Verifiable Credentials in Self-Sovereign Identity (SSI)

•

0 likes•526 views

On our March 12, 2020 webinar, Evernym Chief Architect Daniel Hardman provided a great introduction to verifiable credentials and compared them to the physical credentials (passports, driver's licenses, loyalty cards) we use every day. He then identified six lessons we can learn from today's physical credentials and how we're applying each to the world of self-sovereign identity.

Technology

Evernym
@evernym | info@evernym.com | March 2020
Verifiable Credentials
Lessons from the physical world

On the agenda
What are verifiable credentials?
What lessons can we learn from the physical world?
How can we apply these lessons?
Conclusion
Q&A

LET’S GO BACK IN TIME
before the Internet...

They answer the question:
“Says who?”
There is already a global standard for
credentials - paper.

But it doesn’t work
online
The digital world had no equivalent
for paper credentials… until now.

Introducing digital,
verifiable credentials
They’re a lot like the physical credentials we
know and love, with a few ‘cryptographic
superpowers’ that allows any relying party to
complete four checks:
✔ Who issued the credential?
✔ To whom?
✔ Has it been tampered with?
✔ Has it been revoked?
All without contacting the credential issuer.

And in November 2019, the
data model for verifiable
credentials became an
official W3C
recommendation.
https://www.w3.org/TR/2019/REC-vc-data-mod
el-20191119/

Lody’s Passport
Wikimedia Commons (public domain) Wikimedia Commons (public domain)

1. Just holding a credential
isn’t enough
You have to prove that you’re the legitimate
holder.
Maybe you should also have to prove that the
device doing the proving is authorized...
● Link secrets
● Biometrics

2. Revocation is a big deal
The US State Department needed a way to
revoke stolen passport. It needed to be timely,
and the revocation needed to propagate
everywhere, quickly.

3. Abuse by holders isn’t
the only risk
...what about the German Foreign Ministry, who
“verified” Lody’s passport to grant an exit
permit? What about malicious issuers? Etc.
See Aries RFC 0207 — Credential Fraud Threat
Model.

4. Diffuse trust is important
for high stakes
Naval yards shouldn’t have just challenged for
passport, but also for another form of ID.
Like guy wires — having just one is not enough.
Stephen Edmonds, Flickr, CC-BY 2.0

5. Planning and governance
matter
Clarify everbody’s rights and responsibilities.
Identify situations that are tricky.
Codify which proofs are needed in which
circumstances, for which levels of assurance.
Make the basis of reputation explicit.

6. Issuers need to have
robust processes
What does “Real ID” push in the US tell us?
Reputation attaches to more than just the
right to assert a fact (Oxford vs. Podunk U)
Stephen Edmonds, Flickr, CC-BY 2.0
TSA, public domain

How are we applying these learnings to
digital credentials?

We’re integrating advanced key
management
see http://bit.ly/dkms-v4, http://j.mp/2xvp3Wd, http://j.mp/38EEB6Z

Impersonating Alice
outside Sovrin
● Step 1: Steal the wallet (phone)
● Step 2: Hack it → credentials + DID keys
● Step 3: ✅ Use Stolen Identity

Impersonating Alice
on Sovrin
● Step 1: Steal the wallet (phone)
● Step 2: Hack it → credentials + DID keys +
(maybe) link secret
● Step 3: ✘ Fail. Go look for a better target.

We’re providing process and accountability
with governance frameworks
see http://bit.ly/32LRkD5, http://j.mp/33cA8XK

We’re making credentials more secure with
biometrics
see https://doi.org/10.1109/MCOMSTD.001.1900033

We’re categorizing fraud through risk scoring
Your feedback encouraged: http://j.mp/2VR09dz

We’re exploring proof of unique human, link
secret bonds, and other fraud preventers.
see http://bit.ly/2SQtbag

We’re enabling lighter-weight revocation with
Anoncreds 2.0
see http://j.mp/3aOj8di

In conclusion…
Verifiable credentials can take the pain out of
proving who we are in the digital world.
But, it’s a young technology and there are many different ways of
architecting a credential and applying these lessons—
some good, some bad.
We’ll address these issues in depth in future webinars.

