SlideShare une entreprise Scribd logo

Masterclass on the DID Universal Resolver

Markus Sabadello
Markus Sabadello

Identiverse - Boston, 27th June 2018

Technologie
1  sur  18
Télécharger pour lire hors ligne
Masterclass on the DID Universal Resolver Markus Sabadello Danube Tech, Decentralized Identity Foundation, Sovrin Foundation, W3C VCWG, W3C CCG, OASIS XDI TC https://danubetech.com/ Identiverse, Boston, 27th June 2018
Masterclass on the DID Universal Resolver 1. Decentralized Identifiers (DIDs) 2. DID Universal Resolver 3. What to do with DIDs?
Decentralized Identifiers (DIDs)  Motivation:  Emerging paradigm of “self-sovereign identity” (SSI).  Digital identity that does not depend on central authorities or intermediaries.  Digital identity, relationships, data sharing, messaging, etc. requires identifiers.  Today’s identifiers are not “self-sovereign” (they can be taken away from you).  DIDs are:  “Self-sovereign” identifiers for individuals, organizations, things.  Persistent, decentralized, dereference-able, cryptographically verifiable.  Registered using wallets and blockchains, or other decentralized architectures.  DIDs are not:  DNS-based identifiers.  A standard or broadly adopted (yet).  Human-memorable (like usernames or e-mail addresses).
Decentralized Identifiers (DIDs)  Background:  W3C Web Payments Working Group and Verifiable Claims Task Force  OASIS XDI TC Registry Working Group  Internet Identity Workshop, Rebooting-the-Web-of-Trust  Grant by U.S. Department of Homeland Security  Decentralized Public Key Infrastructure DPKI (December 2015)  Decentralized Identifiers 1.0 Implementer’s Draft 01 (November 2016)  More Community Drafts (2017-2018)  W3C Working Group (2019)
Decentralized Identifiers (DIDs)  Example DID:  Registered in a blockchain or other decentralized network, without intermediary.  Generation and control over DID lies with identity owner (e.g. through private keys in a wallet).  Ledger-agnostic.
DID Resolution  DID Resolution: DID → DID Document  Set of public keys  Set of service endpoints  Timestamps, proofs  Other identifier metadata  May be dynamically constructed rather than actually stored in this form.  Resolution parameters can select parts of the DID document. { "@context": "https://w3id.org/did/v1", "id": "did:sov:WRfXPg8dantKVubE3HX8pw", "service": { "type": "hub", "serviceEndpoint": "https://azure.microsoft.com/dif/hub/did:sov:WRfXPg8dantKVubE3H" }, "publicKey": [ { "id": "did:sov:WRfXPg8dantKVubE3HX8pw#key-1", "type": "Ed25519VerificationKey2018", "publicKeyBase58": "H3C2AVvLMv6gmMNam3uVAjZpfkcJCwDmqPV" } ], "authentication": { "type": "Ed25519SignatureAuthentication2018", "publicKey": [ "did:sov:WRfXPg8dantKVubE3HX8pw#key-1" ] } }  Example DID Document:
DID Methods  Different DID “methods”:  did:sov, did:btcr, did:v1, did:uport, …  Different methods have different strengths  Define method-specific syntax  Define CRUD for DIDs:  Create, Read (Resolve), Update, Delete (Revoke)  All methods need:  A DID method specification (W3C)  An implementation of a “resolver” Method DID Prefix Sovrin did:sov: Veres One did:v1: uPort did:uport: Bitcoin did:btcr: Blockstack did:stack: ERC725 did:erc725: IPFS did:ipid:
Masterclass on the DID Universal Resolver 1. Decentralized Identifiers (DIDs) 2. DID Universal Resolver 3. What to do with DIDs?
DID Universal Resolver  Looks up (“resolves”) DID to its DID Document.  Provides a universal API that works with all DID methods.  Uses a set of configurable “drivers” that know how to connect to the target system.  Can return metadata about the resolution process.  https://uniresolver.io/
DID Universal Resolver  Open Source maintained by Decentralized Identity Foundation.  Can be built and deployed using Docker containers.  Can be deployed and used in different ways:  as a hosted service.  from a command line.  integrated in client applications.  Community maintains “drivers”.  https://uniresolver.io/
DID Universal Resolver  Demo + Discussion  https://uniresolver.io/
Masterclass on the DID Universal Resolver 1. Decentralized Identifiers (DIDs) 2. DID Universal Resolver 3. What to do with DIDs?
Verifiable Credentials  Example: { "@context": "https://w3id.org/credentials/v1", "id": "did:sov:WRfXPg8dantKVubE3HX8pw/credentials/1", "type": ["Credential", "NameCredential"], "issuer": "did:sov:WRfXPg8dantKVubE3HX8pw", "issued": "2018-05-01", "claim": { "id": "did:btcr:x6lj-wzvr-qqrv-m80w", "name": "Jane Doe" }, "proof": { "type": "RsaSignature2018", "created": "2017-06-18T21:19:10Z", "creator": "did:sov:WRfXPg8dantKVubE3HX8pw#key-1", "nonce": "c0ae1c8e-c7e7-469f-b252-86e6a0e7387e", "signatureValue": "BavEll0/I1zpYw8XNi1bgVg/sCneO4Jugez8RwDg/+ MCRVpjOboDoe4SxxKjkCOvKiCHGDvc4krqi6Z1n0UfqzxGfmatCuFibcC1wps PRdW+gGsutPTLzvueMWmFhwYmfIFpbBu95t501+rSLHIEuujM/+PXr9Cky6Ed +W3JT24=" } }
DID Auth  DID-based authentication protocol.  Identity owner interacts with a relying party.  Prove control over a DID using a cryptographic challenge/response protocol.  Uses “publicKey” and “authentication” blocks in a DID document.  Different architectures and scenarios.  See RWoT did_auth_draft.md
Agents, Hubs, Personal Data Stores, etc. Identity Owner Layer Edge/App Layer Cloud/Agent Layer Blockchain/DLT Layer Things Companies, Public Institutions Individuals DIDs DIDs
Other Topics  Decentralized Key Management System: DKMS  Encryption protocols: DID-TLS, DID-PGP, DID-SSH  Human-readable names: DID Names, ENS, BNS, e.g. “markus.id”  Off-ledger DIDs: stored only on peer-to-peer microledgers; GDPR compliance  Pairwise-pseudonymous DIDs: support “directed identity”; avoid correlation  Integration of DIDs with OAuth 2, OpenID Connect, FIDO WebAuthn, UMA  Integration of DIDs with HTTP URIs, Semantic Web, Linked Data Platform, ActivityPub, WebID, Solid, XDI  Other DID tools: Universal Registrar, did-client CLI
Rebooting-the-Web-of-Trust Internet Identity Workshop DIDs: W3C Credentials CG v0.10 Draft Community Report DIDs: W3C DID WG Charter now being written Yadis, XRI, XRD, XRDS, JRD, Webfinger DID registered prov. URI scheme DID method specs W3C Web Payments CG OASIS XDI TC W3C JSON-LD 1.1 W3C Cryptographic Suites RFC 7517: JWK Verifiable Credentials DKMS, DID Auth Hubs, Agents, XDI
Thank You  https://danubetech.com/  markus@danubetech.com  Decentralized Identity Foundation: https://identity.foundation/  Universal Resolver: https://uniresolver.io/

