Identosphere 217: BBS Blind Signatures • SSI Over before it Started? • Markets Talk •
Upcoming events, standards development, specifications, company news, organizational updates; and deep thoughts on everything related to decentralized identity and verifiable credentials
The two hackathons, participated by 20+ teams, 40+ organizations, and 200+ attendees The CA DMV is hosting this briefing to share with the broader mDL ecosystem
Web based DID methods belong to the family of federated identity methods, not Self Sovereign Identity Using the web for Decentralized Identifiers (DIDs) violates some of the basic principles of Self Sovereign Identity, and effectively restricts the possible properties of the system to that of a classic federated identity protocol, such as OpenID.
BC Gov is looking to enhance our ability to create demonstration systems for digital credentials. If you are familiar with the BC Wallet Showcase demo, we're expanding that.
Investment rates are a further indicator of a resilient market: UK digital identity firms have raised £826 million in external investment since 2015, with £148m raised across 34 deals in 2023.
The figures highlight a highly productive sector, with an average revenue per employee of £189,867 and Gross Value Added (GVA) per employee of £79,366—about 42% higher than the average in the wider UK economy.
In the Goode Intelligence market analyst report, “Travel Digital Identity – Seamless Travel Powered by Digital Identity” we forecast that the market will grow to $4.6 billion by 2029 with a CAGR of 22 percent. It is no surprise that suppliers of biometric and digital identity technology are aware of this opportunity and are growing their business and product portfolio through acquisition.
At its core, ID verification tools prove your information – name, address, age, phone number – is valid and linked to you. Many different technologies can be used to achieve that one goal. The author, the CEO of Mastercard, explores how the technology works, where it’s used, and the potential pitfalls of digital IDs.
The hackathons co-hosted by OIDF and the California Department of Motor Vehicles brought in a range of participants from the public and private sectors, addressing 25 real-world use cases. They were successful in demonstrating the value of mDLs as secure digital credentials for use cases in financial services, retail, healthcare and entertainment, OIDF says.
DIF Identifiers & Discovery WG Guest Lecture at Gangnam MegaStudy Academy
Markus Sabadello (co-chair) and Kyoungchul Park (chair) delivered a guest lecture on December 10, 2024.
Students demonstrated deep understanding through challenging questions about DID-Web3 relationships, VC proof mechanisms, underlying trust models.
Established alongside Ministry of Science and ICT's Self-Sovereign Identity Technology Project, the SIG bridges DIF's technical standards with Korea's digital identity ecosystem
‘Twas the night before Christmas, and through BC’s realm, The wallets were buzzing, all safe at the helm. The Person Credentials were stored with great care, In hopes that secure access soon would be there.
DIF Labs Beta Cohort Launch: New initiative brings together leading projects on Bitcoin Ordinals, Linked Claims, and privacy-preserving verification through VerAnon.
One significant change since the First Candidate Recommendation was splitting the Controller Document text out into its own specification called Controlled Identifier Document 1.0. Publishing a Candidate Recommendation Snapshot for it is planned for next week. Part of why it became its own specification is so that it can be referenced by the planned update to the W3C DID specification
Resolution & Roadmap for 2025: ✅ Automation: Implement certificate lifecycle automation tools to reduce human error and ensure timely renewals. ✅ Centralized Management: Deploy unified PKI platforms to gain visibility and control over all certificates. ✅ Quantum-Ready PKI: Start adopting hybrid cryptographic solutions to future-proof systems against quantum attacks. ✅ Continuous Monitoring: Invest in real-time monitoring solutions to detect vulnerabilities proactively. ✅ Training & Awareness: Upskill teams on the latest PKI trends, standards, and technologies.
Analyzes security implications of short-lived vs long-lived tokens within OAuth 2.0 framework; benefits include mitigating token replay attacks, limiting attack window, and reducing impact of compromise.
a framework of verifiable presentations realized by applications of W3C decentralized identifiers and verifiable credentials in a federated international data spaces approach. To realize a verifiable presentation of DCC content on demand between two federations, a trust and identity work package of the Gaia-X along with its new trust management infrastructure (TRAIN) framework has been adapted. The proposed approach is readily scalable, extendable, and accessible to any authorized body and industrial partner or company.
We will post material for feedback as we go. First items for review are the build requirements. Please send us your thoughts via email or GitHub issues!
Private Services and Data Brokers: Contracts and relationships between law enforcement and federal agencies, private services, and data brokers seem to be based on a "nudge and a wink."
Secret Service's Justification Challenged: The email undermines the Secret Service's and other U.S. federal agencies' justification for monitoring movements without a warrant based on user consent from apps.
Wallet engineering creates highly convincing wallets with real documents & biometrics. These wallets mimic legitimate users and can easily bypass traditional verification methods. Soon, such fraud-ready wallets (together with authentic smart phones) may be bought & sold on the dark web, enabling large-scale impersonation fraud.
Remember the good old days when people used to rob banks for money? At least there was no contagion. Apart from anything else, thanks to fungibility, it wasn’t your money that was being stolen anyway, it was the banks’ money. Today though, smart criminals rob banks for identity, which is much more valuable (and not at all fungible).
The paper, presented in collaboration with the Queensland University of Technology (QUT), argues that digital identity wallet applications can feasibly support the EUDI Wallet technical Architecture and Reference Framework (ARF), but with some tradeoffs in terms of algorithmic compatibility, user experience and performance.
In 2024, Digi Yatra, a Self-Sovereign Identity (SSI) ecosystem using face biometric technology for seamless airport processing, reached over nine million active users and expanded from three to 24 airports across India. The platform has facilitated 42 million contactless journeys and sees an average of 30,000 downloads daily.
The open social web puts control back in your hands. Unlike big social media platforms, it’s not run by a single company — it’s made up of independent, connected communities where you decide how and with whom you interact. It respects your privacy, avoids intrusive ads, and gives you the freedom to truly own your online experience. It’s like the internet used to be: open, personal, and community-focused.
Verifiable Credentials and NFTs are complementary solutions rather than direct competitors. While VCs excel in contexts where privacy, data updates, and regulatory compliance are paramount, NFTs shine in certifying authenticity, exclusivity, and transparent trading of unique assets.
For the first time, ENS users can now securely link their onchain identity with their real-world identity. They can define the scope of the information they wish to share, and maintain complete control over what Personally Identified Information (PII) is publicly accesible, while preventing the need for any PII to be stored onchain. Similarly, Dentity users can now link their identity credentials to their ENS domain using the newly created integration pathway.
