docs: add SSI concepts documentation #7
Conversation
There was a problem hiding this comment.
@petevielhaber I made some comments that you can review and implement changes according to my suggestions.
| Trust is hard. It becomes infinitely more challenging when we introduce strangers on the internet into the mix. We expect to have some certainty or confidence with claims made about an entity. As an example, a stranger claims they are a doctor. How do you know? Is it because they are wearing scrubs with a white coat? Is it the paper hanging on the wall? Could that document be fake? What makes us comfortable with a doctor claiming they are a doctor? In today's world, typically, it's an accumulation of things, referrals, an office, the equipment in the office, staff, attire, license on the wall, etc. | ||
|
|
||
| These things give us comfort and a sense that we are dealing with an entity claiming to be a doctor. Sure, it could be a scam, but there's a reasonable expectation this entity is a doctor. None of this exists in the digital world today, but in digital identity, it's necessary because it gives us comfort and some level of certainty in the digital world. |
There was a problem hiding this comment.
Replace but in digital identity with but with digital identity
| Trust is hard in the digital world, and this is where the role of a Trust/Governance Framework becomes useful. Before we begin, the terms Trust/Governance in this context are the same. Some prefer the word trust because governance implies government, which isn't necessarily the case. | ||
|
|
||
| A Trust/Governance Framework does govern an ecosystem. An example in practice today is a medical board. In the United States, states have a medical board that derives its authority from the state, typically via law or regulation. In a digital world, the state could issue the medical board a verifiable credential that is presentable and verifiable. |
There was a problem hiding this comment.
This part is hard to read states have a medical board that derives its authority from the state. Suggest rephrasing.
| This board consists of legal experts and practicing attorney's this board agrees collectively to determine what qualifies a person to be a lawyer in that state. This board issues a law license or a verifiable credential to the attorney. | ||
|
|
||
| The attorney can then present that document or verifiable credential to clients, law firms, etc., for verification, typically through a website checking license number and name. |
|
|
||
| ## Principles of SSI | ||
|
|
||
| The roles we discussed in the driver's license example still exist in digital identity. It works similarly but with additional security, privacy, interoperability, portability, transparency, and agency layers. A key difference is that digital identity requires no central authority to provide an identity, nor is there any centralized registry. |
There was a problem hiding this comment.
Suggest we also add that SSI doesn't require phone home capabilities to verify a credential. A key differentiator compared to traditional centralised solutions.
|
|
||
| ### Holder | ||
|
|
||
| The term holder is an entity with a DID. Typically the DID is stored or held in a digital wallet. Every player in a digital identity ecosystem will have a DID. |
There was a problem hiding this comment.
Replace Every player in a digital identity ecosystem will have a DID with Every player in a digital identity ecosystem will have one or more DIDs
|
|
||
| ### Issuer | ||
|
|
||
| An issuer is an entity that issues verifiable credentials (VCs) to holders with whom they have a connection. |
There was a problem hiding this comment.
They don't necessarily require a connection for issuance to take place. OOB issuance don't require an existing connection
|
|
||
| ### DID pair | ||
|
|
||
| The connection between a holder and an issuer is unique. A DID pair represents each side of this relationship, one going to each entity. It is essential because neither party knows the other entity's DID, only the DID pair. This key point is a privacy feature ensuring that your doctor won't know where you buy books, the bookstore won't know where you buy groceries, etc. |
There was a problem hiding this comment.
Replace The connection between a holder and an issuer is unique. with A connection between two agents is always unique for that relationship.
| @@ -4,4 +4,18 @@ sidebar_position: 1 | |||
|
|
|||
| # Getting Started | |||
|
|
|||
| Welcome to the ATALA Prism V2 SSI ecosystem! This guide will walk you through the process of setting up and using your digital identity within the ATALA Prism V2 ecosystem. | |||
| Atala PRISM is a decentralized identity platform. It is a layer-2 blockchain solution built upon Cardano. PRISM is rooted in the principles of self-sovereign identity (SSI). PRISM empowers users to own and control their identity, and personal information, which they can share securely, using private-key encryption, and privately opting with whom to share their data. | |||
There was a problem hiding this comment.
Replace It is a layer-2 blockchain solution built upon Cardano. with It is a layer-2 blockchain solution that leverages the Cardano blockchain as a verifiable data registry (VDR).
Signed-off-by: Peter Vielhaber <peter.vielhaber@iohk.io>
Signed-off-by: Peter Vielhaber <peter.vielhaber@iohk.io>
- Addressed suggestion
* Addressed phrasing
* Addressed suggestion
* Addressed suggestions
* Addressed suggestions
* Rephrasing
petevielhaber
force-pushed
the
concepts-draft
branch
from
e5e7a2a
to
ec0c799
Compare
ghost
merged commit 
Fixes: ATL-3530 , ATL-3531, ATL-3533