Recommandé

What is self-sovereign identity (SSI)?
What is self-sovereign identity (SSI)?What is self-sovereign identity (SSI)?
What is self-sovereign identity (SSI)?
Evernym
 
Verifiable Credentials, Self Sovereign Identity and DLTs
Verifiable Credentials, Self Sovereign Identity and DLTs Verifiable Credentials, Self Sovereign Identity and DLTs
Verifiable Credentials, Self Sovereign Identity and DLTs
Vasiliy Suvorov
 
Overview of Decentralized Identity
Overview of Decentralized IdentityOverview of Decentralized Identity
Overview of Decentralized Identity
Jim Flynn
 
Decentralized Identifiers (DIDs): The Fundamental Building Block of Self-Sove...
Decentralized Identifiers (DIDs): The Fundamental Building Block of Self-Sove...Decentralized Identifiers (DIDs): The Fundamental Building Block of Self-Sove...
Decentralized Identifiers (DIDs): The Fundamental Building Block of Self-Sove...
SSIMeetup
 
Self Sovereign Identity (SSI) Open standards with Drummond Reed
Self Sovereign Identity (SSI) Open standards with Drummond Reed Self Sovereign Identity (SSI) Open standards with Drummond Reed
Self Sovereign Identity (SSI) Open standards with Drummond Reed
SSIMeetup
 
What are Decentralized Identifiers (DIDs)?
What are Decentralized Identifiers (DIDs)?What are Decentralized Identifiers (DIDs)?
What are Decentralized Identifiers (DIDs)?
Evernym
 
Introduction to Self Sovereign Identity
Introduction to Self Sovereign IdentityIntroduction to Self Sovereign Identity
Introduction to Self Sovereign Identity
Heather Vescent
 
Decentralized Identifier (DIDs) fundamentals deep dive
Decentralized Identifier (DIDs) fundamentals deep diveDecentralized Identifier (DIDs) fundamentals deep dive
Decentralized Identifier (DIDs) fundamentals deep dive
SSIMeetup
 