Thank you
Questions? Please drop them in the chat!
Connect with us via Twitter or Email
@evernym
info@evernym.com

Up until recently, the majority of digital identity systems have been federated, where a small group of “identity providers” supply individuals with a digital identity that can be used to access other websites and services within the federation. Now we’re seeing the shift to decentralized identity solutions and open ecosystems based on verifiable credentials, where anyone can participate, issue, and verify. In the first of a new series on digital identity and government, we invited leading experts from Accenture and Evernym to discuss the state of digital identity systems within the public sector and the reasons why government interest in decentralized models continues to increase. We covered: - The key differences between federated and decentralized identity systems - An analysis of a few notable government-led projects, such as Aadhaar (India), Verify (UK), eIDAS (EU), and the Ontario Digital Identity Program (Canada) - What decentralization means for portability, scalability, flexibility, and privacy - How governments and commercial organizations can enhance existing federated identity systems with verifiable credentials

Self-Sovereign Identity: Ideology and Architecture with Christopher Allen

SSIMeetup

https://ssimeetup.org/self-sovereign-identity-why-we-here-christopher-allen-webinar-51/ Internet cryptography and Self-sovereign identity (SSI) pioneer Christopher Allen talks about essential insights and reflections around historical, technological and ethical aspects of Self-Sovereign Identity at the 51st SSIMeetup.org webinar in collaboration with Rebooting the Web of Trust (RWOT) and Alianza Blockchain Iberoamérica as part of the events that took place at RWOT in Buenos Aires (Argentina). Christopher is an entrepreneur and technologist who specializes in collaboration, security, and trust. As a pioneer in internet cryptography, he’s initiated cross-industry collaborations and co-created industry standards that influence the entire internet. Christopher’s focus on internet trust began as the founder of Consensus Development where he co-authored the IETF TLS internet-draft that is now at the heart of all secure commerce on the World Wide Web. Christopher is co-chair of the W3C Credentials CG working on standards for decentralized identity. Christopher has also been a digital civil liberties and human-rights privacy advisor, was part of the team that led the first UN summit on Digital Identity & Human Rights, and was the producer of a half-dozen iPhone and iPad games, and of Infinite PDF, a non-linear media app.

Verifiable Credentials 101 for SSI and Decentralized Digital Identity - Tyler...

SSIMeetup

http://ssimeetup.org/verifiable-credentials-101-ssi-tyler-ruff-webinar-11/ Tyler Ruff, product manager at Evernym, will be our next guest to walk us through Verifiable Credentials in the context of Self-Sovereign Identity. He will cover how they are created, issued and shared, as well as cover some common technical questions. The Verifiable Credentials discussed are based off a W3C standard for DIDs (decentralized identifiers) and Verifiable Credentials. The hope is that educating the identity and blockchain community on best practices for creating, issuing, storing and sharing Verifiable Credentials will foster interoperability between identity providers, ultimately making the whole ecosystem more valuable to the end consumer. The focus of this presentation is how Verifiable Credentials work, and why the different steps and components are necessary. If we can make Verifiable Credentials truly interoperable across industries, providers and domains, we can take a giant step forward towards a real self-sovereign world where individuals are in control of their digital lives and can benefit from every interaction they have—online and off. It all starts with getting interoperable, Verifiable Credentials under your control.

Drummond Reed, Chief Trust Officer at Evernym and Sovrin Foundation Trustee, features in this Webinar "Decentralized Key Management (DKMS): An Essential Missing Piece of the SSI Puzzle". If you can't manage the keys for your DIDs (Decentralized Identifiers), then the SSI engine will never get started. That's why DKMS (Decentralized Key Management System) is one of the core open standards in the DID "stack". DKMS inverts a core assumption of conventional PKI (public key infrastructure) architecture, namely that public key certificates will be issued by centralized or federated certificate authorities (CAs). With DKMS, the initial "root of trust" for all participants is any blockchain or distributed ledger that supports DIDs. This webinar will explain why we need DKMS, what a DKMS-compatible identity wallet looks like, how DKMS can solve some longstanding problems in wallet backup and recovery, and where DKMS is headed for standardization.

Overview of Decentralized Identity

Jim Flynn

OpenID for Verifiable Credentials

Torsten Lodderstedt

Decentralized Identifier (DIDs) fundamentals deep dive

SSIMeetup

https://ssimeetup.org/decentralized-identifiers-dids-fundamentals-identitybook-info-drummond-reed-markus-sabadello-webinar-46/ Decentralized identifiers (abbreviated as “DIDs”), are the cryptographic counterpart to verifiable credentials (VCs) that together are the “twin pillars” of SSI architecture. In this special IdentityBook.info webinar Markus Sabadello, Founder and CEO of Danube Tech, and Drummond Reed, Chief Trust Officer at Evernym, co-authors of the DID chapter of the “Self-Sovereign Identity: Decentralized Digital Identity and Verifiable Credentials” book published by Manning will explain all the fundamentals of DIDs. Based on the did chapter of the book, you will learn how DIDs evolved from the work started with VCs, how they are related to URLs and URNs, why a new type of cryptographically-verifiable identifier is needed for SSI, and how DIDs are being standardized at World Wide Web Consortium (W3C). Your guides will be two of the editors of the W3C Decentralized Identifier 1.0 specification: Markus Sabadello and Drummond Reed.

