{"id":23571,"date":"2017-05-05T22:25:51","date_gmt":"2017-05-05T19:25:51","guid":{"rendered":"https:\/\/www.altoros.com\/blog\/?p=23571"},"modified":"2017-07-24T12:18:08","modified_gmt":"2017-07-24T09:18:08","slug":"hyperledger-incubates-the-indy-project-to-address-identity-management","status":"publish","type":"post","link":"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/","title":{"rendered":"Hyperledger Incubates the Indy Project to Address Identity Management"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_79_2 counter-hierarchy ez-toc-counter ez-toc-transparent ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"Toggle Table of Content\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/#Importance_of_identity_management\" >Importance of identity management<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/#Power_to_the_people\" >Power to the people<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/#Is_self-sovereignty_inevitable\" >Is self-sovereignty inevitable?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/#A_new_public_permissioned_blockchain\" >A new public, permissioned blockchain<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/#Who_should_control_permission\" >Who should control permission?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/#Decentralized_identifiers_are_key\" >Decentralized identifiers are key<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/#Built_upon_earlier_principles\" >Built upon earlier principles<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/#Other_Hyperledger_incubations\" >Other Hyperledger incubations<\/a><\/li><\/ul><\/nav><\/div>\n<h3><span class=\"ez-toc-section\" id=\"Importance_of_identity_management\"><\/span>Importance of identity management<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p><a href=\"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2017\/05\/Nobody-Knows-Youre-a-Dog.jpg\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2017\/05\/Nobody-Knows-Youre-a-Dog-269x300.jpg\" alt=\"Nobody Knows Youre a Dog\" width=\"269\" height=\"300\" class=\"alignright size-medium wp-image-23574\" \/><\/a><\/p>\n<p>&#8220;On the Internet, nobody knows you&#8217;re a dog,\u201d reads the caption on an iconic <a href=\"https:\/\/en.wikipedia.org\/wiki\/File:Internet_dog.jpg\" target=\"_blank\">cartoon panel<\/a> from a cartoonist Peter Steiner in <em>The New Yorker<\/em> in the 90s.<\/p>\n<p>Therein lies the problem a quarter century later. <a href=\"https:\/\/www.altoros.com\/blog\/blockchain-can-help-banks-to-better-manage-the-identity-of-clients\/\" target=\"_blank\">Identity and its management<\/a> have become an enormous pain to individuals and organizations alike. Now, a new Hyperledger incubation, referred to as <b>Indy<\/b>, aims to address and solve the problem.<\/p>\n<p>Indy <a href=\"https:\/\/www.hyperledger.org\/blog\/2017\/05\/02\/hyperledger-welcomes-project-indy\" target=\"_blank\">has been incubated<\/a> by Hyperledger and is described as a set of \u201ctools, libraries, and reusable components for providing digital identities rooted on blockchains or other distributed ledgers so that they are interoperable across administrative domains, applications, and any other silo.\u201d <\/p>\n<p><a href=\"https:\/\/www.windley.com\/archives\/2017\/05\/hyperledger_welcomes_project_indy.shtml\" target=\"_blank\">Indy<\/a> was incubated with code from the <a href=\"http:\/\/www.sovrin.org\" target=\"_blank\">Sovrin Foundation<\/a>, a non-profit organization formed in September 2016 with the aim of using distributed ledger technology to create \u201cself-sovereign\u201d identity management. The Sovrin code was, in turn, originally developed by <a href=\"https:\/\/www.evernym.com\/\" target=\"_blank\">Evernym<\/a>.