Recommandé

What is self-sovereign identity (SSI)?
What is self-sovereign identity (SSI)?What is self-sovereign identity (SSI)?
What is self-sovereign identity (SSI)?
Evernym
 
Verifiable Credentials, Self Sovereign Identity and DLTs
Verifiable Credentials, Self Sovereign Identity and DLTs Verifiable Credentials, Self Sovereign Identity and DLTs
Verifiable Credentials, Self Sovereign Identity and DLTs
Vasiliy Suvorov
 
Overview of Decentralized Identity
Overview of Decentralized IdentityOverview of Decentralized Identity
Overview of Decentralized Identity
Jim Flynn
 
Decentralized Identifiers (DIDs): The Fundamental Building Block of Self-Sove...
Decentralized Identifiers (DIDs): The Fundamental Building Block of Self-Sove...Decentralized Identifiers (DIDs): The Fundamental Building Block of Self-Sove...
Decentralized Identifiers (DIDs): The Fundamental Building Block of Self-Sove...
SSIMeetup
 
Self Sovereign Identity (SSI) Open standards with Drummond Reed
Self Sovereign Identity (SSI) Open standards with Drummond Reed Self Sovereign Identity (SSI) Open standards with Drummond Reed
Self Sovereign Identity (SSI) Open standards with Drummond Reed
SSIMeetup
 
What are Decentralized Identifiers (DIDs)?
What are Decentralized Identifiers (DIDs)?What are Decentralized Identifiers (DIDs)?
What are Decentralized Identifiers (DIDs)?
Evernym
 
Introduction to Self Sovereign Identity
Introduction to Self Sovereign IdentityIntroduction to Self Sovereign Identity
Introduction to Self Sovereign Identity
Heather Vescent
 
Decentralized Identifier (DIDs) fundamentals deep dive
Decentralized Identifier (DIDs) fundamentals deep diveDecentralized Identifier (DIDs) fundamentals deep dive
Decentralized Identifier (DIDs) fundamentals deep dive
SSIMeetup
 
Decentralized Identifiers
Decentralized IdentifiersDecentralized Identifiers
Decentralized Identifiers
Markus Sabadello
 
Digital Identity Wallets: What They Mean For Banks
Digital Identity Wallets: What They Mean For BanksDigital Identity Wallets: What They Mean For Banks
Digital Identity Wallets: What They Mean For Banks
Evernym
 
Verifiable Credentials in Self-Sovereign Identity (SSI)
Verifiable Credentials in Self-Sovereign Identity (SSI)Verifiable Credentials in Self-Sovereign Identity (SSI)
Verifiable Credentials in Self-Sovereign Identity (SSI)
Evernym
 
Jena based implementation of a iso 11179 meta data registry
Jena based implementation of a iso 11179 meta data registryJena based implementation of a iso 11179 meta data registry
Jena based implementation of a iso 11179 meta data registry
A. Anil Sinaci
 
Peer DIDs: a secure and scalable method for DIDs that’s entirely off-ledger –...
Peer DIDs: a secure and scalable method for DIDs that’s entirely off-ledger –...Peer DIDs: a secure and scalable method for DIDs that’s entirely off-ledger –...
Peer DIDs: a secure and scalable method for DIDs that’s entirely off-ledger –...
SSIMeetup
 
The Shift from Federated to Decentralized Identity
The Shift from Federated to Decentralized IdentityThe Shift from Federated to Decentralized Identity
The Shift from Federated to Decentralized Identity
Evernym
 
Introduction to Self Sovereign Identity - IIW October 2019
Introduction to Self Sovereign Identity - IIW October 2019Introduction to Self Sovereign Identity - IIW October 2019
Introduction to Self Sovereign Identity - IIW October 2019
Heather Vescent
 
Validide Corporation Pitch Deck 20210617
Validide Corporation Pitch Deck 20210617Validide Corporation Pitch Deck 20210617
Validide Corporation Pitch Deck 20210617
Lifelog Health
 
Blockchain, Self-Sovereign Identity and Credentials
Blockchain, Self-Sovereign Identity and CredentialsBlockchain, Self-Sovereign Identity and Credentials
Blockchain, Self-Sovereign Identity and Credentials
StrategyWorks
 
Identity & Access Governance
Identity & Access GovernanceIdentity & Access Governance
Identity & Access Governance
Horst Walther
 
DID Resolution: Given a DID how do I retrieve its document? – Markus Sabadello
DID Resolution: Given a DID how do I retrieve its document? – Markus SabadelloDID Resolution: Given a DID how do I retrieve its document? – Markus Sabadello
DID Resolution: Given a DID how do I retrieve its document? – Markus Sabadello
SSIMeetup
 
