Self-sovereign identification is an idea that refers to using distributed databases to handle PII.
The notion of self-sovereign identification (SSI) is core to the thought of decentralized identification. As a substitute of getting a set of identities throughout a number of platforms or a single identification managed by a 3rd celebration, SII customers have digital wallets through which varied credentials are saved and accessible by means of dependable purposes.
Consultants distinguish three important elements generally known as the three pillars of SSI: blockchain, verifiable credentials (VCs) and decentralized identifiers (DIDs).
Blockchain is a decentralized digital database, a ledger of transactions duplicated and distributed amongst community computer systems that report data in a means that makes it troublesome or unimaginable to alter, hack or cheat.
Second, there are VCs known as tamper-proof cryptographically-secured and verified credentials that implement SSI and defend customers’ knowledge. They’ll signify data present in paper credentials, reminiscent of a passport or license and digital credentials with no bodily equal, reminiscent of, as an example, possession of a checking account.
And final however not least, SSI contains DIDs, a brand new kind of identifier that allows customers to have a cryptographically verifiable, decentralized digital identification. A DID refers to any topic like an individual, group, knowledge mannequin, summary entity, et cetera, as decided by the controller of the DID. They’re created by the person, owned by the person and impartial of any group. Designed to be decoupled from centralized registries, identification suppliers and certificates authorities, DIDs allow customers to show management over their digital identification with out requiring permission from any third celebration.
Alongside SII, which is rooted in blockchain, DIDs and VCs, decentralized identification structure additionally embraces 4 extra parts. They’re a holder who creates a DID and receives the verifiable credential, an issuer that indicators a verifiable credential with their non-public key and points it to the holder, and a verifier that checks the credentials and might learn the issuer’s public DID on the blockchain. Furthermore, a decentralized identification structure encompasses particular decentralized identification wallets that gasoline the entire system.
How decentralized identification works
The idea for decentralized identification administration is using decentralized encrypted blockchain-based wallets.
In a decentralized identification framework, customers make the most of decentralized identification wallets — particular apps that enable them to create their decentralized identifiers, retailer their PII and handle their VCs —as an alternative of retaining identification data on quite a few web sites managed by intermediaries.
Apart from distributed structure, these decentralized identification wallets are encrypted. Passwords to entry them are changed by non-phishable cryptographic keys that don’t signify a single weak spot within the case of a breach. A decentralized pockets generates a pair of cryptographic keys: private and non-private. The general public key distinguishes a concrete pockets, whereas the non-public one, which is saved within the pockets, is required in the course of the authentication course of.
Whereas decentralized identification wallets transparently authenticate customers, in addition they defend customers’ communications and knowledge. Decentralized apps (DApps) retailer PII, verified identification particulars and the data wanted to determine belief, show eligibility or simply full a transaction. These wallets assist customers give and revoke entry to identification data from a single supply, making it sooner and simpler.
On high of that, this data within the pockets is signed by a number of trusted events to show its accuracy. For instance, digital identities can get approval from issuers reminiscent of universities, employers, or authorities constructions. Utilizing a decentralized identification pockets, customers can current proof of their identification to any third celebration.