<\/p>\n<p>Hyperledger has now incubated <a href=\"https:\/\/www.hyperledger.org\/use\" target=\"_blank\">eight tools<\/a>, a list that also includes Blockchain Explorer, Cello, <a href=\"https:\/\/www.altoros.com\/blog\/hyperledgers-fabric-composer-simplifies-business-network-modeling-on-blockchain\/\">Composer<\/a> (another new incubation), <a href=\"https:\/\/www.altoros.com\/blog\/hyperledger-fabric-v1-0-to-bring-improved-transactions-and-a-pluggable-data-store\/\" >Fabric<\/a>, <a href=\"https:\/\/www.altoros.com\/blog\/hyperledgers-sawtooth-lake-aims-at-a-thousand-transactions-per-second\/\" >Sawtooth<\/a> (previously known as Sawtooth Lake), <a href=\"https:\/\/www.altoros.com\/blog\/the-iroha-project-to-bring-mobility-to-blockchain-with-simple-apis\/\" >Iroha<\/a>, and <a href=\"https:\/\/www.altoros.com\/blog\/hyperledger-incubation-burrow-integrates-permissioned-ethereum-virtual-machine\/\" target=\"_blank\">Burrow<\/a>. Here&#8217;s the <a href=\"https:\/\/docs.google.com\/document\/d\/1YzXz0aM8w7kSp3_ao3ue9tOFwK9paofXbtBptR1Jucg\/edit\" target=\"_blank\">Indy incubation proposal<\/a>.<\/p>\n<p>&nbsp;<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Power_to_the_people\"><\/span>Power to the people<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>In its essence, <a href=\"https:\/\/www.altoros.com\/blog\/the-journey-to-a-self-sovereign-digital-identity-built-on-a-blockchain\/\">self-sovereign identity<\/a> puts the control of the Internet identity in the hands of users rather than organizations. Sovrin&#8217;s efforts are part of a movement to end three decades of control by website owners to the services they offer.<\/p>\n<p>Today&#8217;s prevailing approach requires individuals to establish a login with every website, which they wish to interact with\u2014whether Facebook or Twitter, Amazon or any place they shop, government agencies, and increasingly, media companies. Thus, as we all know, we can have dozens of logins as part of our web life.<\/p>\n<p>This approach means either we have:<\/p>\n<ul>\n<li style=\"margin-bottom: 6px;\">Dozens of separate logins and passwords (for the 1%, who are careful about this sort of thing)<\/li>\n<li style=\"margin-bottom: 6px;\">The same login and password (keeping things simple but thereby creating honeypots of access for the thieves, who break into customer lists)<\/li>\n<li>That maddening mixture, in which we have several slightly different logins and passwords to meet the varying login requirements (thereby complicating our lives while still creating significant honeypots).<\/li>\n<\/ul>\n<p>The so-called \u201c<a href=\"https:\/\/www.law.cornell.edu\/wex\/adhesion_contract_contract_of_adhesion\" target=\"_blank\">adhesion contracts<\/a>,\u201d in which the companies, not the individuals, establish the rules of the game, are another annoying aspect of this tradition. A bigger problem with the approach involves a steady march of break-ins into customer databases and the credit card information stored there. Additionally, the system is massively duplicative and inefficient, with thousands of organizations required to keep their own silos of data about millions of the same customers.<\/p>\n<p><center><a href=\"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2017\/05\/indy-example-of-a-verifiable-claim-interaction.png\"><img decoding=\"async\" src=\"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2017\/05\/indy-example-of-a-verifiable-claim-interaction.png\" alt=\"indy-example-of-a-verifiable-claim-interaction\" width=\"640\" class=\"aligncenter size-full wp-image-23679\" \/><\/a><small>A typical example of a verifiable claim interaction (<a href=\"https:\/\/docs.google.com\/document\/d\/1YzXz0aM8w7kSp3_ao3ue9tOFwK9paofXbtBptR1Jucg\/edit\" target=\"_blank\">Image credit<\/a>)<\/small><\/center><\/p>\n<p><a href=\"https:\/\/sovrin.org\/docs\/\" target=\"_blank\">According to the Sovrin Foundation<\/a>, 30 to 40% of contact center call volume relates to password and account recovery, and 25 people per minute in the US alone become identity-theft victims.<\/p>\n<p>&nbsp;<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Is_self-sovereignty_inevitable\"><\/span>Is self-sovereignty inevitable?<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>None of this is new or particularly shocking information. We all know the current system is antiquated and leaky. The question is, what can the Indy project do about it?