Verifiable Credentials 101 for SSI and Decentralized Digital Identity - Tyler...
Verifiable Credentials 101 for SSI and Decentralized Digital Identity - Tyler...Verifiable Credentials 101 for SSI and Decentralized Digital Identity - Tyler...
Verifiable Credentials 101 for SSI and Decentralized Digital Identity - Tyler...
SSIMeetup
 
Digital Credentials Enabling Mobility and Verification of Educational Achieve...
Digital Credentials Enabling Mobility and Verification of Educational Achieve...Digital Credentials Enabling Mobility and Verification of Educational Achieve...
Digital Credentials Enabling Mobility and Verification of Educational Achieve...
Brandon Muramatsu
 
OpenID Connect 4 SSI (DIFCon F2F)
OpenID Connect 4 SSI (DIFCon F2F)OpenID Connect 4 SSI (DIFCon F2F)
OpenID Connect 4 SSI (DIFCon F2F)
Torsten Lodderstedt
 
Hyperledger Indy Platform - Privacy, Security and Power for Digital Identity ...
Hyperledger Indy Platform - Privacy, Security and Power for Digital Identity ...Hyperledger Indy Platform - Privacy, Security and Power for Digital Identity ...
Hyperledger Indy Platform - Privacy, Security and Power for Digital Identity ...
Gokul Alex
 
What it means to be FAIR
What it means to be FAIRWhat it means to be FAIR
What it means to be FAIR
Sarah Jones
 
The future of FAIR
The future of FAIRThe future of FAIR
The future of FAIR
Sarah Jones
 
AASL Standards Framework
AASL Standards FrameworkAASL Standards Framework
AASL Standards Framework
Keith Valley Middle School
 
Decentralized Finance (DeFi) - Understanding Risks in an Emerging Financial P...
Decentralized Finance (DeFi) - Understanding Risks in an Emerging Financial P...Decentralized Finance (DeFi) - Understanding Risks in an Emerging Financial P...
Decentralized Finance (DeFi) - Understanding Risks in an Emerging Financial P...
Bernhard Haslhofer
 
Intro to RDM
Intro to RDMIntro to RDM
Intro to RDM
Sarah Jones
 
Privacy in the Smart City
Privacy in the Smart CityPrivacy in the Smart City
Privacy in the Smart City
David Wood
 
Introduction to DID Auth for SSI with Markus Sabadello
Introduction to DID Auth for SSI with Markus SabadelloIntroduction to DID Auth for SSI with Markus Sabadello
Introduction to DID Auth for SSI with Markus Sabadello
SSIMeetup
 

Contenu connexe

Tendances

Peer DIDs: a secure and scalable method for DIDs that’s entirely off-ledger –...
Peer DIDs: a secure and scalable method for DIDs that’s entirely off-ledger –...Peer DIDs: a secure and scalable method for DIDs that’s entirely off-ledger –...
Peer DIDs: a secure and scalable method for DIDs that’s entirely off-ledger –...
SSIMeetup
 
The Shift from Federated to Decentralized Identity
The Shift from Federated to Decentralized IdentityThe Shift from Federated to Decentralized Identity
The Shift from Federated to Decentralized Identity
Evernym
 
DID Resolution: Given a DID how do I retrieve its document? – Markus Sabadello
DID Resolution: Given a DID how do I retrieve its document? – Markus SabadelloDID Resolution: Given a DID how do I retrieve its document? – Markus Sabadello
DID Resolution: Given a DID how do I retrieve its document? – Markus Sabadello
SSIMeetup
 
Verifiable Credentials 101 for SSI and Decentralized Digital Identity - Tyler...
Verifiable Credentials 101 for SSI and Decentralized Digital Identity - Tyler...Verifiable Credentials 101 for SSI and Decentralized Digital Identity - Tyler...
Verifiable Credentials 101 for SSI and Decentralized Digital Identity - Tyler...
SSIMeetup
 

Tendances (20)

Decentralized Identifiers
Decentralized IdentifiersDecentralized Identifiers
Decentralized Identifiers
 
Digital Identity Wallets: What They Mean For Banks
Digital Identity Wallets: What They Mean For BanksDigital Identity Wallets: What They Mean For Banks
Digital Identity Wallets: What They Mean For Banks
 
Verifiable Credentials in Self-Sovereign Identity (SSI)
Verifiable Credentials in Self-Sovereign Identity (SSI)Verifiable Credentials in Self-Sovereign Identity (SSI)
Verifiable Credentials in Self-Sovereign Identity (SSI)
 
Jena based implementation of a iso 11179 meta data registry
Jena based implementation of a iso 11179 meta data registryJena based implementation of a iso 11179 meta data registry
Jena based implementation of a iso 11179 meta data registry
 
Peer DIDs: a secure and scalable method for DIDs that’s entirely off-ledger –...
Peer DIDs: a secure and scalable method for DIDs that’s entirely off-ledger –...Peer DIDs: a secure and scalable method for DIDs that’s entirely off-ledger –...
Peer DIDs: a secure and scalable method for DIDs that’s entirely off-ledger –...
 
