Not yet a member of the Decentralized Identity Foundation (DIF), IBMâs blockchain director Jerry Cuomo was already thinking about assisting the effort just moments after being introduced to the group at CoinDeskâs Consensus 2017 conference.
âThe need to standardize is key,â he told CoinDesk, explaining the appeal of DIF, the newest blockchain consortia in an increasing diverse ecosystem.
âItâs a good start,â he adds.
But while IBM may just be getting up to speed, involved in the effort before launch are enterprise firms like Microsoft and Accenture, along with a long list of startups. These include more well-known names (Civic, Gem, IDEO, Netki), and those seeking to make an impact (Consent and Blockchain Foundary) in the digital identity space.
As explained by Wayne Vaughan, CEO of member startup Tierion, what unites the group is a focus on building open-source software, code that will support all the different blockchain identity work ongoing throughout the world.
âItâs about contributing to common technologies for certain areas, and still being able to run our businesses,â Vaughan said. âTake Civic. If people are generating identities and running Civic, if itâs only inside Civic that this works, whatâs the point?â
Instead, this new breed of identity company concentrated on blockchain needs to work together, he argued â at least on the core architecture that more specific identity applications will ride on.
Vaughan continued:
âOur real competition isnât with each other, but with the big identifiers in the world: Facebook, Apple, Twitter. They control all the identity information that we have.â
More specifically, common areas of work include ensuring interoperability of names and identifiers used in blockchain identity systems; the attestations and reputation data enabling verification of information associated with these identities; and methods for securing the blockchain-based identity data underlying them.
The long-term goal is to use this approach to create tools that enable a college like New York University, for example, to validate to others that someone really graduated from a certain program.
But the result could be that such systems even enable new forms of identification and authentication not yet realized or conceived. For instance, autonomous machine-to-machine payments have been on many industry participantsâ minds since blockchain for the Internet of Things (IoT) environment got a serious new look after several commercial applications proved viable.
âThese identifiers and names are not just for people,â Vaughan explained. âItâs for companies and devices. The blockchain provides a root of trust that isnât controlled by any one organization.â
What does a blockchain-based identity system look like in practice?
Those involved seem to have a clear idea. The end result, Vaughan hopes, is that there will be a reference implementation that all the companies involved can use to call and query identity-related information. But one thatâs distributed and decentralized.
If you were to build such a system with todayâs tools, Vaughan explains, itâs very possible to end up with all your data stored on a cloud platform like Amazon Web Services or Dropbox.
This centralized system, though, is vulnerable to hacks, snooping and other types of compromise. By using a blockchain-based system, however, data could be called and verified (instead of just shared), enabling the selective disclosure and verification of the underlying information in a way that puts control back in the hands of users.
âItâs like name services on the web. Hereâs the four locations where Wayneâs stuff is, no matter if itâs running on our version. They can speak the same protocol,â Vaughan said.
With this new system, Vaughan continued, he might chose to use a string of letters â say âvaughan.idâ â to represent his identity, the same way he might have âTierion.comâ to represent his business online today. Just as on the internet, this moniker would aim to be broadly accessible, not barred off like early email silos.
So, where is the system in development today?
According to Microsoftâs head of decentralized identity, Daniel Buchner, four working groups are underway so far. Yet, individual companies involved in the working groups are still seeking to build out their existing infrastructure in their preferred way. Blockstack, for example, will continue to use the bitcoin blockchain, while uPort will build on ethereum.
As explained by DIF members, the goal now is to enlist other developers and other standards groups, like the W3C and IETF, which are already active in this area. For now, this means more conversations with key players such as IBM to help the foundation reimagine how identity services could be delivered in the future, in the hope of doing it better than our current system.
âIBM worked with the US government on social security, and that has become, in the US to this day, the cornerstone of how we share our identity,â IBMâs Cuomo said.
He concluded:
âItâs 2017, we can do better than that.â
Digital identity image via Shutterstock