<\/p>\n<p>In one of its white papers, \u201c<a href=\"https:\/\/sovrin.org\/The%20Inevitable%20Rise%20of%20Self-Sovereign%20Identity.pdf\" target=\"_blank\">The Inevitable Rise of Self-Sovereign Identity<\/a>,\u201d the Sovrin Foundation makes several big points, stating that &#8220;the evolution of the Internet identity is the result of trying to satisfy three basic requirements:<\/p>\n<ol>\n<li style=\"margin-bottom: 6px;\"><strong>Security.<\/strong> The identity information must be protected from unintentional disclosure.<\/li>\n<li style=\"margin-bottom: 6px;\"><strong>Control.<\/strong> The identity owner must be in control of who can see and access their data and for what purposes.<\/li>\n<li><strong>Portability.<\/strong> Users must be able to exploit their identities data wherever they want and not be tied with a single provider.&#8221;<\/li>\n<\/ol>\n<p>Other excerpts reveal more of the organization&#8217;s thinking.<\/p>\n<blockquote><p><em>\u201cTo create the long-missing identity layer of the Internet, a new, trusted infrastructure is required, which enables identity owners to share not only identity, but also verified attributes about people, organizations and things, with full permission and consent.\u201d \u2014The Sovrin Foundation<\/em><\/p><\/blockquote>\n<p>\u201cFor identities to be truly self-sovereign, this infrastructure needs to reside in an environment of diffuse trust, not belonging to or controlled by any single organization or even a small group of organizations.\u201d<\/p>\n<blockquote><p><em>\u201cThe distributed ledger technology is the breakthrough that makes this possible. It enables multiple institutions, organizations, and governments to work together for the first time by forming a decentralized network much like the Internet itself, where data is replicated in multiple locations to be resistant to faults and tampering.\u201d \u2014The Sovrin Foundation<\/em><\/p><\/blockquote>\n<p>&nbsp;<\/p>\n<h3><span class=\"ez-toc-section\" id=\"A_new_public_permissioned_blockchain\"><\/span>A new public, permissioned blockchain<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Sovrin, and Indy, propose a \u201cpublic permissioned\u201d blockchain system. This is a new but, perhaps, inevitable idea. It stands in contrast to public and permissionless systems\u2014that is, anyone can join without exception (permission). It also stands in contrast to <a href=\"https:\/\/www.altoros.com\/blog\/general-availability-of-hyperledger-fabric-v1-0-what-to-expect-in-2017-and-when\/\">Hyperledger Fabric<\/a> and other blockchains that are private and permissioned\u2014networks that are formed by a group of members, who regulate who can join and what they can do.<\/p>\n<p>The Indy public permissioned network is open to all, and it is the individual that gives permission for his or her identity to be validated. Additionally, the Sovrin Foundation controls transaction validations within the ledger at this point, and now the Hyperledger Project will develop the distributed ledger technology into a blockchain-based project.<\/p>\n<p><center><a href=\"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2017\/05\/indy-deployment-achitecture.png\"><img decoding=\"async\" src=\"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2017\/05\/indy-deployment-achitecture-1024x639.png\" alt=\"indy-deployment-achitecture\" width=\"640\" class=\"aligncenter size-large wp-image-23680\" \/><\/a><small>Indy deployment achitecture (<a href=\"https:\/\/docs.google.com\/document\/d\/1YzXz0aM8w7kSp3_ao3ue9tOFwK9paofXbtBptR1Jucg\/edit\" target=\"_blank\">Image credit<\/a>)<\/small><\/center><\/p>\n<p>&nbsp;<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Who_should_control_permission\"><\/span>Who should control permission?<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Personal data is not written to this ledger, but exchanged only over peer-to-peer encrypted connections off of the ledger. As with other blockchains, the ledger is a metadata repository that only \u201canchors\u201d encrypted data, providing immutable proofs that transactions occurred.