Identosphere 194: Selective Disclosure for BLS • DIDs in ARF? • Making Bubbles • Digi Yatra 4m users • EU EV battery passports
You weekly guide to the latest news surrounding development and implementation of decentralized identity and verifiable credentials: with use-cases in Banking, Finance, Education, IOT Deepfakes
Identosphere’s Weekly Highlights
We Gather, You Read!
We’re still aggregating industry info.
Thanks for supporting our efforts by Pledge, PayPal, or Patreon
Organization News
[immigration, travel] DHS Awards Contracts for Privacy-Focused Digital ID Tech 2024-07-12 Tony Bitzionis; findbiometrics.com
has awarded contracts to six startups—Credence ID, Hushmesh, Netis d.o.o., Procivis, SpruceID, and Ubiqu—to develop privacy-enhancing digital wallet technologies […] immigration and travel.
DIF welcomes JC Ebersbach as co-chair of the Identifiers & Discovery WG 2024-07-08 Decentralized Identity Foundation
We are delighted and honored he has accepted the role of Identifiers and Discovery WG co-chair, as well as a position on the DIF Technical Steering Committee. DIF will greatly benefit from his leadership,
Standards Development
[Specification] SD-BLS: Privacy Preserving Selective Disclosure of Verifiable Credentials with Unlinkable Threshold 2024-07-09 Denis Roio, Rebecca Selvaggini, Gabriele Bellini, Andrea D’Intino
We make holders able to present proofs of possession of selected credentials without disclosing them, and we protect their presentations from replay attacks. Revocations may be distributed among multiple revocation issuers using publicly verifiable secret sharing (PVSS) and activated only by configurable consensus, ensuring robust protection against issuer corruption. Our system’s unique design enables extremely fast revocation checks, even with large revocation lists
[github] Request for inclusion of Decentralized Identifiers (DIDs) in the ARF · Issue #278 eu-digital-identity-wallet/eudi-doc-architecture-and-reference-framework
we don't understand how introducing DIDs would advance the state of the art for elDAS.
Could you please detail your vision on these points?
[1/10] W3C Verifiable Credentials Overviewを読む Naohiro Fujie; idmlab.eidentity.jp
hopefully this gets pulled together into one long blog-post, eventually
This has turned into a longer series than I expected. [...]
Introduction
Ecosystem Overview
Verifiable Credentials Data Model
Securing Credentials
Bitstring Status List
Additional Publications
Finally, we come to the last main section, the Bitstring Status List. When we previously explained Status List 2021, this was a DIF (Decentralized Identity Foundation) specification, but it has now been transferred to the W3C. The contents haven't changed much. The specs are still a bit iffy... (If you implement it at 16Kb in the first place, you'll run into problems later, parsing bit arrays is a pain these days, etc.)
[federation] Making Bubbles: Three Stages of Identity 2024-07-11 Justin Richer; justinsecurity.medium.com
With that model in mind, from the perspective of our bubble, we’ve got three distinct identity processing systems that all need to come together to make things work: the local identity management system for our bubble, something to process inbound accounts, and something to package accounts up for outbound transmission to somewhere else.
Government
[linkedin] We have the official version of the consolidated text for eIDAS Regulation 2024-07-10 Viky Manaila
with the amendments introduced by the new European Digital Identity framework (Regulation EU 2024/1183):
https://lnkd.in/dHrMsGnJ
This is extremely useful to navigate between the two regulations without feeling lost. 🙂
[NZ] Government bringing in new digital trust framework - Digital Identity New Zealand 2024-07-10 Digital Identity New Zealand; digitalidentity.nz
Digital Identity New Zealand Executive Director Colin Wallis spoke to Radio New Zealand this morning, “The intent is that you’ll have a safer digital playing field as a baseline to build other services on top of. It’s just going to take some time for the ripple through where we are now for it to become seismic.”
[EU] Nissan, Honda eye EV battery passports in Europe by 2027 – MOBI 2024-07-12 Azusa Kawakami; dlt.mobi
Adopted in June 2023, the regulations will make battery recycling mandatory within the EU bloc. Among the provisions is a requirement that 50% of lithium from used batteries must be recycled by 2027.
[Canada] The DIACC releases its Pan-Canadian Trust Framework (PCTF) Authentication Final Recommendation V1.2 2024-07-11 diacc.ca
Relying Parties can benefit from the ability to build on the assurance that Authentication Trusted Processes uniquely identify, at an acceptable level of risk, a Subject in their application or program space.
Company News
Digi Yatra crosses four million users 2024-07-13 www.medianews4u.com
Starting with just three airports, Delhi, Bengaluru, and Varanasi, Digi Yatra is currently operational at 14 airports. Very soon Digi Yatra plans to expand to an additional 15 airports.
By adopting Digi Yatra, passengers have been able to cut down on airport entry time from 15-20 seconds to around 5 seconds. Digi Yatra operates with a strong emphasis on data security and privacy.
The End of Paper Passports? Ontology's Race to Align Decentralized Identity with Global Regulations 2024-07-11 Viktoriia Palchik; mpost.io
First and foremost, we ensured that compliance and standards are really important. We made sure that our DID (decentralized identification) was compliant with the W3C framework. Then, we focused on accessibility for developers and users. We created a solid identity wallet with OntoWallet that allows people to create and manage their identity easily.
