Definition

self-sovereign identity

Alexander S. Gillis

By

Alexander S. Gillis, Technical Writer and Editor

Published: Dec 29, 2022

What is self-sovereign identity?

Self-sovereign identity (SSI) is a model for managing digital identities in which individuals or businesses have sole ownership over the ability to control their accounts and personal data. Individuals with self-sovereign identity can store their data to their devices and provide it for verification and transactions without the need to rely upon a central repository of data. With self-sovereign identity, users have complete control over how their personal information is kept and used.

In all models of identity management, a digital identity requires identifiers that ensure users are who they say they are. With self-sovereign identity, however, identifiers do not need an intermediary. This means a user's self-sovereign identity can be registered to a claim, such as a block on a blockchain. The person can then share that identifying data when making a transaction, for example, with a bank.

With self-sovereign identity, users can enter an app on their phone where their identity data is stored, then use an identification number and identity information to verify who they are. Self-sovereign identity adds security and flexibility to users and enables them the ability to share data only when they choose.

Self-sovereign identity concepts

Self-sovereign identity is made up of claims, proofs and attestations:

A claim is an assertion of identity made by the user.
Proofs are the forms or documents that act as evidence for a claim. For example, a proof could be a passport or birth certificate.
An attestation, or validation, is when the other party validates the claim is true. Attestations can be stored in the user's device and are typically machine readable.

Pros and cons of self-sovereign identity

Some pros to using self-sovereign identity include the following:

It is more secure and prevents common attacks to personal data, such as breaches.
Data is more private.
Users have a higher control over their own data.
The process is more efficient.
Users do not have to rely on identity providers that may sell and monetize their data.

Cons of self-sovereign identity include the following:

Users are responsible for their own security.
Multiple identity platforms may be required, meaning users may have to use multiple apps.
Keeping track of personal data and permissions can be complex.
Certain data intermediaries may not be removable.
Proof data is normally unstructured and could be easily faked.

Continue Reading About self-sovereign identity

8 best practices for blockchain security

10 ways blockchain can improve IAM

5 IAM trends shaping the future of security

Blockchain for identity management: Implications to consider

Digital identity: Leveraging the SSI concept to build trust

Dig Deeper on Identity and access management

Search Networking

How platform-based networking enables network management
Platform-based networking tweaks the platformization model to become a comprehensive tool set for network administrators.
An introduction to satellite network architecture
Satellite network architecture consists of three segments: space, ground and control. Satellite networks enhance networking ...
Network pros need Ansible network automation skills
Network administrators must develop Ansible skills to learn how to automate and manage system resources across an infrastructure,...

Search CIO

Digital literacy vs. digital fluency: Learn the differences
Business and IT leaders alike need their workers to develop digital capabilities. Here are some terms that can help convey that ...
4 examples of IT department goals
An important consideration for setting IT goals specifically is aligning them with the overall goals of the larger organization. ...
ISO 31000 vs. COSO: Comparing risk management standards
ISO 31000 and the COSO ERM framework are the two most popular risk management standards. Here's what they include and some of ...

Search Enterprise Desktop

How to use Windows Update for Business with Group Policy
When organizations need to manage Windows updates, Windows Update for Business can provide all the control they need. And IT ...
How to reset Windows 11 PC from BIOS
There are many ways to reset a desktop, and resetting from BIOS is perhaps the most drastic of these options. Learn how this ...
Comparing MSI vs. MSIX
While MSI was the preferred method for distributing enterprise applications for decades, the MSIX format promises to improve upon...

Search Cloud Computing

What the cloud shared responsibility model requires of you
The shared responsibility model is an integral part of managing any cloud infrastructure. Review your cloud deployment today to ...
Demystify the cloud and edge computing relationship
Edge computing remains primarily on-prem, but evolving technologies like 5G might enable some workloads to migrate to shared ...
Beyond replacement: How AI is enhancing PaaS offerings
AI is transforming PaaS with automation and cost-efficient features, but will it eventually replace cloud platforms? Industry ...

ComputerWeekly.com

Orange Belgium, Proximus ink memorandum of understanding to expand Wallonia gigabit access
Belgian operators plan to join forces and deploy accessible fibre to the home, with the intended partnership to benefit nearly ...
The UK’s ransomware payment ban is a strategic win
The UK's proposed public sector ransomware payment ban could be a bold step, but it can't operate in isolation.
The emerging network of mutualistic technologies
Four major technologies are advancing large investments – and not only will these open new opportunities and applications, but ...

Close