Self Sovereign ID and Decentralized ID

Transcript

1. None

2. Self introduction Copyright © 2020, Naohiro Fujie, All Rights Reserved

   2

3. Today’s agenda items Copyright © 2020, Naohiro Fujie, All Rights

   Reserved 3

4. • Identifier • Identity Japan Osaka Fujie Fujie Fujie Fujie

   Copyright © 2020, Naohiro Fujie, All Rights Reserved 4

5. Identity https://blog.goodaudience.com/how-blockchain-could-become-the-onramp-towards-self-sovereign-identity-dd234a0ea2a3 Copyright © 2020, Naohiro Fujie, All Rights Reserved

   5

6. Identity https://sovrin.org/faq/what-is-self-sovereign-identity/ recognizes an individual should own and control their

   identity without the intervening administrative authorities Copyright © 2020, Naohiro Fujie, All Rights Reserved 6

7. Car rental Store Company Hospital User present identity by their

   choice Trust issuers No need to validate identity by accessing issuers Issue identity Copyright © 2020, Naohiro Fujie, All Rights Reserved 7

8. Copyright © 2020, Naohiro Fujie, All Rights Reserved 8

9. Copyright © 2020, Naohiro Fujie, All Rights Reserved 9

10. Aspect Requirements for SSI Issues on current identity model Users

    Do not rely on a specific identity provider Business continuity and availability If the identity provider stop their business, user can not use federated services. Account management All accounts are managed under policies of the identity provider and if they suspend the accounts, users can no longer use federated services. Privacy considerations IdPʼs awareness of users behaviours IdP can know which services the user wants to use by identity federation. Attribute management IdP and RP decide which attributes are provided between them Account linkage by correlation of RPs RP can know unintended attributes by correlation with other RPs Service Provide rs Able to trust identity which was presented by users Trust claim values Based on the identity proofing/KYC process on the IdP Trust issuers Pre-established trust(static trust) Copyright © 2020, Naohiro Fujie, All Rights Reserved 10

11. Aspect Requirements for SSI Issues on current identity model Users

    Do not rely on a specific identity provider Business continuity and availability If the identity provider stop their business, user can not use federated services. Account management All accounts are managed under policies of the identity provider and if they suspend the accounts, users can no longer use federated services. Privacy considerations IdPʼs awareness of users behaviours IdP can know which services the user wants to use by identity federation. Attribute management IdP and RP decide which attributes are provided between them Account linkage by correlation of RPs RP can know unintended attributes by correlation with other RPs Service Provide rs Able to trust identity which was presented by users Trust claim values Based on the identity proofing/KYC process on the IdP Trust issuers Pre-established trust(static trust) Copyright © 2020, Naohiro Fujie, All Rights Reserved 11 3 1 5 4 2 6 Numbers in The Laws Of Identity in SSI

12. Identifiers Copyright © 2020, Naohiro Fujie, All Rights Reserved 12

13. Copyright © 2020, Naohiro Fujie, All Rights Reserved 13

14. • How to trust issued claims • How to trust

    the issuer Copyright © 2020, Naohiro Fujie, All Rights Reserved 14

15. Copyright © 2020, Naohiro Fujie, All Rights Reserved 15 Aspect

    Requirements for SSI Issues on current identity model Users Do not rely on a specific identity provider Business continuity and availability If the identity provider stop their business, user can not use federated services. Account management All accounts are managed under policies of the identity provider and if they suspend the accounts, users can no longer use federated services. Privacy considerations IdPʼs awareness of users behaviours IdP can know which services the user wants to use by identity federation. Attribute management IdP and RP decide which attributes are provided between them Account linkage by correlation of RPs RP can know unintended attributes by correlation with other RPs Service Provide rs Able to trust identity which was presented by users Trust claim values Based on the identity proofing/KYC process on the IdP Trust issuers Pre-established trust(static trust)

16. Copyright © 2020, Naohiro Fujie, All Rights Reserved 16

17. Car rental Store Company Hospital User present identity by their

    choice Trust issuers No need to validate identity by accessing issuers Issue identity Copyright © 2020, Naohiro Fujie, All Rights Reserved 17 How to trust the presented identity without asking to the issuer

18. Car rental Store Company Hospital User present identity by their

    choice Trust issuers Issue identity Copyright © 2020, Naohiro Fujie, All Rights Reserved 18 PKI

19. Car rental Store Company Hospital User present identity by their

    choice Trust issuers Issue identity Copyright © 2020, Naohiro Fujie, All Rights Reserved 19 PKI Who operates the PKI?

20. Car rental Store Company Hospital User present identity by their

    choice Trust issuers Issue identity Copyright © 2020, Naohiro Fujie, All Rights Reserved 20 PKI No falsification of the key by the issuer or the operators?

21. Car rental Store Company Hospital User present identity by their

    choice Trust issuers Issue identity Copyright © 2020, Naohiro Fujie, All Rights Reserved 21 PKI on DLT Register wallet and bind to the identity

22. DLT(Public Key Infrastructure) Gov/Telco/Banks etc Userʼs ID Wallet Applications Copyright

    © 2020, Naohiro Fujie, All Rights Reserved 22

23. Copyright © 2020, Naohiro Fujie, All Rights Reserved 23

24. Copyright © 2020, Naohiro Fujie, All Rights Reserved 24

25. Sovrin Foundation’s governance model Holder /Prover Issuer Verifier Verifiable Credential

    Proof Trust Trust Verifiable Credential Governanc e Authority Governance Framework Publishes Holder /Prover Issuer Verifier Verifiable Credential Proof Trust Copyright © 2020, Naohiro Fujie, All Rights Reserved 25

26. Sovrin Governance Framework https://docs.google.com/document/d/1WqUOqdTBc3JACIlRviJoWJRcJHTNTNzk9_As9v-jwrY Copyright © 2020, Naohiro Fujie, All

    Rights Reserved 26

27. Copyright © 2020, Naohiro Fujie, All Rights Reserved 27

28. Copyright © 2020, Naohiro Fujie, All Rights Reserved 28

29. Copyright © 2020, Naohiro Fujie, All Rights Reserved 29

30. Copyright © 2020, Naohiro Fujie, All Rights Reserved 30 OIDC4IDA

    VC Philosophy IdP centric User centric Focus on Identity verification on IdP Identity verification on RP Provides Verified identity information Verifiable identity information Based on Pre-established trust relationship between RP and IdP Immutability of a DLT

31. https://identity.foundation/presentation-exchange/ Copyright © 2020, Naohiro Fujie, All Rights Reserved 31

32. Copyright © 2020, Naohiro Fujie, All Rights Reserved 32

33. Copyright © 2020, Naohiro Fujie, All Rights Reserved 33 OpenID

    Provider DID SIOP Wallet Holder Wallet Verifier KYC providers SIOP Wallet RP Issuer Presentation Exchange OIDC4IDA VC VC Presentation Exchange JWT VC JWT OIDC4IDA Distributed Claim OpenID Connect DID/VC

34. Copyright © 2020, Naohiro Fujie, All Rights Reserved 34 Write

    issuing information In university Private sectors Inter universities Verify ceriticates Record students information - Digital student card - Identity proofing at online classes - Portable certificates - Inter universities ID federation - Digitalized certificates - Payment system integration Login with student ID Issue certificates (enrolment, graduates) Students ID federation Registration/Issue Use cases Digital Student Card Certificate Issuing sys ID platform Distributed Ledger Technology keio.jp

35. Summary/Conclusion Copyright © 2020, Naohiro Fujie, All Rights Reserved 35