Why The Web Needs Decentralized Identifiers (DIDs) — Even if Google, Apple, a...

Evernym

OpenID for SSI

Torsten Lodderstedt

Introduction to Self Sovereign Identity - IIW October 2019

Heather Vescent

OpenID for Verifiable Credentials

Torsten Lodderstedt

Verifiable credentials explained by CCI

Kaliya "Identity Woman" Young

OpenID for Verifiable Credentials (IIW 35)

Torsten Lodderstedt

Self-Sovereign Identity for the Decentralized Web Summit

Kaliya "Identity Woman" Young

Introduction to Self Sovereign Identity

Heather Vescent

OpenID for Verifiable Credentials @ IIW 36

Torsten Lodderstedt

Verifiable Credentials for Travel & Hospitality

Evernym

Hyperledger Aries: Open Source Interoperable Identity Solution – Nathan George

SSIMeetup

https://ssimeetup.org/hyperledger-aries-open-source-interoperable-identity-solutions-nathan-george-webinar-30/ Nathan George, Sovrin Foundation CTO, and Hyperledger Contributor will explain what Hyperledger Aries is and how it will facilitate an open source infrastructure for interoperable identity solutions. Aries was born out of the work on identity agents and identity wallets that began in the Hyperledger Indy project. Aries is, in fact, the second Hyperledger project to spin out of Hyperledger Indy. The first was Hyperledger Ursa, announced in December 2018. Self-sovereign identity based on DIDs requires strong interoperability and pluggability at the infrastructure level. It also requires great applications that offer end-to-end functionality so that users can accomplish jobs with greater security, flexibility, and privacy. Aries is expected to be a major step forward in this direction. Aries will be the industry’s first implementation of interoperable open source wallets for digital credentials that use the DKMS (Decentralized Key Management System) architecture that Evernym pioneered under a contract with the U.S. Department of Homeland Security.

What makes a successful SSI strategy?

Evernym

What are the questions you need to ask yourself before embarking on your self-sovereign identity journey? How can a clear, business-focused strategy help propel your initiative from proof-of-concept to delivery at scale? In this presentation, we’ll help you evaluate what SSI means for your organization and design a plan that navigates both the technical and business considerations for a successful launch.

OpenID Connect 4 SSI

Torsten Lodderstedt

Blockchain-based Solutions for Identity & Access Management

Prabath Siriwardena

OIDC4VP for AB/C WG

Torsten Lodderstedt

Self-Sovereign Identity: Lightening Talk at RightsCon

Kaliya "Identity Woman" Young

Self-Sovereign Identity technology has enormous potential to empower individuals and address privacy challenges globally. It uses shared ledgers (blockchain) to give individuals the power to create and manage their own identifiers, collect verified claims and interact with others on the network on their terms. This lighting talk by one of the pioneers working on this new emerging layer of the internet for 15 years will give a high level picture of how it works covering the core standards and technologies along with outlining some potential use-cases.

Returning to Online Privacy - W3C/ANU Future of the Web Roadshow 20190221

David Wood

What's hot

OpenID 4 Verifiable Credentials + HAIP (Update)

Torsten Lodderstedt

Decentralized Key Management (DKMS): An Essential Missing Piece of the SSI Pu...

SSIMeetup

Overview of Decentralized Identity

Jim Flynn

OpenID for Verifiable Credentials

Torsten Lodderstedt

Decentralized Identifier (DIDs) fundamentals deep dive

SSIMeetup

Why The Web Needs Decentralized Identifiers (DIDs) — Even if Google, Apple, a...

Evernym

OpenID for SSI

Torsten Lodderstedt

Introduction to Self Sovereign Identity - IIW October 2019

Heather Vescent

OpenID for Verifiable Credentials

Torsten Lodderstedt

Verifiable credentials explained by CCI

Kaliya "Identity Woman" Young

OpenID for Verifiable Credentials (IIW 35)

Torsten Lodderstedt

Self-Sovereign Identity for the Decentralized Web Summit

Kaliya "Identity Woman" Young

Introduction to Self Sovereign Identity

Heather Vescent

OpenID for Verifiable Credentials @ IIW 36

Torsten Lodderstedt

Verifiable Credentials for Travel & Hospitality

Evernym

Hyperledger Aries: Open Source Interoperable Identity Solution – Nathan George

SSIMeetup

What makes a successful SSI strategy?

