[PPT] - D e c e n t r a l i z e d I d e n t i f e r s PowerPoint Presentation

SLIDE 1

D e c e n t r a l i z e d I d e n t i f e r s ( D I D s ) Ma r k u s S a b a d e l l

D

a n u b e T e c h , D e c e n t r a l i z e d I d e n t i t y F

u

n d a t i

n

, S

v

r i n F

u

n d a t i

n

, W3 C C C G , O A S I S X D I T C h t t p s : / / d a n u b e t e c h . c

m/

s e c 4 d e v – V i e n n a , 2 6

t h

F e b r u a r y 2 1 9

SLIDE 2

D i g i t a l I d e n t i t y

SLIDE 3

I n t e r n e t I d e n t i t y Wo r k s h

p

SLIDE 4

S e l f

S
v

e r e i g n I d e n t i t y

SLIDE 5

SLIDE 6

D e c e n t r a l i z e d I d e n t i fi e r s ( D I D s )

 S

e l f

s
v

e r e i g n i d e n t i fj e r s f

r

i n d i v i d u a l s ,

r

g a n i z a t i

n

s , t h i n g s .

 D

e c e n t r a l i z e d , p e r s i s t e n t , c r y p t

g

r a p h i c a l l y v e r i fj a b l e , d e r e f e r e n c e

a

b l e i d e n t i fj e r s .

 R

e g i s t e r e d i n b l

c

k c h a i n

r
t

h e r d e c e n t r a l i z e d n e t w

r

k ( l e d g e r

a

g n

s

t i c ) .

 C

r e a t e d a n d ma n a g e d b y i d e n t i t y c

n

t r

l

l e r v i a w a l l e t a p p l i c a t i

n

.

SLIDE 7

D I D Me t h

d

s

 D

i fg e r e n t D I D “ me t h

d

s ” :

did:sov:WRfXPg8dantKVubE3HX8pw did:btcr:xz35-jzv2-qqs2-9wjt did:v1:test:nym:3AEJTDMSxDDQpyUftjuoeZ2Bazp4Bswj1ce7FJGybCUu did:uport:2omWsSGspY7zhxaG6uHyoGtcYxoGeeohQXz did:erc725:ropsten:2F2B37C890824242Cb9B0FE5614fA2221B79901E

 D

I D me t h

d

s n e e d a me t h

d

s p e c i fj c a t i

n

.

 D

e fj n e me t h

d
s

p e c i fj c s y n t a x .

 D

e fj n e me t h

d
s

p e c i fj c C R U D

p

e r a t i

n

s :



C r e a t e , R e a d ( R e s

l

v e ) , U p d a t e , D e l e t e ( R e v

k

e ) Me t h

d

D I D P r e fi x S

v

r i n

did:sov:

V e r e s O n e

did:v1:

u P

r

t

did:uport:

B i t c

i

n

did:btcr:

B l

c

k s t a c k

did:stack:

E R C 7 2 5

did:erc725:

I P F S

did:ipid:

SLIDE 8

D I D R e s

l

u t i

n

 D

I D R e s

l

u t i

n

: D I D → D I D D

c

u me n t



S e t

f

p u b l i c k e y s



S e t

f

s e r v i c e e n d p

i

n t s



A u t h e n t i c a t i

n

me t h

d

s



T i me s t a mp s , p r

f

s



O t h e r i d e n t i fj e r me t a d a t a

 Ma

y b e d y n a mi c a l l y c

n

s t r u c t e d r a t h e r t h a n a c t u a l l y s t

r

e d i n t h i s f

r

m.

 C

a n s u p p

r

t r e s

l

u t i

n

p a r a me t e r s .

 C

a n r e t u r n r e s

l

u t i

n

me t a d a t a .

{ "@context": "https://w3id.org/did/v1", "id": "did:sov:WRfXPg8dantKVubE3HX8pw", "publicKey": [ { "id": "did:sov:WRfXPg8dantKVubE3HX8pw#key-1", "type": "Ed25519VerificationKey2018", "publicKeyBase58": "H3C2AVvLMv6gmMNam3uVAjZpfkcJCwDmqPV" } ], "service": { "type": "hub", "serviceEndpoint": "https://azure.microsoft.com/hub/did:sov:WRfXPg8dantKVubE3H" }, "authentication": { "type": "Ed25519SignatureAuthentication2018", "publicKey": [ "did:sov:WRfXPg8dantKVubE3HX8pw#key-1" ] } }

 E

x a mp l e D I D D

c

u me n t :

SLIDE 9

D I D U n i v e r s a l R e s

l

v e r

 L

k

s u p ( “ r e s

l

v e s ” ) D I D t

i

t s D I D D

c

u me n t .

 P

r

v

i d e s a u n i v e r s a l A P I t h a t w

r

k s w i t h a l l D I D me t h

d

s .

 U

s e s a s e t

f

c

n

fj g u r a b l e “ d r i v e r s ” t h a t k n

w

h

w

t

c
n

n e c t t

t

h e t a r g e t s y s t e m.

 h

t t p s : / / u n i r e s

l

v e r . i

/

SLIDE 10

D I D A u t h

 I

d e n t i t y

w

n e r i n t e r a c t s w i t h a r e l y i n g p a r t y .

 P

r

v

e c

n

t r

l
f

a D I D u s i n g a c r y p t

g

r a p h i c c h a l l e n g e / r e s p

n

s e p r

t
c
l

.

 P

r

v

e t h a t “ I a m me ” .

 D

i fg e r e n t a r c h i t e c t u r e s a n d s c e n a r i

s

.

SLIDE 11

V e r i fi a b l e C l a i ms

 I

d e n t i t y d a t a , t h a t i s “ a t t e s t e d ” b y a t r u s t e d p a r t y i n s t e a d

f

“ s e l f

a

s s e r t e d ” .

 C

r y p t

g

r a p h i c a l l y v e r i fj a b l e .

 S

e ma n t i c s t a t e me n t s e x p r e s s e d i n J S O N

L

D / R D F , e . g . :

 P

s

t a t t e s t s : I l i v e i n 1 1 7 V i e n n a .

 U

n i v e r s i t y a t t e s t s : I h a v e a d i p l

ma

i n C

mp

u t e r S c i e n c e .

 B

a n k a t t e s t s : My c r e d i t s c

r

e i s s u ffjc i e n t f

r

a g i v e n t r a n s a c t i

n

.

 G

v

e r n me n t a t t e s t s : My n a me a n d b i r t h d a y a r e …

 “

T r u s t F r a me w

r

k ” f

r

l e g a l a n d b u s i n e s s r u l e s .

SLIDE 12

V e r i fi a b l e C l a i ms

 E

x a mp l e :

{ "@context": "https://w3id.org/credentials/v1", "id": "did:sov:WRfXPg8dantKVubE3HX8pw/credentials/1", "type": ["Credential", "NameCredential"], "issuer": "did:sov:WRfXPg8dantKVubE3HX8pw", "issued": "2018-05-01", "claim": { "id": "did:btcr:x6lj-wzvr-qqrv-m80w", "name": "Markus Sabadello", "address": "..." }, "proof": { "type": "RsaSignature2018", "created": "2017-06-18T21:19:10Z", "creator": "did:sov:WRfXPg8dantKVubE3HX8pw#key-1", "nonce": "c0ae1c8e-c7e7-469f-b252-86e6a0e7387e", "signatureValue": "BavEll0/I1zpYw8XNi1bgVg/sCneO4Jugez8RwDg/+ MCRVpjOboDoe4SxxKjkCOvKiCHGDvc4krqi6Z1n0UfqzxGfmatCuFibcC1wps PRdW+gGsutPTLzvueMWmFhwYmfIFpbBu95t501+rSLHIEuujM/+PXr9Cky6Ed +W3JT24=" } }

SLIDE 13

S e l f

S
v

e r e i g n I d e n t i t y T e c h n

l
g

y

SLIDE 14

Rebooting-the-Web-of-Trust Internet Identity Workshop DIDs: W3C Credentials CG v0.11 Draft Community Report DIDs: W3C DID WG Charter now being written Yadis, XRI, XRD, XRDS, JRD, Webfjnger DID registered

prov. URI scheme

DID method specs W3C Web Payments CG OASIS XDI TC W3C JSON-LD 1.1 W3C Cryptographic Suites RFC 7517: JWK Verifjable Credentials DKMS, DID Auth Hubs, Agents, XDI

SLIDE 15

T h a n k Y

u

 I

n t e r n e t I d e n t i t y Wo r k s h

p

! – A p r i l 3 2 1 9

Ma

y 2 2 1 9 , Mo u n t a i n V i e w , U S

 h

t t p s : / / w w w . i n t e r n e t i d e n t i t y w

r

k s h

p

. c

m/

 W3

C C r e d e n t i a l s C

mmu

n i t y G r

u

p !

 h

t t p s : / / w 3 c

c

c g . g i t h u b . i

/

 D

e c e n t r a l i z e d I d e n t i t y F

u

n d a t i

n

!

 h

t t p s : / / i d e n t i t y . f

u

n d a t i

n

/

 h

t t p s : / / d a n u b e t e c h . c

m/

– ma r k u s @d a n u b e t e c h . c

m

SLIDE 16

E x t r a S l i d e s

SLIDE 17

D I D U n i v e r s a l R e s

l

v e r

 E

x a mp l e D r i v e r C

n

fj g u r a t i

n

:

{ "pattern": "^(did:btcr:.+)$", "image": "universalresolver/driver-did-btcr", "tag": "latest", "testIdentifiers": [ "did:btcr:xz35-jzv2-qqs2-9wjt", "did:btcr:x705-jzv2-qqaz-7vuz", "did:btcr:xkrn-xzcr-qqlv-j6sl" ], "env": { "uniresolver_driver_did_btcr_bitcoinConnection": "blockcypherapi", "uniresolver_driver_did_btcr_rpcUrlMainnet": "http://user:pass@localhost:8332/", "uniresolver_driver_did_btcr_rpcUrlTestnet": "http://user:pass@localhost:18332/" } }

SLIDE 18

D I D R e s

l

u t i

n

: I n p u t

 A

d d i t i

n

a l i n p u t p a r a me t e r s :



S e l e c t s p e c i fj c r e s

u

r c e i n t h e D I D D

c

u me n t b y I D , e . g .

did:sov:WRfXPg8dantKVubE3HX8pw#key-1 

S e l e c t p u b l i c k e y b y t y p e , e . g .

Ed25519VerificationKey2018 

S e l e c t a u t h e n t i c a t i

n

me t h

d

b y t y p e , e . g .

Ed25519SignatureAuthentication2018 

S e l e c t s e r v i c e b y t y p e , e . g .

SocialWebInboxService 

S e l e c t s e r v i c e b y n a me , e . g .

did:example:123456789abcdefghi;xdi 

R e q u e s t s p e c i fj c v e r s i

n
f

D I D D

c

u me n t , e . g . b y v e r s i

n

n u mb e r ,

r

b y t i me s t a mp .



R e q u e s t s p e c i fj c c a c h i n g b e h a v i

r

, e . g . f

r

c e f r e s h D I D r e s

l

u t i

n

.

SLIDE 19

D I D R e s

l

u t i

n

: O u t p u t

 R

e s

l

v e r Me t a d a t a :



Wh i c h d r i v e r w a s u s e d ?



D u r a t i

n
f

t h e r e s

l

u t i

n

p r

c

e s s ?



V e r s i

n

i n g i n f

r

ma t i

n

a b

u

t t h e D I D D

c

u me n t



C a c h i n g i n f

r

ma t i

n

a b

u

t t h e D I D D

c

u me n t

 Me

t h

d

Me t a d a t a :



S

v

r i n : S t a t e p r

f

s f r

m

t h e l e d g e r



B i t c

i

n : Wa s a f u l l n

d

e u s e d ,

r

a e x t e r n a l b l

c

k c h a i n e x p l

r

e r ?



B i t c

i

n : T r a n s a c t i

n

n u mb e r a n d n u mb e r

f

c

n

fj r ma t i

n

s ?



B i t c

i

n : Ma i n n e t

r

T e s t n e t ?

SLIDE 20

O t h e r T

p

i c s :

 V

e r s i

n

i n g :



I n p u t p a r a me t e r t

r

e q u e s t s p e c i fj c v e r s i

n
f

D I D D

c

u me n t , e . g . b y v e r s i

n

n u mb e r ,

r

b y t i me s t a mp .



D I D D

c

u me n t c a n c

n

t a i n v e r s i

n

n u mb e r

r

t i me s t a mp

f

l a s t u p d a t e .

