Blockchain based Internet of Things (Debashis De, Siddhartha Bhattacharyya etc.)

222

M. Polychronaki et al.

3.2.1

Decentralized Identiﬁers (DIDs)

DIDs are based on the idea of globally unique identiﬁers. It is a new standard that

allows entities to generate their own identities taking advantage of systems they trust,

while they remain the true holders of their identities [19]. This standard focuses on

the information which a decentralized identity should hold and on the description of

the actors in a decentralized IAM architecture.

The DID standard is essentially a unique identiﬁer comprising three sections:

• The “scheme DID” which is a speciﬁc JSON schema in order to provide context

consistency

• The “DID method” which speciﬁes the type of identity created and what methods

are to be used on it (e.g., update, deactivate, etc.)

• The “Method speciﬁc identiﬁer” which is the unique id number, resolving to a

unique DID Document containing the entity’s attributes.

The DID document is the part of the identity which contains all the necessary

information regarding the entity it represents. It may also contain the cryptographic

material for veriﬁcation on the system. Its attributes can be modiﬁed by the DID

controller, the component with the capability to produce changes to the DID, if

deﬁned within the DID method.

Lastly, one more basic component is the veriﬁable data registry, which is the

system running on top of a network, offering the necessary services for registering

and returning data regarding DIDs. The most common examples of these are the

distributed ledgers, such as blockchain, any decentralized ﬁle system or peer-to-peer

network.

3.2.2

Veriﬁable Credentials (VCs)

On the other hand, VC is the standard which focuses on the cryptographic capabilities

of an identity, aiming at the creation of digital credentials which are veriﬁable through

the web, offering the same beneﬁts with the physical ones (e.g., driver’s license) [26].

VCsaretobeusedwithcryptographictechnicsandalgorithmstoproducedifferent

veriﬁable public keys for the properties an entity may want to proof, without compro-

mising any personal details or information. This can be achieved by generating veri-

ﬁable presentations, digitally signed by the entity in order to prove the ownership

and authorship of the respective identity.

VCs are designed in such a way that they can provide privacy to the users as well as

scalability to the system. Ofﬁcially, the characteristics of this standard are speciﬁed

within the scope of an ecosystem, which comprised three basic components, besides

the holder of the identity: