tangle-labs-1

What is Self-Sovereign Identity?

Share This Post

by Linus Naumann

You are someone.

The world has stepped into a new age of digital connection. Our lives, societies and economies are now fully mingled with the digital world. This also means that both our digital and physical lives have something important in common, they rely heavily on our personal identity. Be it meeting with friends and family, finding job opportunities or romance, it is important for us to be able to show to others who we are.

However, our identities are not one single “thing”. Instead, they are complex constructs, consisting of not only our personal information, like our names, age, gender, or appearance, but also our qualifications and credentials, including job positions, memberships, and so much more. Our identities can look very differently to others, depending on the context of our interactions. In some situations, our names don’t matter, but our vaccination status might do so. In yet other situations the only important information about us might be if we own some event ticket or are older than a certain minimal age.

Whenever such information about us gets used on the internet or via electronic devices, we call it our digital identity.

The problem: We currently don’t own our digital identities

As of today, people on the internet have no immediate control over the entirety of their digital identities. In fact, all the important data about us is generally stored and aggregated across a few corporate and government databases. From here our data is regularly sold or exchanged, and often becomes the target of hacking or data leaks, in most cases without our expressed permission and without any share of the profits of such exploits.

Ironically, even though the current system sifts through our digital existence and eats into our privacy, it is currently not possible to create a true digital representation of ourselves. The key roadblock here is the lack of trust, which is a direct result of these unequal power structures. Important real-life credentials, like passports, job qualifications and health-data can currently not be part of our digital identity until trusted issuers such as governments and authorities engage in an interoperable digital identity system. As a direct consequence, our digital identities remain somewhat incomplete and require us to still rely on physical documents and third-party verifiers to store sensitive data. Physical documents however can easily be lost, stolen, or even forged by criminals and are becoming increasingly inconvenient in many everyday circumstances.

Own yourself with Self-Sovereign identity

Over the past decade a technology has evolved which can offer a way out of these currently centralised digital identities: distributed ledger technology (DLT), more commonly known as blockchain technology.

DLTs are one technology that allows users to fully control their digital assets and data, including crypto currencies (like Bitcoin or Ethereum), NFTs, and, less known to many, also Decentralised Identifiers (DIDs), one of the building blocks of Self-Sovereign Identity (SSI). SSIs that are based on DLTs (sometimes referred to as “decentralised identities”) offer users full control and ownership over their identity. Using a SSI users have full control over when, where, and how their data is shared, and with whom.

We could go as far as to say SSIs can fully re-create our own physical wallets in the digital space. Enabling us to not only carry digital currency, but also digital records of our ID-cards, drivers’ licences, health-insurance, and other personal documents.

And it doesn’t stop there. From school degrees, job-certificates, car-ownership documents, movie-tickets, or simple coupons for the local supermarket, all can now lie in the palm of our hand in the digital world. They can all be linked to a decentralised identifier (DID), which is a unique piece of data on a DLT that is under full control of its owner.

Security and privacy standards are achieved by storing all sensitive data only on the device of the user or with chosen trusted entities. SSI using DLT is in fact a decentralised system that allows all parties involved to easily sign, share, and verify these documents, all whilst allowing the identity holder to choose with whom, when, and where these documents are shared.

Just like with physical cards, our digital cards, called verifiable credentials (VCs), can be shown to others whenever we choose to do so. These VCs are statements from one entity about another identity, for example “Government A states that this identity belongs to John Doe” or “Event organiser X says that this identity is the owner of an event ticket”. Since these credentials are cryptographically signed by their issuers, others can easily verify their origin and check if they come from the correct source. For example, claims about citizenship might only be believed if they were signed by the government, whereas a certain event ticket would need to be signed from the respective event organiser to be accepted.

This fundamental interaction between the issuer of a credential, the holder of the identity and the verifier that checks the validity of that VC is called a trust triangle. When using SSIs, instead of current day centralised digital identities, this whole process works without any third-party entities other than the three protagonists of that specific triangle of trust (see “The airport example” below).

This basic scenario also highlights the limits of digital trust: Yes, a verifier can be sure that any given VC was issued by a certain issuer. However, at the end of the day he also needs to believe in the real-world trustworthiness of that issuer. For example, nobody would simply believe some random stranger´s statement that another stranger is the owner of an event ticket. This statement would only be believed if it comes from the event organiser, traditionally in the form of physical tickets or QR codes. For this reason, SSI still needs real-world trust- and governance frameworks, backed-up by legal standards and enforcement, in order to unfold its full potential.

