Self-Sovereign Identity_ Decentralized digital identity and verifiable credentials.pdf
- 文档编号:11592528
- 上传时间:2023-06-01
- 格式:PDF
- 页数:506
- 大小:20.94MB
Self-Sovereign Identity_ Decentralized digital identity and verifiable credentials.pdf
《Self-Sovereign Identity_ Decentralized digital identity and verifiable credentials.pdf》由会员分享,可在线阅读,更多相关《Self-Sovereign Identity_ Decentralized digital identity and verifiable credentials.pdf(506页珍藏版)》请在冰点文库上搜索。
MANNINGAlexPreukschatDrummondReedwithChristopherAllen,FabianVogelsteller,and52otherleadingidentityexpertsForewordbyDocSearlsDecentralizeddigitalidentityandverifiablecredentials302TheprimaryrolesinvolvedwithexchangeofverifiablecredentialsVerifierHolderIssuerSignscredentialVerifiessignatureWalletPresentspresentationRequestspresentationIssuescredentialDecentralizedidentifiers(DIDs)Verifiabledataregistry(e.g.,blockchain)RequestscredentialSelf-SovereignIdentityiiSelf-SovereignIdentityDECENTRALIZEDDIGITALIDENTITYANDVERIFIABLECREDENTIALSALEXPREUKSCHATDRUMMONDREEDForewordbyDOCSEARLSMANNINGSHELTERISLANDForonlineinformationandorderingofthisandotherManningbooks,please.Thepublisheroffersdiscountsonthisbookwhenorderedinquantity.Formoreinformation,pleasecontactSpecialSalesDepartmentManningPublicationsCo.20BaldwinRoadPOBox761ShelterIsland,NY11964Email:
2021byManningPublicationsCo.Allrightsreserved.Nopartofthispublicationmaybereproduced,storedinaretrievalsystem,ortransmitted,inanyformorbymeanselectronic,mechanical,photocopying,orotherwise,withoutpriorwrittenpermissionofthepublisher.Manyofthedesignationsusedbymanufacturersandsellerstodistinguishtheirproductsareclaimedastrademarks.Wherethosedesignationsappearinthebook,andManningPublicationswasawareofatrademarkclaim,thedesignationshavebeenprintedininitialcapsorallcaps.Recognizingtheimportanceofpreservingwhathasbeenwritten,itisManningspolicytohavethebookswepublishprintedonacid-freepaper,andweexertourbesteffortstothatend.Recognizingalsoourresponsibilitytoconservetheresourcesofourplanet,Manningbooksareprintedonpaperthatisatleast15percentrecycledandprocessedwithouttheuseofelementalchlorine.ManningPublicationsCo.Developmenteditor:
ToniArritola20BaldwinRoadTechnicaldevelopmenteditor:
AlainCouniotPOBox761Revieweditor:
AleksDragosavljevicShelterIsland,NY11964Productioneditor:
LoriWeidertCopyeditor:
TiffanyTaylorProofreader:
JasonEverettTypesetter:
MarijaTudorCoverdesigner:
MarijaTudorISBN9781617296598PrintedintheUnitedStatesofAmericaThankstomyfamily,whohavealwaysbeenpatientwithmeasIexplorenewprojectsandpaths,asinwritingthisbook.Thankstotheidentityandblockchaincommunitythathelpedmediscoverandlearnaboutmanyaspectsofmytrueselfandwheretheworldmightbegoingwithdecentralizedtechnologies.A.P.Totheloveofmylife,whohasbeenwaiting33yearssinceweweremarriedand22yearssinceIwentdownthedigitalidentityrabbitholejusttoseetheonesimplethingIpromisedhergettingridofthose&%$#passwords!