The Shift from Federated to Decentralized Identity
The Shift from Federated to Decentralized IdentityThe Shift from Federated to Decentralized Identity
The Shift from Federated to Decentralized Identity
 
Introduction to Self Sovereign Identity - IIW October 2019
Introduction to Self Sovereign Identity - IIW October 2019Introduction to Self Sovereign Identity - IIW October 2019
Introduction to Self Sovereign Identity - IIW October 2019
 
Validide Corporation Pitch Deck 20210617
Validide Corporation Pitch Deck 20210617Validide Corporation Pitch Deck 20210617
Validide Corporation Pitch Deck 20210617
 
Blockchain, Self-Sovereign Identity and Credentials
Blockchain, Self-Sovereign Identity and CredentialsBlockchain, Self-Sovereign Identity and Credentials
Blockchain, Self-Sovereign Identity and Credentials
 
Identity & Access Governance
Identity & Access GovernanceIdentity & Access Governance
Identity & Access Governance
 
DID Resolution: Given a DID how do I retrieve its document? – Markus Sabadello
DID Resolution: Given a DID how do I retrieve its document? – Markus SabadelloDID Resolution: Given a DID how do I retrieve its document? – Markus Sabadello
DID Resolution: Given a DID how do I retrieve its document? – Markus Sabadello
 
Verifiable Credentials 101 for SSI and Decentralized Digital Identity - Tyler...
Verifiable Credentials 101 for SSI and Decentralized Digital Identity - Tyler...Verifiable Credentials 101 for SSI and Decentralized Digital Identity - Tyler...
Verifiable Credentials 101 for SSI and Decentralized Digital Identity - Tyler...
 
Digital Credentials Enabling Mobility and Verification of Educational Achieve...
Digital Credentials Enabling Mobility and Verification of Educational Achieve...Digital Credentials Enabling Mobility and Verification of Educational Achieve...
Digital Credentials Enabling Mobility and Verification of Educational Achieve...
 
OpenID Connect 4 SSI (DIFCon F2F)
OpenID Connect 4 SSI (DIFCon F2F)OpenID Connect 4 SSI (DIFCon F2F)
OpenID Connect 4 SSI (DIFCon F2F)
 
Hyperledger Indy Platform - Privacy, Security and Power for Digital Identity ...
Hyperledger Indy Platform - Privacy, Security and Power for Digital Identity ...Hyperledger Indy Platform - Privacy, Security and Power for Digital Identity ...
Hyperledger Indy Platform - Privacy, Security and Power for Digital Identity ...
 
What it means to be FAIR
What it means to be FAIRWhat it means to be FAIR
What it means to be FAIR
 
The future of FAIR
The future of FAIRThe future of FAIR
The future of FAIR
 
AASL Standards Framework
AASL Standards FrameworkAASL Standards Framework
AASL Standards Framework
 
Decentralized Finance (DeFi) - Understanding Risks in an Emerging Financial P...
Decentralized Finance (DeFi) - Understanding Risks in an Emerging Financial P...Decentralized Finance (DeFi) - Understanding Risks in an Emerging Financial P...
Decentralized Finance (DeFi) - Understanding Risks in an Emerging Financial P...
 
Intro to RDM
Intro to RDMIntro to RDM
Intro to RDM
 

Similaire à Masterclass on the DID Universal Resolver

Introduction to DID Auth for SSI with Markus Sabadello
Introduction to DID Auth for SSI with Markus SabadelloIntroduction to DID Auth for SSI with Markus Sabadello
Introduction to DID Auth for SSI with Markus Sabadello
SSIMeetup
 
DevDay: Extending CorDapps with Self-Sovereign Identity: Technology Deepdive ...
DevDay: Extending CorDapps with Self-Sovereign Identity: Technology Deepdive ...DevDay: Extending CorDapps with Self-Sovereign Identity: Technology Deepdive ...
DevDay: Extending CorDapps with Self-Sovereign Identity: Technology Deepdive ...
R3
 
Schema Definitions and Overlays for Self-Sovereign Identity (SSI) - Paul Knowles
Schema Definitions and Overlays for Self-Sovereign Identity (SSI) - Paul KnowlesSchema Definitions and Overlays for Self-Sovereign Identity (SSI) - Paul Knowles
Schema Definitions and Overlays for Self-Sovereign Identity (SSI) - Paul Knowles
SSIMeetup
 

Similaire à Masterclass on the DID Universal Resolver (20)