Evernym

OpenID Connect 4 SSI

Torsten Lodderstedt

Blockchain-based Solutions for Identity & Access Management

Prabath Siriwardena

OIDC4VP for AB/C WG

Torsten Lodderstedt

What's hot (20)

OpenID 4 Verifiable Credentials + HAIP (Update)

Decentralized Key Management (DKMS): An Essential Missing Piece of the SSI Pu...

Overview of Decentralized Identity

OpenID for Verifiable Credentials

Decentralized Identifier (DIDs) fundamentals deep dive

Why The Web Needs Decentralized Identifiers (DIDs) — Even if Google, Apple, a...

OpenID for SSI

Introduction to Self Sovereign Identity - IIW October 2019

OpenID for Verifiable Credentials

Verifiable credentials explained by CCI

OpenID for Verifiable Credentials (IIW 35)

Self-Sovereign Identity for the Decentralized Web Summit

Introduction to Self Sovereign Identity

OpenID for Verifiable Credentials @ IIW 36

Verifiable Credentials for Travel & Hospitality

Hyperledger Aries: Open Source Interoperable Identity Solution – Nathan George

What makes a successful SSI strategy?

OpenID Connect 4 SSI

Blockchain-based Solutions for Identity & Access Management

OIDC4VP for AB/C WG

Similar to Verifiable Credentials in Self-Sovereign Identity (SSI)

Self-Sovereign Identity: Lightening Talk at RightsCon

Kaliya "Identity Woman" Young

Returning to Online Privacy - W3C/ANU Future of the Web Roadshow 20190221

David Wood

The Domains of Identity & Self-Sovereign Identity MyData 2018

Kaliya "Identity Woman" Young

Tony Nadalin' presentation at eComm 2008eComm2008

Identity is Changing: The Rise of Self-Sovereign Identity Infrastructure usin...

Kaliya "Identity Woman" Young

Identity can seem deceptively simple. We know who we are. Sometimes we have to convince others of that fact and confirm other characteristics: our age, our qualifications, or our right to access some services or tools. This happens every day over the Internet, but in ways that are disorganized, redundant, and risky. The lack of reliable, universal standards puts our private information at risk of public dissemination, fraud or worse. The pioneers developing the internet didn’t define nuanced standards for identity -- most everything was just username and passwords. Over the past 20 years we have seen a range of standards that solve some identity challenges, including SAML, LDAP, OpenID Connect, OAuth, SCIM, Information Cards, and FIDO. None of them have comprehensively addressed the challenge of identity at internet scale. A new set of standards is emerging that creates an infrastructure for self-sovereign identity that can scale. This talk looks forward to help you think ahead and prepare for this new infrastructure. We will walk through standards that together create a new identity infrastructure that leverages the blockchain. This isn’t about what you can implement tomorrow to solve your employee identity challenges or manage customer accounts. It will instead prepare you for the coming changes and help you play a role in shaping them.

Validide Corporation Pitch Deck 20210617

Lifelog Health

Iot privacy vs convenience

Don Lovett

Identity 101: Boot Camp for Identity North 2016

Kaliya "Identity Woman" Young

Domains of Identity and Self-Sovereign Identity India talk

Kaliya "Identity Woman" Young

Stu w25 aSelectedPresentations

The future of digital identity 2019 future agenda

Future Agenda

How we prove that we are who or what we say we are during digital transactions and interactions is set to become one of the defining features of the next stage of the human digital transformation. Today, we are living with early attempts to solve the problem that are no longer fit for purpose. At best, the multitude of different ways we login, confirm our identities, and establish trust in claims made during digital exchanges, has become profoundly inconvenient. At worst, they have left us in a connected world which is neither safe nor secure, and in which we seem to have completely lost control of our most personal information. The next generation solutions to the digital identity challenge could change all of this. In the short term, new solutions are likely to move us towards the promise of a single Digital ID that allows us to simply, safely and securely navigate a connected world. Looking further forward, the changes could be even more profound. The ways that we digitally manage, share and verify our personal information could well come to completely redefine the human digital experience. Current digital business models that seem immutable could collapse. Centres of digital power might shift radically. And the current personal data ‘land grab’ could be replaced by a new digital norm in which individuals can finally make meaningful claims to data ownership and control. However, there are a number of potentially calamitous pitfalls to navigate along the way. Some of these could lead to whole new kinds of digital dystopia. At the end of 2018, Future Agenda undertook a major project exploring the Future of Digital Identity. With the generous support of Mastercard, the Future Agenda team ran a series of expert workshops in different locations around the world that explored the key factors that are likely to shape the future of digital identity. The programme began with an initial perspective as a provocation. Participants in the workshops then gave us new, more fully formed, insights which were in turn explored further during one-to-one interviews with major stakeholders and thinkers in the space. As always, we consider our reports to be the start point for further conversations, and would welcome further input. If you would like to join the conversation, you can join our LinkedIn Group here. If you have any further questions or would like to have a conversation about how your organisation can best make use of our