<\/p>\n<p>\u201cOpen, decentralized systems enable individuals to fully own and manage their own identities, leading to the idea of \u201cself-sovereign\u201d identity systems, according to the \u201c<a href=\"https:\/\/www.cariboudigital.net\/new\/wp-content\/uploads\/2016\/08\/Caribou-Digitial-Omidyar-Network-Private-Sector-Digital-Identity-In-Emerging-Markets.pdf\" target=\"_blank\">Private-Sector Digital Identity in Emerging Markets<\/a>\u201d white paper by Caribou Digital Publishing and the Omidyar Network.<\/p>\n<p>\u201cThese systems use the combinations of the distributed ledger and encryption technology to create immutable identity records. Individuals create an identity &#8216;container&#8217; that allows them to accept attributes or credentials from any number of organizations, including the state, in a networked ecosystem that is open to any organization to participate (e.g., to issue credentials),\u201d according to this paper. <\/p>\n<p>\u201cEach organization can decide whether to trust credentials in the container based on which organization verified or attested to them; in other words, a mortgage company may accept a credential issued by a leading global bank, but not the one issued by a local bank. Importantly, this model does not require a state-based credential to be initiated (the state credential can be added at a later time, or not at all), which removes a barrier to adoption.\u201d<\/p>\n<p><center><a href=\"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2017\/05\/indy-peer-to-peer-off-ledger-agent-interaction.png\"><img decoding=\"async\" src=\"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2017\/05\/indy-peer-to-peer-off-ledger-agent-interaction-1024x618.png\" alt=\"indy-peer-to-peer-off-ledger-agent-interaction\" width=\"640\" class=\"aligncenter size-large wp-image-23681\" \/><\/a><small>Indy&#8217;s peer-to-peer off-ledger agent interaction (<a href=\"https:\/\/docs.google.com\/document\/d\/1YzXz0aM8w7kSp3_ao3ue9tOFwK9paofXbtBptR1Jucg\/edit\" target=\"_blank\">Image credit<\/a>)<\/small><\/center><\/p>\n<p>Again, the key point in all this is that <em>individuals<\/em>, not organizations, control the permission.<\/p>\n<p>&nbsp;<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Decentralized_identifiers_are_key\"><\/span>Decentralized identifiers are key<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<div id=\"attachment_23577\" style=\"width: 140px\" class=\"wp-caption alignright\"><a href=\"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2017\/05\/Phillip-Windley.jpg\"><img decoding=\"async\" aria-describedby=\"caption-attachment-23577\" src=\"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2017\/05\/Phillip-Windley-150x150.jpg\" alt=\"Phillip Windley\" width=\"130\" class=\"size-thumbnail wp-image-23577\" \/><\/a><p id=\"caption-attachment-23577\" class=\"wp-caption-text\"><small>Phillip Windley<\/small><\/p><\/div>\n<p><a href=\"https:\/\/www.linkedin.com\/in\/windley\/\" target=\"_blank\">Phillip J. Windley<\/a>, Chair of the Sovrin Foundation, wrote an intro for the Hyperledger Project about what to expect in these early days of Indy.<\/p>\n<blockquote><p><em>\u201cNot only can Indy support user-controlled exchange of verifiable claims about an identifier, it also has a rock-solid revocation model for cases, where those claims are no longer true. Verifiable claims are a key component of the Indy\u2019s ability to serve as a universal platform for exchanging trustworthy claims about identifiers.\u201d \u2014Phillip J. Windley, the Sovrin Foundation<\/em><\/p><\/blockquote>\n<p>The word \u201cclaims\u201d is a big one in the world of <a href=\"https:\/\/www.altoros.com\/blog\/a-panel-blockchain-introduces-opportunities-in-identity-management\/\">identity management<\/a>, and refers to whatever an individual is trying to prove: name, date of birth, other personal information, occupation (i.e., whomever or whatever the person is claiming himself or herself to be or have). Its use can often be thought of as the same as saying &#8220;credentials.&#8221; A typical user will make several claims to several organizations, but unified in a single identity that the person controls.