Privacy in the Smart City
Privacy in the Smart CityPrivacy in the Smart City
Privacy in the Smart City
 
Introduction to DID Auth for SSI with Markus Sabadello
Introduction to DID Auth for SSI with Markus SabadelloIntroduction to DID Auth for SSI with Markus Sabadello
Introduction to DID Auth for SSI with Markus Sabadello
 
DevDay: Extending CorDapps with Self-Sovereign Identity: Technology Deepdive ...
DevDay: Extending CorDapps with Self-Sovereign Identity: Technology Deepdive ...DevDay: Extending CorDapps with Self-Sovereign Identity: Technology Deepdive ...
DevDay: Extending CorDapps with Self-Sovereign Identity: Technology Deepdive ...
 
Cordacon 2018 - Cordentity - Hyperledger Indy + Corda
Cordacon 2018 - Cordentity - Hyperledger Indy + CordaCordacon 2018 - Cordentity - Hyperledger Indy + Corda
Cordacon 2018 - Cordentity - Hyperledger Indy + Corda
 
Returning to Online Privacy - W3C/ANU Future of the Web Roadshow 20190221
Returning to Online Privacy - W3C/ANU Future of the Web Roadshow 20190221Returning to Online Privacy - W3C/ANU Future of the Web Roadshow 20190221
Returning to Online Privacy - W3C/ANU Future of the Web Roadshow 20190221
 
Decentralisation and knowledge graphs
Decentralisation and knowledge graphs Decentralisation and knowledge graphs
Decentralisation and knowledge graphs
 
Decentralised identifiers for CLARIAH infrastructure
Decentralised identifiers for CLARIAH infrastructure Decentralised identifiers for CLARIAH infrastructure
Decentralised identifiers for CLARIAH infrastructure
 
Codemash-2017
Codemash-2017Codemash-2017
Codemash-2017
 
My Little Data in a Big Data World
My Little Data in a Big Data WorldMy Little Data in a Big Data World
My Little Data in a Big Data World
 
Towards Interoperability between W3C Web of Things and NGSI-LD
Towards Interoperability between W3C Web of Things and NGSI-LDTowards Interoperability between W3C Web of Things and NGSI-LD
Towards Interoperability between W3C Web of Things and NGSI-LD
 
Identity and the quest for Self-Sovereign Identity - Daniel Hardman
Identity and the quest for Self-Sovereign Identity - Daniel HardmanIdentity and the quest for Self-Sovereign Identity - Daniel Hardman
Identity and the quest for Self-Sovereign Identity - Daniel Hardman
 
OpenID 4 Verifiable Credentials + HAIP (Update)
OpenID 4 Verifiable Credentials + HAIP (Update)OpenID 4 Verifiable Credentials + HAIP (Update)
OpenID 4 Verifiable Credentials + HAIP (Update)
 
Technologies for Self-Sovereign Identity
Technologies for Self-Sovereign IdentityTechnologies for Self-Sovereign Identity
Technologies for Self-Sovereign Identity
 
SWXG 2010.6.9 v2
SWXG 2010.6.9 v2SWXG 2010.6.9 v2
SWXG 2010.6.9 v2
 
Schema Definitions and Overlays for Self-Sovereign Identity (SSI) - Paul Knowles
Schema Definitions and Overlays for Self-Sovereign Identity (SSI) - Paul KnowlesSchema Definitions and Overlays for Self-Sovereign Identity (SSI) - Paul Knowles
Schema Definitions and Overlays for Self-Sovereign Identity (SSI) - Paul Knowles
 
Digital Identity Landscape for Vancouver IAM Meetup 2017 12-19
Digital Identity Landscape for Vancouver IAM Meetup 2017 12-19Digital Identity Landscape for Vancouver IAM Meetup 2017 12-19
Digital Identity Landscape for Vancouver IAM Meetup 2017 12-19
 
OIDC federation talk at Internet2 TechEx 2018
OIDC federation talk at Internet2 TechEx 2018OIDC federation talk at Internet2 TechEx 2018
OIDC federation talk at Internet2 TechEx 2018
 
Introduction to Self-Sovereign Identity
Introduction to Self-Sovereign IdentityIntroduction to Self-Sovereign Identity
Introduction to Self-Sovereign Identity
 
OpenID for SSI
OpenID for SSIOpenID for SSI
OpenID for SSI
 
Openid Drupalcon 2008
Openid Drupalcon 2008Openid Drupalcon 2008
Openid Drupalcon 2008
 

Plus de Markus Sabadello

Higgins Overview 2008 [Compatibility Mode]
Higgins Overview 2008 [Compatibility Mode]Higgins Overview 2008 [Compatibility Mode]
Higgins Overview 2008 [Compatibility Mode]
Markus Sabadello
 