The future of digital identity initial perspective

Future Agenda

Our interconnected digital world has started to make a mockery of traditional forms of identification. Being asked to produce ‘two forms of ID; at least one from each of the two following lists’ already seems hopelessly anachronistic in a world of automated password-managers, RFID-driven payments systems, and bio-metric authenticators on our mobile phones. The idea of having a single digital identity (Digital ID) that can replace the need to hold a plethora of cards and documents, from your passport and driving license to your library card and even your CV, is not only one whose time has come, it is one that is all but presumed to exist already. Although it doesn’t quite yet. This ‘initial perspective’ is intended to provide a provocation for thinking and deeper discussion about the impending implementation, and future, of Digital Identity and its role and value in society. In addition, we are also undertaking a set of 5 expert workshops across 4 continents in Q4 2018 (London, Singapore, Sydney, San Francisco and Brussels). If you are interested in joining, we would welcome your feedback and contribution to help build a richer view. Do let us know.

Defi MOOC Fa21 - Decentralized Identity.pptx.pdf

ssuser00208b

Introduction to Self-Sovereign Identity

Karyl Fowler

Designing Your Product Vision

Carina Ngai

The Future of Authentication - Verifiable Credentials / Self-Sovereign Identity

Evernym

What does a world without passwords and usernames look like? What would a truly secure single sign-on system mean for your customer and employee experiences? What if multi-factor authentication was consistent and interoperable across the Internet? On our July 9th webinar, we were joined by our partners at Condatis to dive into these very questions around the future of authentication, covering: ◙ The four types of authentication supported by Evernym today ◙ The flaws in today’s password-based, security question, and social login models ◙ The benefits of using verifiable portable credentials for authentication ◙ Using self-sovereign identity for multi-factor authentication ◙ A showcase of live SSI-enabled authentication projects Presenters: ◙ Andy Tobin, EMEA Managing Director, Evernym ◙ Chris Eckl, Chief Technology Officer, Condatis ◙ James Monaghan, VP Product, Evernym

Hope x talkKaliya "Identity Woman" Young

Indjic fintech module 3

Drago Indjic

Crypto Valley Conference 2019 - CULedger

Darrell O'Donnell

Cryptograpy Exam

Lisa Olive

Similar to Verifiable Credentials in Self-Sovereign Identity (SSI) (20)

Self-Sovereign Identity: Lightening Talk at RightsCon

Returning to Online Privacy - W3C/ANU Future of the Web Roadshow 20190221

The Domains of Identity & Self-Sovereign Identity MyData 2018

Tony Nadalin' presentation at eComm 2008

Identity is Changing: The Rise of Self-Sovereign Identity Infrastructure usin...

Validide Corporation Pitch Deck 20210617

Iot privacy vs convenience

Identity 101: Boot Camp for Identity North 2016

Domains of Identity and Self-Sovereign Identity India talk

Stu w25 a

The future of digital identity 2019 future agenda

The future of digital identity initial perspective

Defi MOOC Fa21 - Decentralized Identity.pptx.pdf

Introduction to Self-Sovereign Identity

Designing Your Product Vision

The Future of Authentication - Verifiable Credentials / Self-Sovereign Identity

Hope x talk

Indjic fintech module 3

Crypto Valley Conference 2019 - CULedger

Cryptograpy Exam

More from Evernym

Evernym May 2021 Product Update

Evernym

In May 2021, Evernym's Product team hosted a webinar to share: • An overview of Evernym’s products: Verity, Connect.Me, and the Mobile SDK • Recent changes and improvements, including Aries Out-Of-Band support and new developer resources • A first-look at Verity Flow, a new no-code solution for issuing and verifying credentials • A discussion of our product roadmap, including BBS+ support and a new Connect.Me demo experience

