- Authors: Chris Raczkowski | Drummond Reed | Sankarshan Mukhopadhyay
- Status: PROPOSED
- Since: 2021-02-02
- Status Note: Pre-Draft
- Supersedes: Not Applicable
- Start Date: 2020-12-09
- Tags: #guide, #gswg, #tswg
NOTE: This guide is subject to refinement and approval from the Concepts and Terminology WG as they will define the format of glossarys. It is also expected that Glossaries may have an online rendering format.
The Principles of SSI are a set of foundational principles created at the Sovrin Foundation through a consultative process with the SSI community.
These principles are versioned and published here under the CC BY-SA 4.0 license.
The Principles of SSI Task Force at the Trust over IP Foundation intends to deliver these as Design Principles for formal reference by Trust over IP based governance frameworks or Trust over IP Interoperability Profiles (TIPs) that choose to incorporate these principles.
This document contains the Principles of SSI in a format that is recommended by the Trust over IP Foundation as a design principle.
These foundational principles of SSI are intended for use by any digital identity ecosystem. Any organization is welcomed to incorporate these principles into its digital identity ecosystem governance framework provided they are included in their entirety. The principles of SSI shall be limited only by official laws and regulations that apply in a relevant jurisdiction.
Listed below are a set of 12 foundational principles of SSI. These are accompanied by explanatory text to aid in easier understanding of the applicability of the principles in any digital identity ecosystem
An SSI ecosystem shall provide the means for any entity—human, legal, natural, physical or digital—to be represented by any number of digital identities.
An SSI ecosystem shall enable digital identity data for an entity to be represented, exchanged, secured, protected, and verified interoperably using open, public, and royalty-free standards.
An SSI ecosystem shall not require reliance on a centralized system to represent, control, or verify an entity’s digital identity data.
An SSI ecosystem shall empower entities who have natural, human, or legal rights in relation to their identity (“Identity Rights Holders”) to control usage of their digital identity data and exert this control by employing and/or delegating to agents and guardians of their choice, including individuals, organizations, devices, and software.
An SSI ecosystem shall not require an identity rights holder to participate.
An SSI ecosystem shall not exclude or discriminate against identity rights holders within its governance scope.
An SSI ecosystem shall maximize usability and accessibility of agents and other SSI components for identity rights holders, including consistency of user experience.
An SSI ecosystem shall not restrict the ability of identity rights holders to move or transfer a copy of their digital identity data to the agents or systems of their choice.
An SSI ecosystem shall empower identity rights holders to secure their digital identity data at rest and in motion, to control their own identifiers and encryption keys, and to employ end-to-end encryption for all interactions.
An SSI ecosystem shall empower identity rights holders to provide verifiable proof of the authenticity of their digital identity data.
An SSI ecosystem shall empower identity rights holders to protect the privacy of their digital identity data and to share the minimum digital identity data required for any particular interaction.
An SSI ecosystem shall empower identity rights holders and all other stakeholders to easily access and verify information necessary to understand the incentives, rules, policies, and algorithms under which agents and other components of SSI ecosystems operate.