Self-Sovereign Identity Systems: Opportunities and challenges

Abstract

Digital identitetshåndtering har tradisjonelt blitt brukt for å logge inn på en maskin på jobb eller for å åpne epostkontoer. Idag er vår digitale identitet en stor del av våre daglige liv, og Self-Sovereign Identity er det neste steget for digital identitetshåndtering. Men hva er egentlig Self-Sovereign Identity? I denne oppgaven legger vi frem et forslag til kriterier og prinsipper, og basert på dette forslaget gjør vi en systematisk gjennomgang av implementasjoner av Self-Sovereing Identity systemene uPort, Sovrin, ShoCard og Civic. Konklusjonen er at Self-Sovereign Identity ikke enda er løst, og at det er viktig at akademia og non-profit organisasjoner tar ledelsen og leverer en standardisert måte å håndtere digitale identiteter.

Digital identity systems has been around for almost as long as the computer and have evolved with the increased usage of online services. Digital identities have traditionally been used as a way of authenticating to the computer systems at work, or a personal online email. Today, our entire lives have a digital counterpart that become an integral part of everyday life. Self-Sovereign Identity (SSI) is the next step in the evolution of digital identity management systems and distributed ledgers have provided necessary building blocks for Self-Sovereign Identity Systems. But what exactly is an Ideal Self-Sovereign Identity? In this research we propose a definition and set of principles to characterizes the nature of successful SSI systems. Based on our criteria and principles we present a systematic analytical study of the current SSI landscape, represented by uPort, Sovrin, ShoCard, and Civic. A system for truly self-sovereign online identities are not yet archived in the current state of the field. It is our conclusion that it is paramount that a non-profit organization or academia take the reins on this effort and deliver a standardized way of managing online identities.