SSI & Healthcare: Lessons from the NHS

Evernym

As medicine undergoes a rapid digital transformation, the emergence of large quantities of healthcare related data is inevitable. This has been accelerated by COVID-19, with one example being the use of digital health passes. Consideration around holding, presenting, and accessing the information will be vital in continuing the trust built between patients, clinicians, and organizations. Check out our April 28, 2021 webinar, where we hosted Dr. Manreet Nijjar, Consultant Physician in Infectious Diseases at Barts Health NHS Trust, NHS England Clinical Entrepreneur fellow, and co-founder of Truu. He shared an insider’s perspective on how providers can benefit from more trusted, user-centric data and what it takes to design for the complex privacy, regulatory, and ethical needs facing healthcare. We covered: • Lessons learned from working with self-sovereign identity (SSI) at the NHS, and the needs highlighted when leading the frontline response during COVID-19 • What digital health passes mean for the adoption of SSI • Applying the four principles of healthcare ethics to verifiable credential technology • The top use cases for healthcare, including “staff passports” and portable health records

IATA Travel Pass - Evernym Webinar

Evernym

What role will verifiable credentials play in safely bringing back air travel? How can this game-changing technology enable airlines and governments to navigate and comply with evolving health requirements, and at the same time, rebuild passenger confidence in air travel? On January 12, we hosted our partners, the International Air Transport Association (IATA), to discuss these critical questions and their ‘Travel Pass’ project. We covered: • The challenges facing governments and airlines in safely bringing back air travel • The IATA & Evernym solution: ‘Travel Pass,’ a privacy-preserving and highly secure contactless travel solution for sharing travel documents and test/vaccination results with airlines • Learnings and insights from previous Evernym pilots at major airports • Upcoming live pilots involving IATA and several major airlines • How airlines and test centers can get involved

Meet Connect.Me & Evernym's Mobile SDK

Evernym

Digital wallets provide the interface for consumers to manage and share their credentials. They’re key to unlocking mainstream adoption and creating intuitive, trusted, and safe experiences. In this webinar, we discussed Evernym’s digital wallet app (Connect.Me) and our Mobile SDK that allows anyone to embed digital wallet capabilities into existing apps. We covered: - An overview of Connect.Me and our Mobile SDK - What's new in our Mobile SDK's General Availability release and Connect.Me 1.4 - Lessons in customer experience from powering the world's first live implementations - Our ongoing efforts to ensure interoperability, security, and trust

Open Source & What It Means For Self-Sovereign Identity (SSI)

Evernym

Open source and open standards have been two pillars of self-sovereign identity since the beginning. Only by breaking down barriers to both development and production can we ensure that SSI works for everyone, everywhere. Openness is also at the core of how Evernym operates, and our motivation for launching Sovrin, subsequently donating Hyperledger Indy to the world, and more recently, open-sourcing our own products. In this webinar, we covered: - The importance of open source software, and why it's needed for self-sovereign identity - The open source tools available today, from Hyperledger Indy and Aries to Evernym's Verity - What Evernym's open-sourcing of Verity means for developers - Getting started with either open source or our free Sandbox plan

The Future of Digital Wallets - Evernym Webinar

Evernym

Meet Verity, Evernym's Digital Credential Platform

Evernym

An Expert Panel on Safe Credentials

Evernym

In this May 2020 webinar, Evernym's Andy Tobin gives an overview of safe credentials and the five tests to determine whether or not a portable verifiable credential is safe. Then, we invite panelists from CULedger and Mastercard to share what safe credentials mean for them and their organizations. Panelists: - Julie Esser, SVP Marketing & Comms, CULedger - Bryn Robinson-Morgan, VP Digital Identity, Mastercard - Daniel Hardman, Chief Architect, Evernym

Verifiable Credentials & Legal Entity Identifiers (LEIs) | Evernym & GLEIF

Evernym

Enhancing Learner Mobility with SSI & Portable Digital Credentials

Evernym

In May 2020, Takis Diakoumis (CTO, Digitary) and James Murray-Beckman (COO, Digitary) joined Evernym for a discussion on how universities and other higher education institutions can benefit from verifiable credential technology. Here’s what was covered: - An overview of what self-sovereign identity (SSI) means for higher education, and how it gives control and mobility to students - How (micro-)credentials can help students instantly prove their educational achievements to prospective employers, financial institutions, and other universities - The effects of COVID-19 on higher education, and SSI's role in building a trusted online learning infrastructure - A first-look at Digitary's new credential issuing platform Category

Trust over IP (ToIP)

Evernym

On an April 1, 2020 webinar, Evernym's Chief Trust Officer, Drummond Reed, and Chief Architect, Daniel Hardman, provided an expert overview of Trust over IP (ToIP), a new framework for ensuring trusted digital interactions and universal interoperability for SSI solutions. They covered: - The core concepts of the trust triangle, verifiable credentials, and decentralized identifiers - The needs for both algorithmic and human trust - The four layers of the ToIP stack

