credential format, cheqd, alongside Animo, has built ZKCreds into our tech stack, opening the door to a more privacy-preserving online experience for users.
The antecedent (alpha) version work began in August 2019. It leveraged a primitive home grown cloud agent, mediator agent, and edge wallet. During the pandemic times, we were super busy in integrating the platform with Aries Python Cloud Agent, thus making the solution more compliant and standards driven. Post pandemic days, our team was focused on serving a few customers.
This paper introduces a novel protocol, the Persona Preserving Reputation Protocol (P2RP), which leverages Decentralized Identity (DID)-based reputation systems to maintain security and user privacy while ensuring the trustworthiness of blockchain oracles. Leveraging the innovative application of Ordinary Differential Equations (ODEs)
adoption of SSI is impeded because the SSI community frequently overlooks the requirements of organizations. The organization’s roles as an issuer, verifier, and especially as a holder of Verifiable Credentials (VCs) remain largely unexplored. [...] To address this issue, we conducted a multi-method study to identify an initial set of general requirements for organizational SSI software. We used a triangulation approach consisting of a literature review, expert interviews, and product analysis. As a result, we present a comprehensive set of requirements grouped into three main categories: credential management, organizational identity and relationships, and additional requirements.
(i) facilitates individual research projects of three IUSSP Population, Ethics and Human Rights Fellows,
(ii) collectively produces interdisciplinary pedagogical materials that highlight ethics and human rights opportunities and challenges emerging from the modernization of population register systems;
(iii) shares essays and podcasts that highlight new research and debates from scholars and practitioners of population registers.
Digital ecosystems are focused on enabling high-trust interactions between participants. Any engagement’s trustworthiness is built around the parties’ confidence in a transaction. And transactions emerge in contexts. Putting all these together, digital wallets can enable secure, trustworthy transactions with the contexts of “conversations”.
We’ll dive into what identity on blockchain means, how it works, learn about on-chain KYC, important use-cases, and its potential impact on AML checks and safeguarding users against financial crime; as well as the future of identity on the blockchain and how it is giving rise to a whole new generation of applications that redefine how we present ourselves on the internet.
Would making “people” pay for accounts make any difference. No, of course not. The Blue checks that used to be a form of verification became something you paid for and are now often a signal that you’re a troll! Anyway, it is a terrible way to fight spam. That’s probably not Mr. Musk’s real objective thought, it’s probably just to get people’s credit card numbers and get them used to paying for TwiX. Will they though?