Plus de Markus Sabadello (7)

FreedomBox
FreedomBoxFreedomBox
FreedomBox
 
Higgins ESE
Higgins ESEHiggins ESE
Higgins ESE
 
Higgins
HigginsHiggins
Higgins
 
Higgins
HigginsHiggins
Higgins
 
Higgins Overview 2008 [Compatibility Mode]
Higgins Overview 2008 [Compatibility Mode]Higgins Overview 2008 [Compatibility Mode]
Higgins Overview 2008 [Compatibility Mode]
 
Higgins
HigginsHiggins
Higgins
 
Higgins
HigginsHiggins
Higgins
 

Dernier

Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Victor Rentea
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@
 
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Orbitshub
 

Dernier (20)

EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWEREMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
 
Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)
 
Corporate and higher education May webinar.pptx
Corporate and higher education May webinar.pptxCorporate and higher education May webinar.pptx
Corporate and higher education May webinar.pptx
 
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
 
Platformless Horizons for Digital Adaptability
Platformless Horizons for Digital AdaptabilityPlatformless Horizons for Digital Adaptability
Platformless Horizons for Digital Adaptability
 
Spring Boot vs Quarkus the ultimate battle - DevoxxUK
Spring Boot vs Quarkus the ultimate battle - DevoxxUKSpring Boot vs Quarkus the ultimate battle - DevoxxUK
Spring Boot vs Quarkus the ultimate battle - DevoxxUK
 
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
 
Introduction to use of FHIR Documents in ABDM
Introduction to use of FHIR Documents in ABDMIntroduction to use of FHIR Documents in ABDM
Introduction to use of FHIR Documents in ABDM
 
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot ModelMcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
 
Artificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyArtificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : Uncertainty
 
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
 
MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
WSO2's API Vision: Unifying Control, Empowering Developers
WSO2's API Vision: Unifying Control, Empowering DevelopersWSO2's API Vision: Unifying Control, Empowering Developers
WSO2's API Vision: Unifying Control, Empowering Developers
 