<\/p>\n<p><center><a href=\"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2017\/05\/Indy-Identity-management-claims.png\"><img decoding=\"async\" src=\"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2017\/05\/Indy-Identity-management-claims.png\" alt=\"Indy Identity management claims\" width=\"640\" class=\"aligncenter size-full wp-image-23592\" \/><\/a><small><a href=\"https:\/\/sovrin.org\/How%20Sovrin%20Works.pdf\" target=\"_blank\">Image credit<\/a><\/small><\/center><\/p>\n<p>\u201cIdentifiers on Indy are pairwise unique and pseudonymous by default to prevent correlation,\u201d Phillip also wrote. \u201cFurthermore, Indy is the first distributed ledger technology to be designed with decentralized identifiers (DIDs) as the primary keys on the ledger.\u201d<\/p>\n<blockquote><p><em>\u201cDIDs are a new type of a digital identifier that were invented to enable long-term digital identities that don\u2019t require centralized registry services. DIDs can be verified using cryptography, enabling a digital &#8216;web of trust.&#8217; DIDs on the ledger point to DID&#8217;s Descriptor Objects (DDOs), signed JSON objects that can contain public keys and service endpoints for a given identifier. DIDs are a critical component of the Indy\u2019s pairwise identifier architecture.\u201d \u2014Phillip J. Windley, Sovrin Foundation<\/em><\/p><\/blockquote>\n<p>However, Sovrin and Indy <a href=\"https:\/\/sovrin.org\/indy_faq\/\" target=\"_blank\">are distinct<\/a> with Sovrin being a specific, operating instance of the Hyperledger Indy code that contains identities that are interoperable at the global scale. While Indy is a code development project, by contrast, &#8220;Sovrin is an operating network\u2014a living ledger, in which each node is running an instance of the Indy project&#8217;s code.&#8221;<\/p>\n<p>To stay tuned with the project&#8217;s evolution, sing up with the <a href=\"https:\/\/lists.hyperledger.org\/g\/indy\" target=\"_blank\">Indy&#8217;s mailing list<\/a>.<\/p>\n<p>&nbsp;<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Built_upon_earlier_principles\"><\/span>Built upon earlier principles<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<div id=\"attachment_13805\" style=\"width: 160px\" class=\"wp-caption alignright\"><a href=\"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2016\/04\/Christopher-Allen.jpg\"><img loading=\"lazy\" decoding=\"async\" aria-describedby=\"caption-attachment-13805\" src=\"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2016\/04\/Christopher-Allen-150x150.jpg\" alt=\"Christopher Allen, Blockstream\" width=\"150\" height=\"150\" class=\"size-thumbnail wp-image-13805\" \/><\/a><p id=\"caption-attachment-13805\" class=\"wp-caption-text\"><small>Christopher Allen<\/small><\/p><\/div>\n<p><a href=\"https:\/\/www.linkedin.com\/in\/christophera\/\" target=\"_blank\">Christopher Allen<\/a> of Blockstream confirmed to us that he was part of the DID design team. He has headed the Hyperledger Identity Management Working Group for the past year, and is one of the most prominent voices in this field. Among his extensive writings on the topic, he outlined <a href=\"http:\/\/www.lifewithalacrity.com\/2016\/04\/the-path-to-self-soverereign-identity.html\" target=\"_blank\">ten principles of self-sovereignty<\/a>:<\/p>\n<ol>\n<li style=\"margin-bottom: 6px;\"><strong>Existence.<\/strong> Users must have an independent existence.<\/li>\n<li style=\"margin-bottom: 6px;\"><strong>Control.<\/strong> Users must control their identities.<\/li>\n<li style=\"margin-bottom: 6px;\"><strong>Access.<\/strong> Users must have access to their own data.<\/li>\n<li style=\"margin-bottom: 6px;\"><strong>Transparency.<\/strong> Systems and algorithms must be transparent.<\/li>\n<li style=\"margin-bottom: 6px;\"><strong>Persistence.<\/strong> Identities must be long-lived.<\/li>\n<li style=\"margin-bottom: 6px;\"><strong>Portability.<\/strong> Information and services about identity must be transportable.<\/li>\n<li style=\"margin-bottom: 6px;\"><strong>Interoperability.<\/strong> Identities should be as widely usable as possible.<\/li>\n<li style=\"margin-bottom: 6px;\"><strong>Consent.<\/strong> Users must agree to the use of their identity.<\/li>\n<li style=\"margin-bottom: 6px;\"><strong>Minimalization.