8 minute read

Protocol, Governance, Education, Ecosystem

this is a placeholder image
@Delpadschnick CryptoDesign.io

Main

  • Hyperledger Indy - Distributed Ledger and Utility Library - Twitter - Chat - Forum - Wiki - Documentation

    Hyperledger Indy provides tools, libraries, and reusable components for providing digital identities rooted on blockchains or other distributed ledgers so that they are interoperable across administrative domains, applications, and any other silo.

  • hyperledger/indy-node

    This codebase embodies all the functionality to run nodes (validators and/or observers) that provide a self-sovereign identity ecosystem on top of a distributed ledger. It is the core project for Indy; over time, all other indy-* projects may collapse into this one, except for indy-sdk.

  • hyperledger/indy-sdk

    This is the official SDK for Hyperledger Indy, which provides a distributed-ledger-based foundation for self-sovereign identity. Indy provides a software ecosystem for private, secure, and powerful identity, and the Indy SDK enables clients for it. The major artifact of the SDK is a C-callable library; there are also convenience wrappers for various programming languages and Indy CLI tool.

About

  • Strengthening Hyperledger Indy and Self-Sovereign Identity 2019-07-08

    Forrester’s recent “Top Recommendations for Your Security Program, 2019,” testifies to this, describing SSI as a “win” for customers and businesses, and urged chief information security officers (CISO) to “Empower your customers to control their own identities via self-sovereign identity.”

    They can do this because exchanging verifiable digital credentials is at the heart of SSI. This ends the need for massive data silos, honeypots, and unsecured data repositories housed at countless corporations and organizations. Instead, anyone can hold secure and verifiable information about themselves

  • An overview of Self-Sovereign Identity: the use case at the core of Hyperledger Indy 2019-05-01

    Credential issuers, holders, and verifiers are peers on an SSI network. Any person or organization can play any or all of the roles, creating a decentralized system for the exchange of trustworthy, digital credentials.

    • Credential issuers determine what credentials to issue, what the credential means, and how they’ll validate the information they put in the credential.
    • Credential holders determine what credentials they need and which they’ll employ in workflows to prove things about themselves.
    • Credential verifiers determine what credentials to accept, and which issuers to trust.
  • [Video] Sovrin: Public, Permissioned and Still Decentralized 2018-12-17 Nathan George

    Lighting talk with Nathan George (Sovrin CTO) taking the audience through a high-level look at the Sovrin DLT, how it can be public/permissioned yet still decentralized, and why this is right for identity solutions.

  • [Video] Hyperledger Indy Explainer Video 2018-12-06 Hyperledger Foundation

    Individuals will not have to rely on big organizations to store and share their personal data. Instead the user controls what data they want to provide access to and for how long.

  • [Video] Self-Sovereign Identity with Hyperledger Indy\Sovrin 2018-05-26 Calvin Cheng FOSSASIA 2018

    Implementing a public, permissioned blockchain for online digital identities.

  • Implementing Privacy by Design in Hyperledger Indy 2018-09 Infoq

    Hyperledger Indy has been built using a privacy first approach. As the world shifts to more regulation, including GDPR and ePrivacy requirements, Indy can minimize the amount of details a user shares when having their data validated by a third-party system.

  • Privacy by Design in Hyperledger Indy 2018-09-12 Hyperledger Foundation

    Hyperledger Indy’s approach to privacy includes elliptic curve cryptography, pairwise DIDs, semi-trusted agents, agent-to-agent communication using techniques such as libsodium’s sealed box and authenticated encryption, zero-knowledge proofs, a separation between credentials and proofs, privacy-preserving credential revocation features, an affinity for data and key storage at the edge, and a carefully constructed wallet interface that manages personal secrets with industry best practices. In addition, privacy-preserving agent (device) revocation has been demonstrated as a proof of concept.

  • Blockchain for Business 2018-07-10 Linux Foundation

    2–4 hours per week, for 10 weeks. A primer to blockchain, distributed ledgers and Hyperledger technologies.