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
 
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
 

Masterclass on the DID Universal Resolver

  • 1. Masterclass on the DID Universal Resolver Markus Sabadello Danube Tech, Decentralized Identity Foundation, Sovrin Foundation, W3C VCWG, W3C CCG, OASIS XDI TC https://danubetech.com/ Identiverse, Boston, 27th June 2018
  • 2. Masterclass on the DID Universal Resolver 1. Decentralized Identifiers (DIDs) 2. DID Universal Resolver 3. What to do with DIDs?
  • 3. Decentralized Identifiers (DIDs)  Motivation:  Emerging paradigm of “self-sovereign identity” (SSI).  Digital identity that does not depend on central authorities or intermediaries.  Digital identity, relationships, data sharing, messaging, etc. requires identifiers.  Today’s identifiers are not “self-sovereign” (they can be taken away from you).  DIDs are:  “Self-sovereign” identifiers for individuals, organizations, things.  Persistent, decentralized, dereference-able, cryptographically verifiable.  Registered using wallets and blockchains, or other decentralized architectures.  DIDs are not:  DNS-based identifiers.  A standard or broadly adopted (yet).  Human-memorable (like usernames or e-mail addresses).
  • 4. Decentralized Identifiers (DIDs)  Background:  W3C Web Payments Working Group and Verifiable Claims Task Force  OASIS XDI TC Registry Working Group  Internet Identity Workshop, Rebooting-the-Web-of-Trust  Grant by U.S. Department of Homeland Security  Decentralized Public Key Infrastructure DPKI (December 2015)  Decentralized Identifiers 1.0 Implementer’s Draft 01 (November 2016)  More Community Drafts (2017-2018)  W3C Working Group (2019)
  • 5. Decentralized Identifiers (DIDs)  Example DID:  Registered in a blockchain or other decentralized network, without intermediary.  Generation and control over DID lies with identity owner (e.g. through private keys in a wallet).  Ledger-agnostic.
  • 6. DID Resolution  DID Resolution: DID → DID Document  Set of public keys  Set of service endpoints  Timestamps, proofs  Other identifier metadata  May be dynamically constructed rather than actually stored in this form.  Resolution parameters can select parts of the DID document. { "@context": "https://w3id.org/did/v1", "id": "did:sov:WRfXPg8dantKVubE3HX8pw", "service": { "type": "hub", "serviceEndpoint": "https://azure.microsoft.com/dif/hub/did:sov:WRfXPg8dantKVubE3H" }, "publicKey": [ { "id": "did:sov:WRfXPg8dantKVubE3HX8pw#key-1", "type": "Ed25519VerificationKey2018", "publicKeyBase58": "H3C2AVvLMv6gmMNam3uVAjZpfkcJCwDmqPV" } ], "authentication": { "type": "Ed25519SignatureAuthentication2018", "publicKey": [ "did:sov:WRfXPg8dantKVubE3HX8pw#key-1" ] } }  Example DID Document:
  • 7. DID Methods  Different DID “methods”:  did:sov, did:btcr, did:v1, did:uport, …  Different methods have different strengths  Define method-specific syntax  Define CRUD for DIDs:  Create, Read (Resolve), Update, Delete (Revoke)  All methods need:  A DID method specification (W3C)  An implementation of a “resolver” Method DID Prefix Sovrin did:sov: Veres One did:v1: uPort did:uport: Bitcoin did:btcr: Blockstack did:stack: ERC725 did:erc725: IPFS did:ipid:
  • 8. Masterclass on the DID Universal Resolver 1. Decentralized Identifiers (DIDs) 2. DID Universal Resolver 3. What to do with DIDs?
  • 9. DID Universal Resolver  Looks up (“resolves”) DID to its DID Document.  Provides a universal API that works with all DID methods.  Uses a set of configurable “drivers” that know how to connect to the target system.  Can return metadata about the resolution process.  https://uniresolver.io/
  • 10. DID Universal Resolver  Open Source maintained by Decentralized Identity Foundation.  Can be built and deployed using Docker containers.  Can be deployed and used in different ways:  as a hosted service.  from a command line.  integrated in client applications.  Community maintains “drivers”.  https://uniresolver.io/
  • 11. DID Universal Resolver  Demo + Discussion  https://uniresolver.io/
  • 12. Masterclass on the DID Universal Resolver 1. Decentralized Identifiers (DIDs) 2. DID Universal Resolver 3. What to do with DIDs?
  • 13. Verifiable Credentials  Example: { "@context": "https://w3id.org/credentials/v1", "id": "did:sov:WRfXPg8dantKVubE3HX8pw/credentials/1", "type": ["Credential", "NameCredential"], "issuer": "did:sov:WRfXPg8dantKVubE3HX8pw", "issued": "2018-05-01", "claim": { "id": "did:btcr:x6lj-wzvr-qqrv-m80w", "name": "Jane Doe" }, "proof": { "type": "RsaSignature2018", "created": "2017-06-18T21:19:10Z", "creator": "did:sov:WRfXPg8dantKVubE3HX8pw#key-1", "nonce": "c0ae1c8e-c7e7-469f-b252-86e6a0e7387e", "signatureValue": "BavEll0/I1zpYw8XNi1bgVg/sCneO4Jugez8RwDg/+ MCRVpjOboDoe4SxxKjkCOvKiCHGDvc4krqi6Z1n0UfqzxGfmatCuFibcC1wps PRdW+gGsutPTLzvueMWmFhwYmfIFpbBu95t501+rSLHIEuujM/+PXr9Cky6Ed +W3JT24=" } }
  • 14. DID Auth  DID-based authentication protocol.  Identity owner interacts with a relying party.  Prove control over a DID using a cryptographic challenge/response protocol.  Uses “publicKey” and “authentication” blocks in a DID document.  Different architectures and scenarios.  See RWoT did_auth_draft.md
  • 15. Agents, Hubs, Personal Data Stores, etc. Identity Owner Layer Edge/App Layer Cloud/Agent Layer Blockchain/DLT Layer Things Companies, Public Institutions Individuals DIDs DIDs
  • 16. Other Topics  Decentralized Key Management System: DKMS  Encryption protocols: DID-TLS, DID-PGP, DID-SSH  Human-readable names: DID Names, ENS, BNS, e.g. “markus.id”  Off-ledger DIDs: stored only on peer-to-peer microledgers; GDPR compliance  Pairwise-pseudonymous DIDs: support “directed identity”; avoid correlation  Integration of DIDs with OAuth 2, OpenID Connect, FIDO WebAuthn, UMA  Integration of DIDs with HTTP URIs, Semantic Web, Linked Data Platform, ActivityPub, WebID, Solid, XDI  Other DID tools: Universal Registrar, did-client CLI
  • 17. Rebooting-the-Web-of-Trust Internet Identity Workshop DIDs: W3C Credentials CG v0.10 Draft Community Report DIDs: W3C DID WG Charter now being written Yadis, XRI, XRD, XRDS, JRD, Webfinger DID registered prov. URI scheme DID method specs W3C Web Payments CG OASIS XDI TC W3C JSON-LD 1.1 W3C Cryptographic Suites RFC 7517: JWK Verifiable Credentials DKMS, DID Auth Hubs, Agents, XDI
  • 18. Thank You  https://danubetech.com/  markus@danubetech.com  Decentralized Identity Foundation: https://identity.foundation/  Universal Resolver: https://uniresolver.io/