16th October 2018
Anurag Angara <[email protected]>, Andy Chorlian <[email protected]>, Shane Hampton <[email protected]>, Noah Zinsmeister <[email protected]>
Decentralized Identifiers (DIDs, see [1]) are designed to be compatible with any distributed ledger or network (called the target system).
In the Ethereum community, a pattern known as ERC1484 (see [2]) utilizes an on-chain registry to resolve a user-controlled Identity
to arbitrary data structures in smart contracts.
We propose a new DID method that allows ERC1484 identities to be treated as valid DIDs, denominated by a globally unique EIN
designated in a Registry
that enables construction of each unique Identity
.
One advantage of this DID method over others appears to be the ability to aggregate arbitrarily sophisticated identity management frameworks to an entity on the Ethereum network.
The namestring that shall identify this DID method is: erc1484
.
A DID that uses this method MUST begin with the following prefix: did:erc1484
. Per the DID specification, this string MUST be in lowercase. The remainder of the DID, after the prefix, is specified below.
The method specific identifier is composed of an optional Ethereum network identifier with a :
separator, followed by the IdentityRegistry contract address, and an EIN
encoded as a 32-byte hex string.
erc1484-did = "did:erc1484:" [erc1484-specific-idstring]
erc1484-specific-idstring = [erc1484-network] ":" [IdentityRegistry contract address] ":" [hex-encoded EIN]
erc1484-network = "mainnet" / "ropsten" / "rinkeby" / "kovan"
[IdentityRegistry contract Address] = Ideally [TBD]; however the DID should account for alternate implementations
hex-encoded EIN = [EIN denoted in IdentityRegistry encoded as a 32-byte hex string]
The EIN
in the IdentityRegistry is encoded as a uint; however, to standardize the DID, it is hex-encoded in this DID method. Ultimately, the DID should be: did:erc1484:<network>:<contract_address>:<32-byte hex EIN>
where the absence of defaults to mainnet
.
This specification currently only supports Ethereum "mainnet", "ropsten", "rinkeby", and "kovan", but can be extended in the future to support arbitrary Ethereum instances (including private ones).
Example erc1484
DIDs:
did:erc1484:0xd26846cd6EE289AccF82350c8b2087fedB8A0C07:00000000000000000000000000000000000000000000000000000000000000e1
did:erc1484:mainnet:0xd26846cd6EE289AccF82350c8b2087fedB8A0C07:00000000000000000000000000000000000000000000000000000000000000e1
did:erc1484:ropsten:0xdd974D5C2e2928deA5C21b9825b8c916686AC200:00000000000000000000000000000000000000000000000000000000000000e1
{
"@context": "https://w3id.org/did/v1",
"id": "did:erc1484:ropsten:0xdd974D5C2e2928deA5C21b9825b8c916686AC200:00000000000000000000000000000000000000000000000000000000000000e1",
"RecoveryKey": [{
//this can initiate recovery as outlined in the IdentityRegistry
"id": "did:erc1484:ropsten:0xdd974D5C2e2928deA5C21b9825b8c916686AC200:00000000000000000000000000000000000000000000000000000000000000e1",
"type": ["Secp256k1RecoveryKey2018"]
"publicKeyHex": "0c8181aaf9bfcd703f25cc6b3814023d4a38cae4aba6e7f1ce8e0c41fbc84210edbc04a97ea6f566e376261c465387f730a39f2f87fd74512ca55a32caea71ce"
},
"authentication": {
//this can be used to authenticate an identity through signatures
"type": "Secp256k1AssociatedAddress2018",
"publicKeyHex": "3e5ff6bea277535d32368325f416492fb89b58cae0b53ec415a2d8c65b670f182c26eb093402b6f5315816d881806f0b8b8cce4e9ee5cf5d759ff99af1da7d65"
},
"authentication": {
"type": "Secp256k1AssociatedAddress2018",
"publicKeyHex": "cd509276b337548586915d1dfb4c38af16f8717c099e4f739f8935c3983773dd4b232c6fec946832afe092fa60b1033a767c50469fb58e4b91e4a21a16dbe1ac"
}
"service": []
}
To create a DID, the createIdentity
or createIdentityDelegated
functions of the ERC-1484 IdentityRegistry
must be called. The returned EIN
becomes the entity defined by the DID per the specifications above (i.e. did:erc1484:00000000000000000000000000000000000000000000000000000000000000e1
).
To construct a valid DID document from an erc1484
DID, the following steps are performed:
- Determine the Ethereum network identifier ("mainnet", "ropsten", "rinkeby", or "kovan"). If the DID contains no network identifier, then the default is "mainnet".
- Determine the IdentityRegistry contract address on which the
EIN
is registered. - Invoke the
getDetails
function of theIdentity Registry ERC 1484 contract
for theEIN
. Hex-encode theEIN
. - Add the returned
Recovery Address
to the DID Document in the specified format above. - For the returned
Recovery Address
address, look up the secp256k1 public key associated with the key address. Add the public key to the DID Document in the specified format above. - For each
Associated Address
public key:- Add a
publicKeyHex
of typeSecp256k1AssociatedAddress2018
(see [3]) to the DID Document.
- Add a
Note: Service endpoints and other elements of a DID Document may be supported in future versions of this specification.
The DID Document may be updated by invoking the relevant smart contract functions as defined by the ERC1484 standard:
function initiateRecoveryAddressChange(uint ein, address newRecoveryAddress) public;
function addAddress( uint ein, address addressToAdd, address approvingAddress, uint8[2] v, bytes32[2] r, bytes32[2] s, uint salt ) public;
function removeAddress(uint ein, address addressToRemove, uint8 v, bytes32 r, bytes32 s, uint salt) public;
function triggerRecovery(uint ein, address newAssociatedAddress, uint8 v, bytes32 r, bytes32 s) public;
Note that these methods are written in the Solidity language. Ethereum smart contracts are actually executed as binary code running in the Ethereum Virtual Machine (EVM).
Revoking the DID can be supported by executing a triggerPoisonPill
function in the smart contract. This will effectively mark the DID as revoked.
function triggerPoisonPill(uint ein, address[] firstChunk, address[] lastChunk, bool clearResolvers) public;
TODO
TODO
In Ethereum, looking up a raw public key from a native 20-byte address is a complex and resource-intensive process. The DID community may want to consider allowing the truncated hash of a public key in the DID documents instead of (or in addition to) the raw public keys. It seems this would make certain DID methods such as erc725
or erc1484
much simpler to implement, while at the same time not really limiting the spirit and potential use cases of DIDs.