Meet Evernym's SSI Platform

Evernym

Getting Started With Self-Sovereign Identity (SSI) | Evernym Webinar

Evernym

What does it take to move self-sovereign identity (SSI) out of the lab and into production? How should practitioners think about pilots, trust frameworks, and implementation plans? Our February 12, 2020 webinar walks you through adopting an SSI mindset, with a focus on use cases and trust frameworks within the higher education sector—although the content will be applicable to any industry. Tune in for: - An introduction to SSI - Leading SSI use cases in higher education - Practical steps for starting your SSI journey

SSI & Digital Guardianship Webinar

Evernym

Digital Guardianship in Self-Sovereign Identity

Evernym

More from Evernym (15)

Evernym May 2021 Product Update

SSI & Healthcare: Lessons from the NHS

IATA Travel Pass - Evernym Webinar

Meet Connect.Me & Evernym's Mobile SDK

Open Source & What It Means For Self-Sovereign Identity (SSI)

The Future of Digital Wallets - Evernym Webinar

Meet Verity, Evernym's Digital Credential Platform

An Expert Panel on Safe Credentials

Verifiable Credentials & Legal Entity Identifiers (LEIs) | Evernym & GLEIF

Enhancing Learner Mobility with SSI & Portable Digital Credentials

Trust over IP (ToIP)

Meet Evernym's SSI Platform

Getting Started With Self-Sovereign Identity (SSI) | Evernym Webinar

SSI & Digital Guardianship Webinar

Digital Guardianship in Self-Sovereign Identity

Recently uploaded

Introduction to CHERI technology - Cybersecurity

mikeeftimakis1

LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...

DanBrown980551

Do you want to learn how to model and simulate an electrical network from scratch in under an hour? Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)! During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook. PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides: - A fully editable and extendable library for grid component modelling; - Visualization tools to display your network; - Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses; The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well. What you will learn during the webinar: - For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills; - For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.

The Art of the Pitch: WordPress Relationships and Sales

Laura Byrne

Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes? All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.

Free Complete Python - A step towards Data Science

RinaMondal9

Essentials of Automations: Optimizing FME Workflows with Parameters

Safe Software

Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place. Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects. Here’s what you’ll gain: - Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows. - Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy. - Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency. - Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity. We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic. Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.

Monitoring Java Application Security with JDK Tools and JFR Events

Ana-Maria Mihalceanu

Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf

Paige Cruz

Monitoring and observability aren’t traditionally found in software curriculums and many of us cobble this knowledge together from whatever vendor or ecosystem we were first introduced to and whatever is a part of your current company’s observability stack. While the dev and ops silo continues to crumble….many organizations still relegate monitoring & observability as the purview of ops, infra and SRE teams. This is a mistake - achieving a highly observable system requires collaboration up and down the stack. I, a former op, would like to extend an invitation to all application developers to join the observability party will share these foundational concepts to build on:

How world-class product teams are winning in the AI era by CEO and Founder, P...

Product School

Quantum Computing: Current Landscape and the Future Role of APIs

Vlad Stirbu

De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...

Product School

GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...

James Anderson

Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management. The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM). Speakers: Bob Boule Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle. Gopinath Rebala Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.

The Future of Platform Engineering

Jemma Hussein Allen

UiPath Test Automation using UiPath Test Suite series, part 3

DianaGray10

FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf

FIDO Alliance

Epistemic Interaction - tuning interfaces to provide information for AI support

Alan Dix

Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024 https://alandix.com/academic/papers/synergy2024-epistemic/ As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.

Bits & Pixels using AI for Good.........

Alison B. Lowndes

FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf

FIDO Alliance

Securing your Kubernetes cluster_ a step-by-step guide to success !

KatiaHIMEUR1

Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster. However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks. In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.

Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...

UiPathCommunity

💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™: See how to accelerate model training and optimize model performance with active learning Learn about the latest enhancements to out-of-the-box document processing – with little to no training required Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath. Speakers: 👨‍🏫 Andras Palfi, Senior Product Manager, UiPath 👩‍🏫 Lenka Dulovicova, Product Program Manager, UiPath

Accelerate your Kubernetes clusters with Varnish Caching

Thijs Feryn

Recently uploaded (20)

Introduction to CHERI technology - Cybersecurity

LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...

The Art of the Pitch: WordPress Relationships and Sales

Free Complete Python - A step towards Data Science

Essentials of Automations: Optimizing FME Workflows with Parameters

Monitoring Java Application Security with JDK Tools and JFR Events

Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf

How world-class product teams are winning in the AI era by CEO and Founder, P...

Quantum Computing: Current Landscape and the Future Role of APIs

De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...

GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...

