WebID Comparison

From MgmtWiki
Revision as of 20:02, 22 September 2020 by Tom (talk | contribs) (DIF Web ID)

Jump to: navigation, search

Full Title

Comparison between various proposals for Web ID.


Several proposals existing starting from Tim Berners-Lee in 2020-03-05 to rescent version from the browser folk and the decerntalized ID folk, all in the W3.

WebID 1.0

  • The first proposal from Sambra, Story and Berners-Lee sought to deal with a distributed Social Web.
  • A WebID is an HTTP URI which refers to an Agent (Person, Organization, Group, Device, etc.). A description of the WebID can be found in the Profile Document.
  • A WebID Profile Document is a Web resource that MUST be available as text/turtle [link broken], but MAY be available in other RDF formats.
  • WebIDs can be used to build a Web of trust using vocabularies such as FOAF [FOAF] by allowing people to link together their profiles in a public or protected manner.
  • URI fragments (#me) support sub sets or offshoots of the profile doc which is available at the base URI.
  • Supported several authentication schemes like WebID-OIDC Authentication Spec for decentralized systems.


  • Basically correspondent is given by a DID which is recovered from a public ledgier system.
  • Well Known DID Configuration is a DIF working group document that describes the following well-known endpoints. These all are directed at sites that DID enabled rather than at sites that have multiple sources of Authentication. There appears to be no plan to enable discovery of a DID method from a general purpose app like a web browser.
    • Well Known DID Configuration https://example.com/.well-known/did-configuration.json. returns a valid JSON object containing Domain Linkage Credentials, which contain cryptographically verifiable claims that prove the same entity controls both the included DIDs and the origin the resource is located under.
    • Other endpoint assume Linked-data, also know as json-ld which is currently under debate in the committee as other standards are focused on straight json, which would make interlop with existing systems very difficult.


Trust Token

  • The Trust Token explainer from the blink (browser engine) team.
  • a new API for propagating a notion of user authenticity across sites, without using cross-site persistent identifiers like third party cookies. Trust Token is built on Privacy Pass for anonymous tokens that can't be tracked between issuance and redemption.