Technical group
Technical Working Group of the Education and Skills Data Space
Canvis a "How to handle decentralized identity in DASES?"
Descripció (English)
-
-
Walt.id is a library developped to handle decentralized identity within european reglations: https://github.com/walt-id/waltid-ssikit
This could be a strating point for this debate
A page to introduce SSI (Self-sovereign identity) and decentralized identity : SSI Essentials: Everything you need to know about Decentralized Identity
An explanation about DIDs (Decentralized Identity) and VCs (Verifiable Credentials) : What are Decentralized Identifiers (DIDs) & Verifiable Credentials (VCs)?
The structure of a DID is:
- DID Scheme: All DIDs begin with “did:”
- DID method: This field specifies how to deal with this DID. When reading this part of the DID, computers understand where to go fetch the DID. It could be on a blockchain (EBSI) or on a DNS (web)
- DID Method-specific identifier: Refers to the DID’s unique identifier within the method
An user can request to associate one or several Verifiable Credentials to a DID. An Issuer will issue VC for this specific DID
There are 3 components in a VC:
- Credential Metadata: Properties or attributes of the credential
- Claims: A statements about a subject (individual, legal entity, or thing).
- Proofs: cryptographic signatures tied to private keys that prove the user sharing the VC is the subject of the information
This article is based on https://gataca.io and https://medium.com/metadium/decentralized-identifiers-the-easy-guide-fb96429e8b24
-
+
Walt.id is a library developped to handle decentralized identity within european reglations: https://github.com/walt-id/waltid-ssikit
This could be a strating point for this debate
A page to introduce SSI (Self-sovereign identity) and decentralized identity : SSI Essentials: Everything you need to know about Decentralized Identity
An explanation about DIDs (Decentralized Identity) and VCs (Verifiable Credentials) : What are Decentralized Identifiers (DIDs) & Verifiable Credentials (VCs)?
The structure of a DID is:
- DID Scheme: All DIDs begin with “did:”
- DID method: This field specifies how to deal with this DID. When reading this part of the DID, computers understand where to go fetch the DID. It could be on a blockchain (EBSI) or on a DNS (web)
- DID Method-specific identifier: Refers to the DID’s unique identifier within the method
An user can request to associate one or several Verifiable Credentials to a DID. An Issuer will issue VC for this specific DID
There are 3 components in a VC:
- Credential Metadata: Properties or attributes of the credential
- Claims: A statements about a subject (individual, legal entity, or thing).
- Proofs: cryptographic signatures tied to private keys that prove the user sharing the VC is the subject of the information
This article is based on https://gataca.io and https://medium.com/metadium/decentralized-identifiers-the-easy-guide-fb96429e8b24
Subjects to debate:
- How to log in on Prometheus-X ?
- With an account
- With a wallet extension on the browser
- With a QR Code and a smartphone wallet
- How to use personnal wallet/enterprise wallet?
- Both wallets are required and you have to swtich from one to the other
- The company can issue VCs (with enterprise wallet) and only personnal wallet is required on the platform (with rights granted by the company) to interact with services
- Will it be possible to use several wallets?
- No, only one wallet will be used by Prometheus-X
- Yes, Prometheus-X is an open platform, PX compliants wallets will be able to be used
- How will VCs be requested and issued?
- Not directly from PROMETHEUS-X, wallets or services accessible on Prometheus-X will be able to do it (or external services)
- Only a specific VC to authorize the access to PX services will be issued by PX following a request on the platform
- PX will provide internal services for VCs issuing