-
Notifications
You must be signed in to change notification settings - Fork 1
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
docs: add SSI concepts documentation #7
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@petevielhaber I made some comments that you can review and implement changes according to my suggestions.
Trust is hard. It becomes infinitely more challenging when we introduce strangers on the internet into the mix. We expect to have some certainty or confidence with claims made about an entity. As an example, a stranger claims they are a doctor. How do you know? Is it because they are wearing scrubs with a white coat? Is it the paper hanging on the wall? Could that document be fake? What makes us comfortable with a doctor claiming they are a doctor? In today's world, typically, it's an accumulation of things, referrals, an office, the equipment in the office, staff, attire, license on the wall, etc. | ||
|
||
These things give us comfort and a sense that we are dealing with an entity claiming to be a doctor. Sure, it could be a scam, but there's a reasonable expectation this entity is a doctor. None of this exists in the digital world today, but in digital identity, it's necessary because it gives us comfort and some level of certainty in the digital world. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Replace but in digital identity
with but with digital identity
Trust is hard in the digital world, and this is where the role of a Trust/Governance Framework becomes useful. Before we begin, the terms Trust/Governance in this context are the same. Some prefer the word trust because governance implies government, which isn't necessarily the case. | ||
|
||
A Trust/Governance Framework does govern an ecosystem. An example in practice today is a medical board. In the United States, states have a medical board that derives its authority from the state, typically via law or regulation. In a digital world, the state could issue the medical board a verifiable credential that is presentable and verifiable. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This part is hard to read states have a medical board that derives its authority from the state
. Suggest rephrasing.
This board consists of legal experts and practicing attorney's this board agrees collectively to determine what qualifies a person to be a lawyer in that state. This board issues a law license or a verifiable credential to the attorney. | ||
|
||
The attorney can then present that document or verifiable credential to clients, law firms, etc., for verification, typically through a website checking license number and name. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Rephrase
|
||
## Principles of SSI | ||
|
||
The roles we discussed in the driver's license example still exist in digital identity. It works similarly but with additional security, privacy, interoperability, portability, transparency, and agency layers. A key difference is that digital identity requires no central authority to provide an identity, nor is there any centralized registry. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Suggest we also add that SSI doesn't require phone home
capabilities to verify a credential. A key differentiator compared to traditional centralised solutions.
|
||
### Holder | ||
|
||
The term holder is an entity with a DID. Typically the DID is stored or held in a digital wallet. Every player in a digital identity ecosystem will have a DID. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Replace Every player in a digital identity ecosystem will have a DID
with Every player in a digital identity ecosystem will have one or more DIDs
|
||
### Issuer | ||
|
||
An issuer is an entity that issues verifiable credentials (VCs) to holders with whom they have a connection. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
They don't necessarily require a connection for issuance to take place. OOB issuance don't require an existing connection
|
||
### DID pair | ||
|
||
The connection between a holder and an issuer is unique. A DID pair represents each side of this relationship, one going to each entity. It is essential because neither party knows the other entity's DID, only the DID pair. This key point is a privacy feature ensuring that your doctor won't know where you buy books, the bookstore won't know where you buy groceries, etc. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Replace The connection between a holder and an issuer is unique.
with A connection between two agents is always unique for that relationship.
@@ -4,4 +4,18 @@ sidebar_position: 1 | |||
|
|||
# Getting Started | |||
|
|||
Welcome to the ATALA Prism V2 SSI ecosystem! This guide will walk you through the process of setting up and using your digital identity within the ATALA Prism V2 ecosystem. | |||
Atala PRISM is a decentralized identity platform. It is a layer-2 blockchain solution built upon Cardano. PRISM is rooted in the principles of self-sovereign identity (SSI). PRISM empowers users to own and control their identity, and personal information, which they can share securely, using private-key encryption, and privately opting with whom to share their data. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Replace It is a layer-2 blockchain solution built upon Cardano.
with It is a layer-2 blockchain solution that leverages the Cardano blockchain as a verifiable data registry (VDR).
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
- Addressed suggestions
Signed-off-by: Peter Vielhaber <peter.vielhaber@iohk.io>
Signed-off-by: Peter Vielhaber <peter.vielhaber@iohk.io>
- Addressed suggestion
* Addressed phrasing
* Addressed suggestion
* Addressed suggestions
* Addressed suggestions
* Rephrasing
e5e7a2a
to
ec0c799
Compare
Fixes: ATL-3530 , ATL-3531, ATL-3533