SSI´s in practice – the airport example

Imagine you would like to take a flight from your local airport. Nowadays you would be required to bring your passport, flight tickets, and potentially other documents like vaccination pass, medical information, insurance, or visa – a messy mix of physical documents, printouts, emails, and QR codes.

This looks very different when a decentralised identity infrastructure is in place. Within one single identity wallet application, verifiable credentials can replace all of these documents and through the simple sharing of QR codes or exchanging a few NFC scans, you can pass each checkpoint, with airport personnel verifying the origins and validity of your credentials in seconds.

Scenario: Alice has a “passport verifiable credential” from her government and shares it with the airport personnel. The airport personnel checks on the DLT if the credential was indeed issued by the government by comparing Alice´s verifiable credential with information stored on a governmental server.

Entry to SSI through dApps

For the everyday person, using decentralised identities will start by downloading an identity wallet app. These are easy to use apps that can perform all important functions to secure your Self-Sovereign Identity with just a few clicks. Within these decentralised applications a user will be able to secure and manage their identity and credentials, retaining full control and ownership of their data, creating a privacy compliant solution that supports trust and security.

An SSI Wallet may provide the following functionality, for example:

  • Creating new decentralised identities
  • Displaying well-arranged overviews of an identity’s verifiable credentials.
  • Sharing verifiable credentials with others either online, via NFC, or QR-code.
  • Verifying the credentials of others.
  • Issuing verifiable credentials to other identity holders.

An example identity wallet (Vira by Tangle Labs).
An example identity wallet (Vira by Tangle Labs).

Decentralised identities and SSIs are currently spearheaded by visionary tech-providers and international organisations. Although the technology is new, more and more user-friendly identity wallets are being released and the interest surrounding SSI is steeply rising.

This new technology lies now at the beginning of an exciting journey that will reward its pioneers and early adopters around the globe, with the vision of a fair and secure internet of everything on the horizon.

The endgame of decentralised identities and SSI goes far beyond just representing people. Organisations like governments, companies, and sports-clubs can be represented by SSIs as well as objects like machines, cars, and even consumer products. In short, the potential use of digital identity encompasses every scenario in which the identity and information surrounding someone, or something matters in any way.

More To Explore

Identity Manager Release

Identity Manager – Self Sovereign Identity made Simple

Self-Sovereign Identity development experts Tangle Labs have just released the latest version of their open-source Identity Manager libraries that provide accessible development tools for businesses and organisations to create anything with Identity.

Open Sourcing Identity Manager

What is it? The Tangle Labs Identity Manager is an open source utility library that acts as a wrapper around most IOTA Identity functions that

Terms Of Use

Welcome to Tangle Labs Website!

These terms and conditions outline the rules and regulations for the use of Tangle Labs UG’s Website, located at tanglelabs.io.

By accessing this website we assume you accept these terms and conditions. Do not continue to use Tangle Labs Website if you do not agree to take all of the terms and conditions stated on this page.

The following terminology applies to these Terms and Conditions, Privacy Statement and Disclaimer Notice and all Agreements: “Client”, “You” and “Your” refers to you, the person log on this website and compliant to the Company’s terms and conditions. “The Company”, “Ourselves”, “We”, “Our” and “Us”, refers to our Company. “Party”, “Parties”, or “Us”, refers to both the Client and ourselves. All terms refer to the offer, acceptance and consideration of payment necessary to undertake the process of our assistance to the Client in the most appropriate manner for the express purpose of meeting the Client’s needs in respect of provision of the Company’s stated services, in accordance with and subject to, prevailing law of Switzerland. Any use of the above terminology or other words in the singular, plural, capitalization and/or he/she or they, are taken as interchangeable and therefore as referring to same.

Cookies

We employ the use of cookies. By accessing Tangle Labs Website, you agreed to use cookies in agreement with the Tangle Labs UG’s Privacy Policy.

Most interactive websites use cookies to let us retrieve the user’s details for each visit. Cookies are used by our website to enable the functionality of certain areas to make it easier for people visiting our website. Some of our affiliate/advertising partners may also use cookies.

License

Unless otherwise stated, Tangle Labs UG and/or its licensors own the intellectual property rights for all material on Tangle Labs Website. All intellectual property rights are reserved. You may access this from Tangle Labs Website for your own personal use subjected to restrictions set in these terms and conditions.

