Self-Sovereign Identity: Transforming Customer Experience and Creating Competitive Advantage

Download as pdf or txt
Download as pdf or txt
You are on page 1of 44

AN INTRODUCTION TO

Self-Sovereign Identity
Transforming Customer Experience and
Creating Competitive Advantage

Andy Tobin @actobin


October 2019
If you have questions….
Please write them in the Zoom Q&A and we’ll
cover them after the presentation.

Please note, this webinar is being recorded


Meet the presenter
Andy Tobin
VP Delivery, Evernym

• 30+ years of experience delivering


innovative technology solutions, spanning
identity, mobile, and payments
• Built the world’s first mCommerce server
• Run a £1.2bn mobile messaging network
• Served as CTO for Europe’s first fully mobile
bank.
Imagine if…
• You could onboard every new customer with one click.
• Each of your customers had a secure, direct connection to you.
• You could instantly verify that every customer is genuine.
• Your customers never needed a username and password.
• You never had any more fraudulent card payments.
• You could send every customer verifiable digital receipts.

How much competitive advantage would you gain?


A seismic change is underway.
The way we think about and use digital identity
is transforming, touching every aspect of digital life.
Enter “Self-Sovereign Identity”

or “decentralized identity”
or “blockchain identity”
or “portable digital identity”
What is self-sovereign identity?
The ability for people, organizations and things to
hold, manage, and control their own digital
credentials, just like they do with their physical ones

… with added cryptographic superpowers.


We call these “credentials”
They answer the question:
“Says who?”
Paper is the global standard for
credentials
But paper doesn’t work
online.
The digital world has no equivalent
for paper credentials
Yet digital identity underpins
every online interaction
Today’s digital identity is
killing customer experience

“Institutions will save $1.6 trillion globally”


McKinsey on Digital Identification
What it looks like today:
using a French digital ID to open a bank account in the UK
This is easier

digital digital
credential
Credential proof Relying
Provider Party
(DVLA, passport (Bank, retailer, etc.)
office, utility
company, gym, etc.)
Get Once… …Use Many Times
It is possible to combine
attributes from different
credentials and present
them as a single proof.
You can just present a
zero-knowledge proof,
without revealing the
underlying data.

🗹
🗹
🗹
🗹
The relying party can instantly check four things
without having to contact the issuer:

1. Who issued the


credential?
2. Was it only issued to the
presenter? digital Relying Party
3. Has it been tampered proof
(eg bank,
with?
4. Has it been revoked? retailer etc etc)

Thus increasing privacy and reducing correlation risk


How does the They read the
relying party verify issuer’s verification
data authenticity keys from a global
without contacting public distributed
the issuer? ledger.

Writes public 🗹
verification keys 🗹
(curve ED25519) Reads issuer’s
keys

The Sovrin Ledger


Every relationship is
separate, unique
and encrypted.

Connection setup
and credential
exchange all
happens off-ledger,
privately, with no
intermediaries.

The Sovrin Ledger


…And they can
also give you
digital credentials
back (they already
give you paper or
plastic ones)…
Hi – it’s me coming
back again. Here’s
proof that I am me.

…which you can


use to login,
without needing a
username or
password ever
again.
To deliver this vision, we need a new, open, protocol

Like TCP/IP, SMTP, HTML, IEEE 802.11…

This protocol needs to be open, non-proprietary,


interoperable, and usable by everyone
And it needs:

Open Standards, No Vendor Lock-in

…just like the internet


established &
donated code

Open Source. Hundreds of 70+ volunteer organizations are


developers and thousands of code already running this network,
commits. including Cisco, ABSA, Finicity,
An active, growing and engaged IBM, Deutsche Telekom, NEC,
community worldwide. SITA, and Swisscom.
These are some of the people building it
established &
donated code

Indy, Ursa and Aries are


open source, Linux
Foundation projects.

“Fuelling innovation at
Shared crypto-library for Protocol for peer to peer unmatched speed and
advanced cryptographic functions connections, wallet, messaging, scale”
like zero-knowledge proofs. key management.
2 Important New W3C Standards
DIDs and Verifiable Credentials
Decentralized Identifiers (DIDs):
a new type of globally resolvable,
cryptographically-verifiable identifier

did:sov:3k9dg356wdcj5gf2k9bw8kfg7a

Method-Specific Identifier (Generated as defined by the particular DID method specification)


Method (here showing the Sovrin ledger)
Scheme

Verifiable Credentials:
The mechanism for encoding, signing,
exchanging and verifying digital credentials.
Mythbusting
What Self-Sovereign Identity isn’t
• It isn’t a replacement for civil registers like birth registries,
driving license authorities, passport offices.
• It isn’t a “rip and replace” for all existing identity schemes.
It’s enhances them.

And:
• It doesn’t work for black lists such as no-fly lists,
or PEP & sanctions lists.
• It doesn’t mean everyone “self-attests” all the information
about themselves removing the need for governments.
What does this mean
for you and me?
Simplicity AND Privacy:
• No more usernames or passwords.

• No more registration forms.

• No more spam or phishing.

• Secure private communications by default.

• No more intermediaries watching what I do.


What does this mean
for organizations?
Lower friction AND higher security
• Instant customer data verification
• Fast onboarding with great customer experience
• Simplifying regulatory compliance
• Reducing “toxic” data lakes
• A secure, private relationship with each customer
• Interoperability across silos
Lower Friction

AND

Higher Security
Example
One-click secure onboarding and payment for retailers

Problems being addressed:


✔ Shopping cart abandonment
✔ Chargebacks
✔ Fraud
Example
Trusted digital identity and single-sign-on for doctors and nurses

Problems being addressed:


✔ Lost clinical hours
✔ £1bn savings through optimising
healthcare personnel onboarding
✔ Patient safety
Example
Credit Union customer identification & authentication

Problems being addressed:


✔ Call in, walk in, log in authentication
✔ Single, reusable identity within the
credit union industry
✔ Giving customers a digital identity they
can use elsewhere
Example
Bank “know your customer” regulatory checks

Problems being addressed:


✔ Poor user experience
✔ High onboarding costs
✔ 45 minutes to 45 seconds
Regulatory Engagement Under Way UK FCA
Financial
Bank “know your customer” regulatory checks
Conduct
Authority
Evernym is participating in a joint
project with Deloitte, Onfido and 6 UK
banks within the FCA’s Regulatory
Sandbox.
The intention is to confirm the viability
of digital credentials for new customer
onboarding.
Example
Verifiable Organizations Network (VON)

Problems being addressed:


✔ Making it easier to open a business
and apply for permits
✔ Streamlining data sharing between
agencies
Many projects, many use cases.
For people, organizations, and things.
Same protocol.

This is the shape of things to come


Imagine if…
• you could onboard every new customer with 1 click.
• each of your customers had a secure, direct connection to you.
• you could instantly verify every customer is genuine.
• your customers never needed a username and password.
• you never had any more fraudulent card payments.
• you could send every customer verifiable digital receipts.
This is all achievable using a single platform using
DIDs and verifiable credentials
Get a head start
with Evernym’s Early Access Plan
Join 50+ organizations that are already taking
SSI for a test flight.
evernym.com/plans
Big brands and entrepreneurs are onboard.
Thank you
Questions? Please drop them in the chat!
And look out for a couple of online polls during
the Q&A
Connect with us via Twitter or Email
@evernym @actobin
[email protected]

You might also like