<\/strong> Disclosure of claims must be minimized.<\/li>\n<li><strong>Protection.<\/strong> The rights of users must be protected. <\/li>\n<\/ol>\n<blockquote><p><em>\u201cAn identity system must balance transparency, fairness, and support of the commons with protection for the individual.\u201d \u2014Christopher Allen, Blockstream<\/em><\/p><\/blockquote>\n<p>The aspects of the ten principles have been captured in the following table by the Sovrin Foundation.<\/p>\n<p><center><a href=\"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2017\/05\/Ten-Principles-of-Self-Sovereign-Identity.png\"><img decoding=\"async\" src=\"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2017\/05\/Ten-Principles-of-Self-Sovereign-Identity.png\" alt=\"Ten Principles of Self-Sovereign Identity\" width=\"640\" class=\"aligncenter size-full wp-image-23590\" \/><\/a><small><a href=\"https:\/\/sovrin.org\/The%20Inevitable%20Rise%20of%20Self-Sovereign%20Identity.pdf\" target=\"_blank\">Image credit<\/a><\/small><\/center><\/p>\n<p>We can imagine that these principles will be part of the Indy effort, as this identity-management incubation now becomes integrated into the entire Hyperledger community.<\/p>\n<p>&nbsp;<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Other_Hyperledger_incubations\"><\/span>Other Hyperledger incubations<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<ul>\n<li><a href=\"https:\/\/www.altoros.com\/blog\/hyperledger-incubation-burrow-integrates-permissioned-ethereum-virtual-machine\/\">Hyperledger Incubation: Burrow Integrates Ethereum Virtual Machine<\/a><\/li>\n<li><a href=\"https:\/\/www.altoros.com\/blog\/hyperledgers-sawtooth-lake-aims-at-a-thousand-transactions-per-second\/\">Hyperledger\u2019s Sawtooth Lake Aims at a Thousand Transactions per Second<\/a><\/li>\n<li><a href=\"https:\/\/www.altoros.com\/blog\/the-iroha-project-to-bring-mobility-to-blockchain-with-simple-apis\/\">The Iroha Project to Bring Mobility to Blockchain with Simple APIs<\/a><\/li>\n<li><a href=\"https:\/\/www.altoros.com\/blog\/general-availability-of-hyperledger-fabric-v1-0-what-to-expect-in-2017-and-when\/\">General Availability of Hyperledger Fabric v1.0: What to Expect in 2017 and When?<\/a><\/li>\n<li><a href=\"https:\/\/www.altoros.com\/blog\/hyperledgers-fabric-composer-simplifies-business-network-modeling-on-blockchain\/\">Hyperledger\u2019s Fabric Composer: Simplifying Business Networks on Blockchain<\/a><\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>Importance of identity management<\/p>\n<p>&#8220;On the Internet, nobody knows you&#8217;re a dog,\u201d reads the caption on an iconic cartoon panel from a cartoonist Peter Steiner in The New Yorker in the 90s.<\/p>\n<p>Therein lies the problem a quarter century later. Identity and its management have become an enormous pain to individuals and [&#8230;]<\/p>\n","protected":false},"author":9,"featured_media":23687,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"content-type":"","footnotes":"","_links_to":"","_links_to_target":""},"categories":[7],"tags":[672,753],"class_list":["post-23571","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-opinion","tag-blockchain","tag-hyperledger"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v26.6 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Hyperledger Incubates the Indy Project to Address Identity Management | Altoros<\/title>\n<meta name=\"description\" content=\"Decentralized identifiers\u2014enabling long-term digital identities requiring no centralized registry services\u2014are the key concept behind the Indy incubation.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Hyperledger Incubates the Indy Project to Address Identity Management | Altoros\" \/>\n<meta property=\"og:description\" content=\"Importance of identity management &#8220;On the Internet, nobody knows you&#8217;re a dog,\u201d reads the caption on an iconic cartoon panel from a cartoonist Peter Steiner in The New Yorker in the 90s. Therein lies the problem a quarter century later. Identity and its management have become an enormous pain to individuals and [...]