 C

a c h i n g :



I n p u t p a r a me t e r t

r

e q u e s t s p e c i fj c c a c h i n g b e h a v i

r

, e . g . f

r

c e f r e s h D I D r e s

l

u t i

n

.



C

n

t r

l

l e d b y D I D r e s

l

v e r c

n

fj g u r a t i

n

, i n p u t p a r a me t e r s , a n d D I D D

c

u me n t c

n

t e n t ( “ t i me

t
l

i v e ” ) .

 R

e v

c

a t i

n

:



D I D r e s

l

v e r c a n r e t u r n a n e r r

r

,

r

a D I D D

c

u me n t w i t h a “ r e v

k

e d ” fm a g .

 V

a l i d a t i

n

:



D I D r e s

l

v e r v a l i d a t e s D I D D

c

u me n t s b e f

r

e r e t u r n i n g t h e m.

 R

e d i r e c t s :



D I D c a n b e u s e d a s t h e v a l u e

f

serviceEndpoint.

{ "id": "did:btcr:x705-jzv2-qqaz-7vuz;hub", "type": "HubService", "serviceEndpoint": "did:btcr:xz35-jzv2-qqs2-9wjt" }

SLIDE 21

O t h e r T

p

i c s :

 O

fg

l

e d g e r D I D s ( “ mi c r

l

e d g e r s ” , “ r e l a t i

n

s h i p s t a t e ma c h i n e ” ) :



D I D me t h

d

did:sov:peer: h

a s b e e n p r

p
s

e d



D I D

p

e r a t i

n

s n

t

i n a p u b l i c n e t w

r

k , b u t b e t w e e n p e e r s

 Wh

i c h D I D me t h

d

s s h

u

l d a D I D R e s

l

v e r s u p p

r

t ?



D I D Me t h

d

R e g i s t r y

 D

I D N a me s h a v e b e e n p r

p
s

e d .

 P

e t n a me s c a n p

i

n t t

D

I D s .

 D

ma

i n n a me s c a n p

i

n t t

D

I D s :



D N S R e s

l

u t i

n

, e . g . :

_did.ssi.labs.nic.at. 300 IN URI 10 1 "did:sov:stn:r1dwAJxcoG7EPiioGMz7h" 

We b F i n g e r



H T ML c

d

e i n w e b p a g e

SLIDE 22

D I D U n i v e r s a l R e g i s t r a r

 C

r e a t e / u p d a t e / r e v

k

e a D I D a n d i t s D I D D

c

u me n t .

 P

r

v

i d e s a u n i v e r s a l A P I t h a t w

r

k s w i t h a l l D I D me t h

d

s .

 U

s e s a s e t

f

c

n

fj g u r a b l e “ d r i v e r s ” t h a t k n

w

h

w

t

c
n

n e c t t

t

h e t a r g e t s y s t e m.

 h

t t p s : / / u n i r e g i s t r a r . i

/

SLIDE 23

D I D U n i v e r s a l R e s

l

v e r

 L

k

s u p ( “ r e s

l

v e s ” ) D I D t

i

t s D I D D

c

u me n t .

 P

r

v

i d e s a u n i v e r s a l A P I t h a t w

r

k s w i t h a l l D I D me t h

d

s .

 U

s e s a s e t

f

c

n

fj g u r a b l e “ d r i v e r s ” t h a t k n

w

h

w

t

c
n

n e c t t

t

h e t a r g e t s y s t e m.

 h

t t p s : / / u n i r e s

l

v e r . i

/

SLIDE 24

S

v

r i n

 B

l

c

k c h a i n / D L T f

r

S e l f

S
v

e r e i g n I d e n t i t y

 N

c

r y p t

c

u r r e n c y , n

s

ma r t c

n

t r a c t s

 P

e r mi s s i

n

e d , p u b l i c “ g l

b

a l u t i l i t y f

r

i d e n t i t y ”

 U

s e d f

r

D I D s , s c h e ma s , r e v

c

a t i

n

 C

d

e b a s e d

n

H y p e r l e d g e r I n d y

 G

v

e r n e d b y S

v

r i n F

u

n d a t i

n

SLIDE 25

S

v

r i n

 A

b

u

t 4 “ S t e w a r d s ” w h

p

e r a t e D L T n

d

e s

 F

i n a n c i a l i n s t i t u t i

n

s , c e r t i fj c a t i

n

a u t h

r

i t i e s , t e c h c

mp