Dfinity provides blockchain platform to UNDP trusted credentials framework 2024-07-05 Biometric Update
The initiative promotes data integrity and transparency through the integration of Dfinity’s Internet Computer blockchain. Establishing digital trust is fundamental to this effort. The reliable data supplied by the UTC framework will mitigate risks for financial institutions, allowing them to broaden their range of services to a more diverse group of MSMEs.
Product
Privado ID increases identity verification speed via its new Web Wallet 2024-07-10 thepaypers.com
By reducing the number of steps required to create credentials from 9 to 4, Privado ID makes the overall user experience much more convenient, streamlined, and quick, accelerating the whole process by more than 50%.
Behind the Scenes of Our New Project on Job Readiness Credentials 2024-07-09 Doug Belshaw; blog.weareopen.coop
What we hope that we have shown in this post is our commitment to working openly, holistically, and thoroughly so that the outputs we generate are trusted, interesting, and actionable. We’ll share more on the project as it progresses.
[EU] Wise DID Authenticator www.wisesecurity.com
Explore the success stories of Wise Security, where we combine technological excellence, innovation and strength. With a focus on people, we provide confidence and security at every stage of our development. Discover how we lead in technology and cybersecurity, turning challenges into wins for our customers
Use Cases
[deepfakes] Keys to tackling the deepfake menace 2024-07-01 The Edge Singapore
[education] Safeguarding the education industry with verifiable credentials for Indian educators 2024-07-09 Satya Panigrahi; etedge insights
a mutually beneficial scenario for all stakeholders in the education landscape. For educational institutions, the issuance of tamper-proof records presents an opportunity to streamline verification processes, reduce administrative burden, and enhance reputation. At the same time, secure credentials allow educators to have greater control of data privacy, whilst employers benefit from swift and reliable verification of educator qualifications.
[finance] Stocks, Bonds, Real Estate or: How the real world Asset Tokenization is taking over capital markets? 2024-07-10 Suraj Atreya; Dhiway
This post delves deep into the essence of asset tokenization, exploring its mechanisms, benefits, challenges, and future potential. By examining real-world examples and case studies, we aim to provide a comprehensive understanding of how asset tokenization is reshaping the financial landscape and what it means for investors, institutions, and regulators.
[banking] Why banks need to use verifiable credentials to protect biometric data 2024-07-10 Trevor Butterworth; Indicio
Verifiable credential technology provides a simple fix: it removes the need for centrally storing biometric data in order to facilitate authentication.
[literature, IOT] Collaborative credentials for the Internet of Things 2024-09 Santiago de Diego, Cristina Regueiro, Gabriel Maciá-Fernández
• Collaborative credentials enable some use cases involving the collaboration of participants that are not possible with the standard verifiable credentials proposed by the W3C.
• Collaborative credentials increase the privacy of a group of participants and enable the development of a software framework that any verifier or holder can use and are compatible with standard verifiable credentials.
• Collaborative credentials require of a special protocol to operate.
DWeb - Fediverse
[activitypub, scuttlebutt] Nostr and ATProto 2024-07-05 shreyanjain.net
epic lore into decentralized social
I also want to try avoiding commenting on the differences between the communities that have formed on the protocols and their apps, although I definitely will be looking at the philosophical differences between the two a lot - also kind of the point of writing this.
Web3
Building Bridges: Developing the Stellar Connector for Hyperledger Cacti Fabricius (Fifo) Zatti; Hyperledger
After successfully developing the first version of the Stellar connector, we looked into an existing example within the Hyperledger Cacti project for CBDC bridging based on the SATP protocol. This example provided a solid foundation for demonstrating cross-chain interoperability. To showcase our progress and the capabilities of the Stellar connector, we decided to adapt this example to create a small prototype.
[web3id] Introducing the idOS Consortium Partners and our $4.5m Funding Round 2024-07-09 Idos
Today, we announce a $4.5m Consortium Funding Round for idOS — the identity layer of web3. idOS is a decentralized data storage and access management protocol.
ID Not SSI
[breach] Largest password database leak exposes nearly 10M credentials www.scmagazine.com
[breach] Massive AT&T breach linked to cloud IT service provider Snowflake SCMagazine "We have not identified evidence suggesting this activity was caused by a vulnerability, misconfiguration, or breach of Snowflake’s platform."
[Protected Resource Metadata] OAuth 2.0 Protected Resource Metadata draft addressing shepherd comments Mike Jones; self-issued.info
[Fully-Specified Algorithms] Fully-Specified Algorithms Specification Addressing Working Group Last Call Comments Mike Jones; self-issued.info
[AI] Experimenting with Automatic PII Detection on the Hub using Presidio 2024-07-10 HuggingFace
With this new feature, users will be able to see a report that estimates the presence of PII in a dataset. This information can be valuable for ML practitioners, helping them make informed decisions before training a model.
[DPKI, literature] Decentralized PKI Framework for Data Integrity in Spatial Crowdsourcing Drone Services 2024-07-01 Akram, Anaissi; arxiv.org
By decentralizing the CA infrastructure, D2XChain eliminates this single point of failure, thereby enhancing the security and reliability of drone communications. Fully compatible with the X.509 standard, it integrates seamlessly with existing PKI systems, supporting all key operations such as certificate registration, validation, verification, and revocation in a distributed manner
All Aboard the CAEP-Ability Hype Train! 2024-07-10 OpenID Foundation
Apart from the immediate “session revoked” scenario, now implemented by platform providers like Apple, CAEP can be applied in numerous other scenarios. These include, for example, revoking a suspicious device’s session without impacting the end user or informing an IdP of assurance level changes - informative and actionable signals.