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/\" \/>\n<meta property=\"og:site_name\" content=\"Altoros\" \/>\n<meta property=\"article:published_time\" content=\"2017-05-05T19:25:51+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2017-07-24T09:18:08+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2017\/05\/Indy-Hyperledger-Self-Sovereign-Identity-v111.gif\" \/>\n\t<meta property=\"og:image:width\" content=\"640\" \/>\n\t<meta property=\"og:image:height\" content=\"360\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/gif\" \/>\n<meta name=\"author\" content=\"Roger Strukhoff\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Roger Strukhoff\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"9 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/\",\"url\":\"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/\",\"name\":\"Hyperledger Incubates the Indy Project to Address Identity Management | Altoros\",\"isPartOf\":{\"@id\":\"https:\/\/www.altoros.com\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2017\/05\/Indy-Hyperledger-Self-Sovereign-Identity-v111.gif\",\"datePublished\":\"2017-05-05T19:25:51+00:00\",\"dateModified\":\"2017-07-24T09:18:08+00:00\",\"author\":{\"@id\":\"https:\/\/www.altoros.com\/blog\/#\/schema\/person\/56ea20d6f280f7a442e89e5884b06fd8\"},\"breadcrumb\":{\"@id\":\"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/#primaryimage\",\"url\":\"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2017\/05\/Indy-Hyperledger-Self-Sovereign-Identity-v111.gif\",\"contentUrl\":\"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2017\/05\/Indy-Hyperledger-Self-Sovereign-Identity-v111.gif\",\"width\":640,\"height\":360},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.altoros.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Hyperledger Incubates the Indy Project to Address Identity Management\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.altoros.com\/blog\/#website\",\"url\":\"https:\/\/www.altoros.com\/blog\/\",\"name\":\"Altoros\",\"description\":\"Insight\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.altoros.com\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.altoros.com\/blog\/#\/schema\/person\/56ea20d6f280f7a442e89e5884b06fd8\",\"name\":\"Roger Strukhoff\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.altoros.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2016\/03\/roger_strukhoff_user_icon-150x150.jpg\",\"contentUrl\":\"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2016\/03\/roger_strukhoff_user_icon-150x150.jpg\",\"caption\":\"Roger Strukhoff\"},\"description\":\"Roger Strukhoff is Director of Research at Altoros. He also serves as Executive Director of the Tau Institute for Global ICT Research, Conference Chair of Cloud Expo and Things Expo, Co-Chair of the Big Data World Forum, and Open-Source Chair for the global DCD Converged conference series. He received his BA from Knox College, and conducted MBA studies at California State University\/East Bay. Previously in his career, he was VP of New Products at International Data Group and Director of Global Publications at TIBCO Software.\",\"url\":\"https:\/\/www.altoros.com\/blog\/author\/rstrukhoff\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Hyperledger Incubates the Indy Project to Address Identity Management | Altoros","description":"Decentralized identifiers\u2014enabling long-term digital identities requiring no centralized registry services\u2014are the key concept behind the Indy incubation.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/","og_locale":"en_US","og_type":"article","og_title":"Hyperledger Incubates the Indy Project to Address Identity Management | Altoros","og_description":"Importance of identity management &#8220;On the Internet, nobody knows you&#8217;re a dog,\u201d reads the caption on an iconic cartoon panel from a cartoonist Peter Steiner in The New Yorker in the 90s. Therein lies the problem a quarter century later. Identity and its management have become an enormous pain to individuals and [...]","og_url":"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/","og_site_name":"Altoros","article_published_time":"2017-05-05T19:25:51+00:00","article_modified_time":"2017-07-24T09:18:08+00:00","og_image":[{"width":640,"height":360,"url":"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2017\/05\/Indy-Hyperledger-Self-Sovereign-Identity-v111.gif","type":"image\/gif"}],"author":"Roger Strukhoff","twitter_misc":{"Written by":"Roger Strukhoff","Est. reading time":"9 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/","url":"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/","name":"Hyperledger Incubates the Indy Project to Address Identity Management | Altoros","isPartOf":{"@id":"https:\/\/www.altoros.