Self-sovereign id is an idea that refers to using distributed databases to handle PII.
The notion of self-sovereign id (SSI) is core to the thought of decentralized id. As a substitute of getting a set of identities throughout a number of platforms or a single id managed by a 3rd social gathering, SII customers have digital wallets during which numerous credentials are saved and accessible by dependable purposes.
Consultants distinguish three foremost parts often known as the three pillars of SSI: blockchain, verifiable credentials (VCs) and decentralized identifiers (DIDs).
Blockchain is a decentralized digital database, a ledger of transactions duplicated and distributed amongst community computer systems that file info in a manner that makes it troublesome or unattainable to vary, hack or cheat.
Second, there are VCs known as tamper-proof cryptographically-secured and verified credentials that implement SSI and defend customers’ information. They’ll characterize info present in paper credentials, similar to a passport or license and digital credentials with no bodily equal, similar to, as an example, possession of a checking account.
And final however not least, SSI consists of DIDs, a brand new kind of identifier that allows customers to have a cryptographically verifiable, decentralized digital id. A DID refers to any topic like an individual, group, information mannequin, summary entity, et cetera, as decided by the controller of the DID. They’re created by the consumer, owned by the consumer and impartial of any group. Designed to be decoupled from centralized registries, id suppliers and certificates authorities, DIDs allow customers to show management over their digital id with out requiring permission from any third social gathering.
Alongside SII, which is rooted in blockchain, DIDs and VCs, decentralized id structure additionally embraces 4 extra parts. They’re a holder who creates a DID and receives the verifiable credential, an issuer that indicators a verifiable credential with their personal key and points it to the holder, and a verifier that checks the credentials and might learn the issuer’s public DID on the blockchain. Furthermore, a decentralized id structure encompasses particular decentralized id wallets that gas the entire system.
How decentralized id works
The idea for decentralized id administration is using decentralized encrypted blockchain-based wallets.
In a decentralized id framework, customers make the most of decentralized id wallets — particular apps that enable them to create their decentralized identifiers, retailer their PII and handle their VCs —as a substitute of maintaining id info on quite a few web sites managed by intermediaries.
Apart from distributed structure, these decentralized identity wallets are encrypted. Passwords to entry them are changed by non-phishable cryptographic keys that don’t characterize a single weak point within the case of a breach. A decentralized pockets generates a pair of cryptographic keys: private and non-private. The general public key distinguishes a concrete pockets, whereas the personal one, which is saved within the pockets, is required throughout the authentication course of.
Whereas decentralized id wallets transparently authenticate customers, additionally they defend customers’ communications and information. Decentralized apps (DApps) retailer PII, verified id particulars and the knowledge wanted to determine belief, show eligibility or simply full a transaction. These wallets assist customers give and revoke entry to id info from a single supply, making it quicker and simpler.
On high of that, this info within the pockets is signed by a number of trusted events to show its accuracy. For instance, digital identities can get approval from issuers similar to universities, employers, or authorities buildings. Utilizing a decentralized id pockets, customers can current proof of their id to any third social gathering.