The Future of Platform Engineering

UiPath Test Automation using UiPath Test Suite series, part 3

FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf

Epistemic Interaction - tuning interfaces to provide information for AI support

Bits & Pixels using AI for Good.........

FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf

Securing your Kubernetes cluster_ a step-by-step guide to success !

Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...

Accelerate your Kubernetes clusters with Varnish Caching

Verifiable Credentials in Self-Sovereign Identity (SSI)

1. Evernym @evernym | info@evernym.com | March 2020 Verifiable Credentials Lessons from the physical world

2. On the agenda What are verifiable credentials? What lessons can we learn from the physical world? How can we apply these lessons? Conclusion Q&A

3. LET’S GO BACK IN TIME before the Internet...

6. We call these “credentials”

7. They answer the question: “Says who?” There is already a global standard for credentials - paper.

8. But it doesn’t work online The digital world had no equivalent for paper credentials… until now.

9. Introducing digital, verifiable credentials They’re a lot like the physical credentials we know and love, with a few ‘cryptographic superpowers’ that allows any relying party to complete four checks: ✔ Who issued the credential? ✔ To whom? ✔ Has it been tampered with? ✔ Has it been revoked? All without contacting the credential issuer.

10. And in November 2019, the data model for verifiable credentials became an official W3C recommendation. https://www.w3.org/TR/2019/REC-vc-data-mod el-20191119/

11. Lody’s Passport Wikimedia Commons (public domain) Wikimedia Commons (public domain)

12. So what can we learn?

13. 1. Just holding a credential isn’t enough You have to prove that you’re the legitimate holder. Maybe you should also have to prove that the device doing the proving is authorized... ● Link secrets ● Biometrics

14. 2. Revocation is a big deal The US State Department needed a way to revoke stolen passport. It needed to be timely, and the revocation needed to propagate everywhere, quickly.

15. 3. Abuse by holders isn’t the only risk ...what about the German Foreign Ministry, who “verified” Lody’s passport to grant an exit permit? What about malicious issuers? Etc. See Aries RFC 0207 — Credential Fraud Threat Model.

16. 4. Diffuse trust is important for high stakes Naval yards shouldn’t have just challenged for passport, but also for another form of ID. Like guy wires — having just one is not enough. Stephen Edmonds, Flickr, CC-BY 2.0

17. 5. Planning and governance matter Clarify everbody’s rights and responsibilities. Identify situations that are tricky. Codify which proofs are needed in which circumstances, for which levels of assurance. Make the basis of reputation explicit.

18. 6. Issuers need to have robust processes What does “Real ID” push in the US tell us? Reputation attaches to more than just the right to assert a fact (Oxford vs. Podunk U) Stephen Edmonds, Flickr, CC-BY 2.0 TSA, public domain

19. How are we applying these learnings to digital credentials?

20. We’re integrating advanced key management see http://bit.ly/dkms-v4, http://j.mp/2xvp3Wd, http://j.mp/38EEB6Z

21. Impersonating Alice outside Sovrin ● Step 1: Steal the wallet (phone) ● Step 2: Hack it → credentials + DID keys ● Step 3: ✅ Use Stolen Identity

22. Impersonating Alice on Sovrin ● Step 1: Steal the wallet (phone) ● Step 2: Hack it → credentials + DID keys + (maybe) link secret ● Step 3: ✘ Fail. Go look for a better target.

23. We’re providing process and accountability with governance frameworks see http://bit.ly/32LRkD5, http://j.mp/33cA8XK

24. We’re making credentials more secure with biometrics see https://doi.org/10.1109/MCOMSTD.001.1900033

25. We’re categorizing fraud through risk scoring Your feedback encouraged: http://j.mp/2VR09dz

26. We’re exploring proof of unique human, link secret bonds, and other fraud preventers. see http://bit.ly/2SQtbag

27. We’re enabling lighter-weight revocation with Anoncreds 2.0 see http://j.mp/3aOj8di

28. In conclusion… Verifiable credentials can take the pain out of proving who we are in the digital world. But, it’s a young technology and there are many different ways of architecting a credential and applying these lessons— some good, some bad. We’ll address these issues in depth in future webinars.

29. Thank you Questions? Please drop them in the chat! Connect with us via Twitter or Email @evernym info@evernym.com

Verifiable Credentials in Self-Sovereign Identity (SSI)

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to Verifiable Credentials in Self-Sovereign Identity (SSI)

Similar to Verifiable Credentials in Self-Sovereign Identity (SSI) (20)

More from Evernym

More from Evernym (15)

Recently uploaded

Recently uploaded (20)

Verifiable Credentials in Self-Sovereign Identity (SSI)