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/#primaryimage"},"image":{"@id":"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/#primaryimage"},"thumbnailUrl":"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2017\/05\/Indy-Hyperledger-Self-Sovereign-Identity-v111.gif","datePublished":"2017-05-05T19:25:51+00:00","dateModified":"2017-07-24T09:18:08+00:00","author":{"@id":"https:\/\/www.altoros.com\/blog\/#\/schema\/person\/56ea20d6f280f7a442e89e5884b06fd8"},"breadcrumb":{"@id":"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/#primaryimage","url":"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2017\/05\/Indy-Hyperledger-Self-Sovereign-Identity-v111.gif","contentUrl":"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2017\/05\/Indy-Hyperledger-Self-Sovereign-Identity-v111.gif","width":640,"height":360},{"@type":"BreadcrumbList","@id":"https:\/\/www.altoros.com\/blog\/hyperledger-incubates-the-indy-project-to-address-identity-management\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.altoros.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Hyperledger Incubates the Indy Project to Address Identity Management"}]},{"@type":"WebSite","@id":"https:\/\/www.altoros.com\/blog\/#website","url":"https:\/\/www.altoros.com\/blog\/","name":"Altoros","description":"Insight","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.altoros.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/www.altoros.com\/blog\/#\/schema\/person\/56ea20d6f280f7a442e89e5884b06fd8","name":"Roger Strukhoff","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.altoros.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2016\/03\/roger_strukhoff_user_icon-150x150.jpg","contentUrl":"https:\/\/www.altoros.com\/blog\/wp-content\/uploads\/2016\/03\/roger_strukhoff_user_icon-150x150.jpg","caption":"Roger Strukhoff"},"description":"Roger Strukhoff is Director of Research at Altoros. He also serves as Executive Director of the Tau Institute for Global ICT Research, Conference Chair of Cloud Expo and Things Expo, Co-Chair of the Big Data World Forum, and Open-Source Chair for the global DCD Converged conference series. He received his BA from Knox College, and conducted MBA studies at California State University\/East Bay. Previously in his career, he was VP of New Products at International Data Group and Director of Global Publications at TIBCO Software.","url":"https:\/\/www.altoros.com\/blog\/author\/rstrukhoff\/"}]}},"_links":{"self":[{"href":"https:\/\/www.altoros.com\/blog\/wp-json\/wp\/v2\/posts\/23571","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.altoros.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.altoros.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.altoros.com\/blog\/wp-json\/wp\/v2\/users\/9"}],"replies":[{"embeddable":true,"href":"https:\/\/www.altoros.com\/blog\/wp-json\/wp\/v2\/comments?post=23571"}],"version-history":[{"count":45,"href":"https:\/\/www.altoros.com\/blog\/wp-json\/wp\/v2\/posts\/23571\/revisions"}],"predecessor-version":[{"id":23808,"href":"https:\/\/www.altoros.com\/blog\/wp-json\/wp\/v2\/posts\/23571\/revisions\/23808"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.altoros.com\/blog\/wp-json\/wp\/v2\/media\/23687"}],"wp:attachment":[{"href":"https:\/\/www.altoros.com\/blog\/wp-json\/wp\/v2\/media?parent=23571"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.altoros.com\/blog\/wp-json\/wp\/v2\/categories?post=23571"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.altoros.com\/blog\/wp-json\/wp\/v2\/tags?post=23571"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}