Self-Sovereign Identity
From MgmtWiki
Contents
Full Title or Meme
Giving users control and ownership of their own Identifiers.
Context
Chris Allen described SSI in these terms.[1]
We use the terminology of SSI, as the concept of individuals or organizations having sole ownership of their digital and analog identities, and control over how their personal data is shared and used. This adds a layer of security and flexibility allowing the identity holder to only reveal the necessary data for any given transaction or interaction. Since identity is such a central part of society, we need to ensure that user control will be the primary foundation SSI will be built upon.
Problem
- If the user is in charge of the device that asserts their identity, it still requires some other trusted entity to make an assertion about the level of Assurance that can be placed in the identifier.
Solutions
Efforts are underway to address the two ideas described by Chris Allen above:
Sharing is controlled by splitting user Identifiers and Attributes into separate chunks, each chunk holding several Claims.
How User Information is Used
It's much harder to control how User Information is used once it has been shared. The best effort underway in early 2019 was the Kartana Initiative Consent Receipt.[2] This document describes a format for a document submitted by a Web Site to a Subject after completion of a negotiation on what User Information can be shared and for what purposes.
References
- ↑ Christopher Allen, Introduction to Self-Sovereign Identity and Its 10 Guiding Principles. (2019-01-09) Medium https://medium.com/metadium/introduction-to-self-sovereign-identity-and-its-10-guiding-principles-97c1ba603872
- ↑ Kantara Initiative, Consent Receipt Specification. (2018-02-20) https://kantarainitiative.org/file-downloads/consent-receipt-specification-v1-1-0/
Additional Material
- See this wiki page on Self-issued OpenID Provider