  • The Rise of Self-Sovereign Identity - Hyperledger Indy 2018-07-03 WSO2

    You can store your identities in a location where you can edit or delete them. After giving the location of your identities, the Indy platform lists your location with a globally identifiable name. When someone wants to read your identity data, the Indy platform points out the location of your identities. Let’s look into the details of how it works.

  • Hyperledger Welcomes Project Indy 2017-05-02 {ANN)

    Indy is all about giving identity owners independent control of their personal data and relationships. Indy is built so that the owner of the identity is structurally part of transactions made about that identity. Pairwise identifiers not only prevent correlation, but they stop third parties from transacting without the identity owner taking part since the identity owner is the only place pairwise identifiers can be correlated.

Development

GitHub

  • indy-plenum - Byzantine Fault Tolerant Protocol [wiki]

    “Byzantine fault tolerance is a sub-field of fault tolerance research inspired by the Byzantine Generals’ Problem, which is a generalized version of the Two Generals’ Problem.”

    • Storage components - As of now, RocksDB is used as a key-value database for all Storages.
  • indy-sdk - Everything needed to build applications that interact with an Indy distributed identity ledger.
  • indy-node - The server portion of a distributed ledger purpose-built for decentralized identity.
  • indy-anoncreds - Anonymous credentials protocol implementation in python
  • indy-test-automation 2023-03-28

    Automation tools for testing of Indy Project components.

Implementation

  • hyperledger-labs/business-partner-agent 2023-05-17 - The Business Partner Agent allows to manage and exchange master data between organizations

    The current maintainers stop active contribution to the further development of the Hyperledger Labs project Business Partner Agent, as well as the related project Business Partner Agent Helm Chart. To give existing users of the Business Partner Agent enough lead time, we are willing to continue maintaining the project for now. For more information see the Hyperledger Discord channel.

  • IDunion 

    enables self-determined identities based on Self-Sovereign Identity (SSI) technologies Hyperledger Indy and Hyperledger Aries. The aim of the IDunion organisation is to create an open ecosystem for decentralised identity management, which can be used  worldwide and is based on European values and regulations. IDunion is also a project co-funded by the German Federal Ministry of Economic Affairs (BMWi) as part of the Showcases Secure Digital Identities program. We gave an introduction covering

  • BC Gov Collaboration on the Business Partner Agent, sharing our Roadmap (Create Creds, Issue them, Verify them, Hold them, publish them, ZKPs, Selective Disclosure) 2021-05-06 Matthew Hall IIW
    • Viewing organizations as Issuers, Verifiers and Holders
    • Talked about the complexity of defining a verifiable credential, I.e. what are you attesting to?
    • Went over the need to make it easier for users to be able to create credential schemas and credential definitions without having to gain understanding about the tech.
  • IXO World - Guided by the UN framework of 17 Global Goals to end poverty, protect the planet and ensure prosperity for all, by the year 2030. [ϟ] (ethereum ocean ipld)

    “Achieving the Sustainable Development Goals demands embracing the data revolution “ UN Secretary - General (2014)

  • Legal Entity Identifier blockchained by a Hyperledger Indy implementation of GraphChain 2018-10-23

    The main idea behind GraphChain is to use blockchain mechanisms on top of an abstract RDF graphs. This paper presents an implementation of GraphChain in the Hyperledger Indy framework. The whole setting is shown to be applied to the RDF graphs containing information about Legal Entity Identifiers (LEIs).

  • NB Orbit Enterprise/ 2022

    NB Orbit Enterprise is a no-code self-sovereign identity platform that facilitates the storage, issuance and verification of verifiable credentials that are held and owned by end users in digital wallets.

    The platform contains a collection of technologies and concepts in identity management, distributed and edge computing, distributed ledger technologies and cryptography.

