Controlling our own identity by ourselves
What is Self Sovereign Identity?
In the physical world, we use different types of techniques to prove our identity on different occasions. For example, we use a driving license, national identity card, or passport to prove our identity to certain parties in different scenarios. In the digital world, we can’t use those paper-based methods to prove our identity. Hence usually we use other ways like passwords, biometrics, or even hardware devices to prove our identity. Even though we can prove our identity using one of the above mechanisms, we don’t have a decentralized identity there. In such scenarios, we have to remember and maintain the passwords(or any other authentication mechanism) and we have to provide our user claims by filling lengthy registration forms. To stay away from those we can use Self-Sovereign Identity(SSID). With SSID, it gives you the ability to use your digital wallet which contains the decentralized identity (DiD), and authenticate your own identity using the credentials you have been issued.
In this concept, only the user should own their identity data fully without intervention from outside any third party (including the administrators).
This concept can be applied to both people and organizations. When this applies to a person,
- The person can obtain, hold, manage and present their own verifiable credentials
- No third party involvement.
- Preserves the privacy and security
When this applies to organizations,
- The organization can have and maintain their own digital identity
- This identity can be used as proof when dealing with certificates
A Sample UseCase
In a typical system,
- Sam needs to open a bank account in ‘Bank A’ needs to request a personal loan from ‘Bank B’ and needs to request a credit card from ‘Bank C’.
- He needs to login to the website of ‘Bank A’, creates an account there, have to fill a lengthy form of registration and send a copy of the National Identity Card.
- He needs to login to the website of ‘Bank B’, creates an account there, have to fill a lengthy form of registration, and send a copy of the National Identity Card, Pays Slips, Degree certificate, and Birth Certificate.
- He needs to login to the website of ‘Bank C’, creates an account there, have to fill a lengthy form of registration, and send a copy of the National Identity Card, Pays Slips, Degree certificate, and Birth Certificate.
When using SSID,
Sam pre-registered and obtained a User DiD for digital bank users license from the central bank using the following steps.
- Sign in to the Central Bank’s system and scan the QR code using his mobile phone to obtain a verified digital bank users’ license.
- The bank returns a credential created for Sam signed by the private key of issuer DiD.
- Sam accepts the credential and stored it on his device.
- Sam Navigate to ‘Bank A’ website to open a bank account. Sam scans the QR Code and gives consent to the subset of verified claims to share with the bank from his device.
- ‘Bank A’ verifies the signature of User DiD and issuer DiD by communicating with the central bank.
- ‘Bank A’ verified the identity of Sam and allows him to open the bank account.
When Sam needs to request a personal loan or a credit card from any bank which trusts the central bank he does not need to register and fill lengthy forms. He can use the above credential which is issued by the central bank and fulfill his need.
With self sovereign identity each person is now in control of their own identity. With this, it has increased the security, and privacy and the usability aspect of users.
This is a basic introduction to explain the self sovereign identity. Hope you get an idea about SSID from this article.