Tomytwosons:
thisisapathtoabetterworldthatIvebeenbeatingsinceyouwereborn.Ihopeyoubothareabletotroduponitallofyourdaysandthedaysofyourchildrenschildrenschildren.D.R.viviibriefcontentsPART1ANINTRODUCTIONTOSSI.11WhytheinternetismissinganidentitylayerandwhySSIcanfinallyprovideone32ThebasicbuildingblocksofSSI213ExamplescenariosshowinghowSSIworks394SSIScorecard:
MajorfeaturesandbenefitsofSSI58PART2SSITECHNOLOGY.855SSIarchitecture:
Thebigpicture876BasiccryptographytechniquesforSSI1117Verifiablecredentials1268Decentralizedidentifiers1579Digitalwalletsanddigitalagents18910Decentralizedkeymanagement22011SSIgovernanceframeworks248PART3DECENTRALIZATIONASAMODELFORLIFE.27512Howopensourcesoftwarehelpsyoucontrolyourself-sovereignidentity27713Cypherpunks:
Theoriginofdecentralization28714Decentralizedidentityforapeacefulsociety293viii15Beliefsystemsasdriversfortechnologychoicesindecentralization30016TheoriginsoftheSSIcommunity31017Identityismoney323PART4HOWSSIWILLCHANGEYOURBUSINESS.33118ExplainingthevalueofSSItobusiness33319TheInternetofThingsopportunity34720Animalcareandguardianshipjustbecamecrystalclear35621Opendemocracy,voting,andSSI36522HealthcaresupplychainpoweredbySSI37423Canada:
Enablingself-sovereignidentity38324FromeIDAStoSSIintheEuropeanUnion394ixcontentsforewordxxiprefacexxiiiacknowledgmentsxxviiaboutthisbookxxixabouttheauthorsxxxivaboutthecoverillustrationxxxviPART1ANINTRODUCTIONTOSSI.11WhytheinternetismissinganidentitylayerandwhySSIcanfinallyprovideone3ALEXPREUKSCHATANDDRUMMONDREED1.1Howbadhastheproblembecome?
51.2Enterblockchaintechnologyanddecentralization51.3Thethreemodelsofdigitalidentity6Thecentralizedidentitymodel7Thefederatedidentitymodel8Thedecentralizedidentitymodel91.4Why“self-sovereign”?
101.5WhyisSSIsoimportant?
121.6MarketdriversforSSI13E-commerce14Bankingandfinance15Healthcare15Travel16CONTENTSx1.7MajorchallengestoSSIadoption17BuildingoutthenewSSIecosystem17Decentralizedkeymanagement18Offlineaccess18References192ThebasicbuildingblocksofSSI21DRUMMONDREED,RIEKSJOOSTEN,ANDOSKARVANDEVENTER2.1Verifiablecredentials222.2Issuers,holders,andverifiers242.3Digitalwallets262.4Digitalagents292.5Decentralizedidentifiers(DIDs)302.6Blockchainsandotherverifiabledataregistries332.7Governanceframeworks342.8Summarizingthebuildingblocks36References383ExamplescenariosshowinghowSSIworks39DRUMMONDREED,ALEXPREUKSCHAT,ANDDANIELHARDMAN3.1AsimplenotationforSSIscenariodiagrams403.2Scenario1:
BobmeetsAliceataconference413.3Scenario2:
BobmeetsAlicethroughheronlineblog463.4Scenario3:
BoblogsintoAlicesblogtoleaveacomment483.5Scenario4:
BobmeetsAlicethroughanonlinedatingsite493.6Scenario5:
Aliceappliesforanewbankaccount513.7Scenario6:
Alicebuysacar523.8Scenario7:
AlicesellsthecartoBob543.9Scenariosummary56Reference574SSIScorecard:
MajorfeaturesandbenefitsofSSI58DRUMMONDREEDANDALEXPREUKSCHAT4.1Feature/benefitcategory1:
Bottomline60Fraudreduction60Reducedcustomeronboardingcosts60Improvede-commercesales61Reducedcustomerservicecosts61Newcredentialissuerrevenue624.2Feature/benefitcategory2:
Businessefficiencies62Auto-authentication63Auto-authorization63Workflowautomation65Delegationandguardianship66Paymentandvalueexchange67CONTENTSxi4.3Feature/benefitcategory3:
Userexperienceandconvenience68Auto-authentication68Auto-authorization68Workflowautomation69Delegationandguardianship70Paymentandvalueexchange714.4Feature/benefitcategory4:
Relationshipmanagement72Mutualauthentication72Permanentconnections73Premiumprivatechannels74Reputationmanagement75Loyaltyandrewardsprograms764.5Feature/benefitcategory5:
Regulatorycompliance77Datasecurity77Dataprivacy78Dataprotection79Dataportability80RegTech(RegulationTechnology)81References82PART2SSITECHNOLOGY.855SSIarchitecture:
Thebigpicture87DANIELHARDMAN5.1TheSSIstack885.2Layer1:
Identifiersandpublickeys88BlockchainsasDIDregistries89Adaptinggeneral-purposepublicblockchainsforSSI90Special-purposeblockchainsdesignedforSSI91ConventionaldatabasesasDIDregistries92Peer-to-peerprotocolsasDIDregistries935.3Layer2:
Securecommunicationandinterfaces94Protocoldesignoptions94Web-basedprotocoldesignusingTLS95Message-basedprotocoldesignusingDIDComm95Interfacedesignoptions97API-orientedinterfacedesignusingwalletDapps97Data-orientedinterfacedesignusingidentityhubs(encrypteddatavaults)98Message-orientedinterfacedesignusingagents995.4Layer3:
Credentials101JSONWebToken(JWT)format102Blockcertsformat103W3Cverifiablecredentialformats104Credentialexchangeprotocols1065.5Layer4:
Governanceframeworks1075.6Potentialforconvergence109References109CONTENTSxii6BasiccryptographytechniquesforSSI111BRENTZUNDELANDSAJIDAZOUARHI6.1Hashfunctions112Typesofhashfunctions113UsinghashfunctionsinSSI1136.2Encryption114Symmetric-keycryptography114Asymmetric-keycryptography1156.3Digitalsignatures1166.4Verifiabledatastructures116Cryptographicaccumulators117Merkletrees117Patriciatries119Merkle-Patriciatrie:
Ahybridapproach1206.5Proofs120Zero-knowledgeproofs120ZKPapplicationsforSSI121Afinalnoteaboutproofsandveracity124References1257Verifiablecredentials126DAVIDW.CHADWICKANDDANIELC.BURNETT7.1ExampleusesofVCs127Openingabankaccount127Receivingafreelocalaccesspass127Usinganelectronicprescription1287.2TheVCecosystem1287.3TheVCtrustmodel131Federatedidentitymanagementvs.VCs131SpecifictrustrelationshipsintheVCtrustmodel132Bottom-uptrust1337.4W3CandtheVCstandardizationprocess1347.5Syntacticrepresentations135JSON135BeyondJSON:
Addingstandardizedproperties136JSON-LD136JWT1377.6BasicVCproperties1397.7Verifiablepresentations1427.8MoreadvancedVCproperties143Refreshservice143Disputes144Termsofuse145Evidence145Whentheholderisnotthesubject1477.9Extensibilityandschemas1507.10Zero-knowledgeproofs1517.11Protocolsanddeployments1537.12Securityandprivacyevaluation155CONTENTSxiii7.13Hurdlestoadoption155References1568Decentralizedidentifiers157DRUMMONDREEDANDMARKUSSABADELLO8.1Theconceptuallevel:
WhatisaDID?
158URIs158URLs158URNs159DIDs1608.2Thefunctionallevel:
HowDIDswork161DIDdocuments161DIDmethods163DIDresolution164DIDURLs166ComparisonwiththeDomainNameSystem(DNS)168ComparisonwithURNsandotherpersistentIdentifiers169TypesofDIDs1708.3Thearchitecturallevel:
WhyDIDswork171ThecoreproblemofPublicKeyInfrastructure(PKI)172Solution1:
TheconventionalPKImodel174Solution2:
Theweb-of-trustmodel176Solution3:
Publickey-basedidentifiers176Solution4:
DIDsandDIDdocuments1788.4FourbenefitsofDIDsthatgobeyondPKI179BeyondPKIbenefit1:
Guardianshipandcontrollership179BeyondPKIbenefit2:
Serviceendpointdiscovery180BeyondPKIbenefit3:
DID-to-DIDconnections181BeyondPKIbenefit4:
Privacybydesignatscale1828.5Thesemanticlevel:
WhatDIDsmean183Themeaningofanaddress183DIDnetworksanddigita
- 配套讲稿:
如PPT文件的首页显示word图标,表示该PPT已包含配套word讲稿。双击word图标可打开word文档。
- 特殊限制:
部分文档作品中含有的国旗、国徽等图片,仅作为作品整体效果示例展示,禁止商用。设计者仅对作品中独创性部分享有著作权。
- 关 键 词:
- Self-Sovereign Identity_ Decentralized digital identity and verifiable credentials Self Sovereign
链接地址:https://www.bingdoc.com/p-11592528.html