Literature

  • A Framework for Designing Cryptographic Key Management Systems 2023-06-12

    This Framework for Designing Cryptographic Key Management Systems (CKMS1) is a description of the topics to be considered and the documentation requirements (henceforth referred to as requirements) to be addressed when designing a CKMS. The CKMS designer satisfies the requirements by selecting the policies, procedures, components (hardware, software, and firmware), and devices (groups of components) to be incorporated into the CKMS, and then specifying how these items are employed to meet the requirements of this Framework

  • An automatized Identity and Access Management system for IoT combining SSI and smart contracts 2023-06-11 Montassar Naghmouchi, Hella Kaffel, and Maryline Laurent

    This paper proposes a blockchain-based identity and access management system for IoT – specifically smart vehicles- as an example of use-case, showing two interoperable blockchains, Ethereum and Hyperledger Indy, and a self-sovereign

  • Technical Design and Development of a Self-Sovereign Identity Management Platform for Patient-Centric Healthcare Using Blockchain Technology 2022-04-22 Blockchain Healthcare Today

    To manage patient’s self-sovereign identity, we leveraged the Hyperledger Indy blockchain framework to store patient’s decentralized identifiers (DIDs) and the schemas or format for each credential type. In contrast, the credentials containing patient data are stored “off-ledger” in each person’s wallet and accessible via a computer or smartphone. We used Hyperledger Aries as a middleware layer (API) to connect Hyperledger Indy with the front-end, which was developed using a JavaScript framework, ReactJS (Web Application) and React Native (iOS Application).

  • Blockchain Trilemma for Decentralized Identity: Learning from Hyperledger Indy 2022-04-12 Paul Dunphy, OneSpan, Cambridge, UK

    The current credential verification process relies on transaction processing by a ledger with transaction processing bottlenecks, which may constrain the ideal of non-repudiation.

  • Blockchain Trilemma for Decentralized Identity: Learning from Hyperledger Indy 2022-04-22 Paul Dunphy, OneSpan, Cambridge, UK

    The current credential verification process relies on transaction processing by a ledger with transaction processing bottlenecks, which may constrain the ideal of non-repudiation.

Zero Knowledge Proofs in Indy

See Also


Ecosystem Overview

This page includes a breakdown of the Web Standards, Protocols,Open Source Projects, Organizations, Companies, Regions, Government and Policy surrounding Verifiable Credentials and Self Sovereign Identity.

Updated: 2024-02-26 4 minute read

Tags:

Verifiable Credentials with JSON-LD and BBS+ Signatures

BBS signatures were implicitly proposed by Boneh, Boyen, and Shacham (CRYPTO ’04) as part of their group signature scheme, and explicitly cast as stand-alone signatures by Camenisch and Lysyanskaya (CRYPTO ’04). A provably secure version, called BBS+, was then devised by Au, Susilo, and Mu (SCN ’...

Updated: 2023-09-29 8 minute read

Tags:
BBS
Data Integrity
JSON-LD
Verifiable Credentials
W3C

Verifiable Credentials with JOSE (JWT) / COSE (CBOR)

Digital proof mechanisms, a subset of which are digital signatures, are required to ensure the protection of a verifiable credential. Having and validating proofs, which may be dependent on the syntax of the proof (for example, using the JSON Web Signature of a JSON Web Token for proofing a key h...

Updated: 2023-09-09 12 minute read

Tags:
COSE
IANA
JOSE
JWT
Verifiable Credentials
W3C

Verifiable Credentials (ZKP-CL) Anoncreds

This credential format was created specifically to leverage the CL Signatures. JSON-JWT and JSON-LD Signatures each have their own way of representing the meaning of the attributes within a VC. JSON-JWT references an IANA registry and assumes a “closed world” authority model based on that authori...

Updated: 2023-09-29 6 minute read

Tags:
Anoncreds
Evernym
Hyperledger Foundation
IBM
IDEMIX
Sovrin Foundation
Verifiable Credentials
W3C
ZKP-CL