You must not:

  • Republish material from Tangle Labs Website
  • Sell, rent or sub-license material from Tangle Labs Website
  • Reproduce, duplicate or copy material from Tangle Labs Website
  • Redistribute content from Tangle Labs Website

 

Parts of this website offer an opportunity for users to post and exchange opinions and information in certain areas of the website. Tangle Labs UG does not filter, edit, publish or review Comments prior to their presence on the website. Comments do not reflect the views and opinions of Tangle Labs UG, its agents and/or affiliates. Comments reflect the views and opinions of the person who post their views and opinions. To the extent permitted by applicable laws, Tangle Labs UG shall not be liable for the Comments or for any liability, damages or expenses caused and/or suffered as a result of any use of and/or posting of and/or appearance of the Comments on this website.

Tangle Labs UG reserves the right to monitor all Comments and to remove any Comments which can be considered inappropriate, offensive or causes breach of these Terms and Conditions.

You warrant and represent that:

  • You are entitled to post the Comments on our website and have all necessary licenses and consents to do so;
  • The Comments do not invade any intellectual property right, including without limitation copyright, patent or trademark of any third party;
  • The Comments do not contain any defamatory, libellous, offensive, indecent or otherwise unlawful material which is an invasion of privacy
  • The Comments will not be used to solicit or promote business or custom or present commercial activities or unlawful activity.


You hereby grant Tangle Labs UG a non-exclusive license to use, reproduce, edit and authorize others to use, reproduce and edit any of your Comments in any and all forms, formats or media.

Hyperlinking to our Content

The following organizations may link to our Website without prior written approval:

  • Government agencies;
  • Search engines;
  • News organizations;
  • Online directory distributors may link to our Website in the same manner as they hyperlink to the Websites of other listed businesses; and
  • System wide Accredited Businesses except soliciting non-profit organizations, charity shopping malls, and charity fundraising groups which may not hyperlink to our Web site.


These organizations may link to our home page, to publications or to other Website information so long as the link: (a) is not in any way deceptive; (b) does not falsely imply sponsorship, endorsement or approval of the linking party and its products and/or services; and (c) fits within the context of the linking party’s site.

We may consider and approve other link requests from the following types of organizations:

  • commonly-known consumer and/or business information sources;
  • dot.com community sites;
  • associations or other groups representing charities;
  • online directory distributors;
  • internet portals;
  • accounting, law and consulting firms; and
  • educational institutions and trade associations.


We will approve link requests from these organizations if we decide that: (a) the link would not make us look unfavourably to ourselves or to our accredited businesses; (b) the organization does not have any negative records with us; (c) the benefit to us from the visibility of the hyperlink compensates the absence of Tangle Labs UG; and (d) the link is in the context of general resource information.

These organizations may link to our home page so long as the link: (a) is not in any way deceptive; (b) does not falsely imply sponsorship, endorsement or approval of the linking party and its products or services; and (c) fits within the context of the linking party’s site.

If you are one of the organizations listed in paragraph 2 above and are interested in linking to our website, you must inform us by sending an e-mail to Tangle Labs UG. Please include your name, your organization name, contact information as well as the URL of your site, a list of any URLs from which you intend to link to our Website, and a list of the URLs on our site to which you would like to link. Wait 2-3 weeks for a response.

Approved organizations may hyperlink to our Website as follows:

  • By use of our corporate name; or
  • By use of the uniform resource locator being linked to; or
  • By use of any other description of our Website being linked to that makes sense within the context and format of content on the linking party’s site.

No use of Tangle Labs UG’s logo or other artwork will be allowed for linking absent a trademark license agreement.

iFrames

Without prior approval and written permission, you may not create frames around our Webpages that alter in any way the visual presentation or appearance of our Website.

Content Liability

We shall not be hold responsible for any content that appears on your Website. You agree to protect and defend us against all claims that is rising on your Website. No link(s) should appear on any Website that may be interpreted as libellous, obscene or criminal, or which infringes, otherwise violates, or advocates the infringement or other violation of, any third party rights.

Your Privacy

Please read our Privacy Policy

Reservation of Rights

We reserve the right to request that you remove all links or any particular link to our Website. You approve to immediately remove all links to our Website upon request. We also reserve the right to amen these terms and conditions and it’s linking policy at any time. By continuously linking to our Website, you agree to be bound to and follow these linking terms and conditions.

Removal of links from our website

If you find any link on our Website that is offensive for any reason, you are free to contact and inform us any moment. We will consider requests to remove links but we are not obligated to or so or to respond to you directly.

We do not ensure that the information on this website is correct, we do not warrant its completeness or accuracy; nor do we promise to ensure that the website remains available or that the material on the website is kept up to date.

