Self sovereign identity is a form of decentralised credential management. During credential verification, data exchange only happens between the data owner and the verifier without passing through any third parties. While this approach offers a privacy-centric solution, it poses a challenge. How do verifiers trust that the credential is vouched by a trusted source? More specifically, how do verifiers know that the issuer has the reputation or is authorised to issue the credential? In this paper, we propose a trust registry design that handles the aspect of human trust in self sovereign identity. We also introduce an incentivisation mechanism for the trust registry in order to motivate each stakeholder to participate actively and honestly.
翻译:自我主权身份是一种分散的认证管理形式。 在身份验证过程中,数据交换只在数据所有人和核实人之间进行,而不经过第三方。 虽然这种方法提供了以隐私为中心的解决方案,但它构成一个挑战。 验证人如何相信证书是由可靠来源提供的? 更具体地说,验证人如何知道发行人有声誉或被授权签发证书? 在本文件中,我们建议采用信任登记册设计,处理人类对自我主权身份的信任方面。 我们还为信托登记处引入了激励机制,以激励每个利益攸关方积极和诚实地参与。