Re: Ideas about DID explanation from =Drummond Reed on 2018-12-09 (public-credentials@w3.org from December 2018)

From: =Drummond Reed <drummond.reed@evernym.com>
Date: Sun, 9 Dec 2018 12:53:38 +0000
To: Stephen Curran <swcurran@cloudcompass.ca>
Cc: anders.rundgren.net@gmail.com, Christopher Allen <ChristopherA@lifewithalacrity.com>, Kim Hamilton Duffy <kim@learningmachine.com>, Andrew Hughes <andrewhughes3000@gmail.com>, Credentials Community Group <public-credentials@w3.org>, Daniel Hardman <daniel.hardman@evernym.com>
Message-ID: <CAAjunnZm=QMHrZeU61=zQQdZe_kAYW4DP4YwJWkM6BoNRjQjSQ@mail.gmail.com>

To generalize on Stephen's (excellent) point, any system of record—not
just governments—can follow the same pattern: map their internal identifier
for a subject (citizen/customer/employee/contractor/partner/etc.) to
a pairwise pseudonymous DID supplied by the subject.

Now the subject can prove control over the DID to the system of record
*without* having to use/reuse the system of record's internal identifier
anywhere. Suddenly the ability for anyone to use an internal identifier as
proof of identity just goes away. It moves where it should: to the private
key(s) for a DID—and that DID shared with only the parties who need to know
that it.

Stronger security, stronger privacy, lifetime portability. What's not to
like about this picture? (Other than the key management, which we are
working on diligently).

On Sun, Dec 9, 2018 at 11:56 AM Stephen Curran <swcurran@cloudcompass.ca>
wrote:

> How a government system can get to using centrally issued IDs is exactly
> what we are trying to do in British Columbia with VON (https://vonx.io).
> We are building out the supply side of Verifiable Credentials of government
> IDs (public ones, initially) to create a demand from Organizations (run by
> Individuals) to be Holders and Provers of those Verifiable Credentials. Any
> jurisdiction can make use of the VON tools/techniques to participate in
> building that demand.
>
> Data breaches that have made someone knowing a tax-id irrelevant as to
> whether they are the subject of that ID has made the standalone use of
> those IDs pretty much useless - online or off. Requiring the presentation
> (proof) of a claim of that ID from a Verifiable Credential issued by an
> authorative source is of value, and is exactly what will motivate
> governments to move to this model. We believe this model will be a far
> cheaper and scalable vs. traditional IP/IAM systems.
>
> *Stephen Curran*
> Principal, Cloud Compass Computing, Inc.
> P // 250-857-1096
> W // https://www.cloudcompass.ca
> [image: Twitter] <https://twitter.com/scurranC3I>
> On Dec 9 2018, at 9:03 am, Anders Rundgren <anders.rundgren.net@gmail.com>
> wrote:
>
> Hi Guys,
>
> For me working in the other end of the identity conundrum [1] it would
> still be interesting knowing if there is (or could be) a "union" between
> these opposing universes.
>
> Although I'm personally heavy into innovation [2], I find that schemes
> that requires "total rewrite of everything" tend to go nowhere.
>
> Basic question: How could an existing government system using centrally
> issues tax numbers gradually adopt DIDs?
>
> thanx,
> Anders
>
> 1] https://1drv.ms/b/s!AmhUDQ0Od0GTgWnVtlfN9jTPx1LR
> 2] https://cyberphone.github.io/doc/two-visions-4-mobile-payments.pdf
>
>

Received on Sunday, 9 December 2018 12:54:14 UTC