Disclaimer

To the maximum extent permitted by applicable law, we exclude all representations, warranties and conditions relating to our website and the use of this website. Nothing in this disclaimer will:

  • limit or exclude our or your liability for death or personal injury;
  • limit or exclude our or your liability for fraud or fraudulent misrepresentation;
  • limit any of our or your liabilities in any way that is not permitted under applicable law; or
  • exclude any of our or your liabilities that may not be excluded under applicable law.


The limitations and prohibitions of liability set in this Section and elsewhere in this disclaimer: (a) are subject to the preceding paragraph; and (b) govern all liabilities arising under the disclaimer, including liabilities arising in contract, in tort and for breach of statutory duty.

As long as the website and the information and services on the website are provided free of charge, we will not be liable for any loss or damage of any nature.

Privacy Policy

Here at the Tangle Labs Website, accessible from tanglelabs.io, one of our main priorities is the privacy of our visitors. This Privacy Policy document contains types of information that is collected and recorded by Tangle Labs Website and how we use it.

If you have additional questions or require more information about our Privacy Policy, do not hesitate to contact us.

This Privacy Policy applies only to our online activities and is valid for visitors to our website with regards to the information that they shared and/or collect in Tangle Labs Website. This policy is not applicable to any information collected offline or via channels other than this website. .

Consent

By using our website, you hereby consent to our Privacy Policy and agree to its terms.

Information we collect

The personal information that you are asked to provide, and the reasons why you are asked to provide it, will be made clear to you at the point we ask you to provide your personal information.

If you contact us directly, we may receive additional information about you such as your name, email address, phone number, the contents of the message and/or attachments you may send us, and any other information you may choose to provide.

When you register for an Account, we may ask for your contact information, including items such as name, company name, address, email address, and telephone number.

How we use your information

We use the information we collect in various ways, including to:

  • Provide, operate, and maintain our website
  • Improve, personalize, and expand our website
  • Understand and analyse how you use our website
  • Develop new products, services, features, and functionality
  • Communicate with you, either directly or through one of our partners, including for customer service, to provide you with updates and other information relating to the website, and for marketing and promotional purposes
  • Send you emails
  • Find and prevent fraud

Log Files

Tangle Labs Website follows a standard procedure of using log files. These files log visitors when they visit websites. All hosting companies do this and a part of hosting services’ analytics. The information collected by log files include internet protocol (IP) addresses, browser type, Internet Service Provider (ISP), date and time stamp, referring/exit pages, and possibly the number of clicks. These are not linked to any information that is personally identifiable. The purpose of the information is for analysing trends, administering the site, tracking users’ movement on the website, and gathering demographic information.

Cookies and Web Beacons

Like any other website, Tangle Labs Website uses ‘cookies’. These cookies are used to store information including visitors’ preferences, and the pages on the website that the visitor accessed or visited. The information is used to optimize the users’ experience by customizing our web page content based on visitors’ browser type and/or other information.

For more general information on cookies, please read the Cookies article on Generate Privacy Policy website.

Third Party Privacy Policies

Tangle Labs Website’s Privacy Policy does not apply to other advertisers or websites. Thus, we are advising you to consult the respective Privacy Policies of these third-party ad servers for more detailed information. It may include their practices and instructions about how to opt-out of certain options.

You can choose to disable cookies through your individual browser options. To know more detailed information about cookie management with specific web browsers, it can be found at the browsers’ respective websites.

CCPA Privacy Rights (Do Not Sell My Personal Information)

Under the CCPA, among other rights, California consumers have the right to:

Request that a business that collects a consumer’s personal data disclose the categories and specific pieces of personal data that a business has collected about consumers.

Request that a business delete any personal data about the consumer that a business has collected.

Request that a business that sells a consumer’s personal data, not sell the consumer’s personal data.

If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us.

GDPR Data Protection Rights

We would like to make sure you are fully aware of all of your data protection rights. Every user is entitled to the following:

The right to access – You have the right to request copies of your personal data. We may charge you a small fee for this service.

The right to rectification – You have the right to request that we correct any information you believe is inaccurate. You also have the right to request that we complete the information you believe is incomplete.

The right to erasure – You have the right to request that we erase your personal data, under certain conditions.

The right to restrict processing – You have the right to request that we restrict the processing of your personal data, under certain conditions.

The right to object to processing – You have the right to object to our processing of your personal data, under certain conditions.

The right to data portability – You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.

If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us.

Children’s Information

Another part of our priority is adding protection for children while using the internet. We encourage parents and guardians to observe, participate in, and/or monitor and guide their online activity.

Tangle Labs Website does not knowingly collect any Personal Identifiable Information from children under the age of 13. If you think that your child provided this kind of information on our website, we strongly encourage you to contact us immediately and we will do our best efforts to promptly remove such information from our records.