16th October 2018
Anurag Angara <anurag.angara@gmail.com>, Andy Chorlian <andychorlian@gmail.com>, Shane Hampton <shanehampton1@gmail.com>, Noah Zinsmeister <noahwz@gmail.com>
Decentralized Identifiers (DIDs, see [1]) are designed to be compatible with any distributed ledger or network (called the target system).
In the Ethereum community, a pattern known as ERC1484 (see [2]) utilizes an on-chain registry to resolve a user-controlled Identity to arbitrary data structures in smart contracts.
We propose a new DID method that allows ERC1484 identities to be treated as valid DIDs, denominated by a globally unique EIN designated in a Registry that enables construction of each unique Identity.
One advantage of this DID method over others appears to be the ability to aggregate arbitrarily sophisticated identity management frameworks to an entity on the Ethereum network.
The namestring that shall identify this DID method is: erc1484.
A DID that uses this method MUST begin with the following prefix: did:erc1484. Per the DID specification, this string MUST be in lowercase. The remainder of the DID, after the prefix, is specified below.
The method specific identifier is composed of an optional Ethereum network identifier with a : separator, followed by the IdentityRegistry contract address, and an EIN encoded as a 32-byte hex string.
erc1484-did = "did:erc1484:" [erc1484-specific-idstring]
erc1484-specific-idstring = [erc1484-network] ":" [IdentityRegistry contract address] ":" [hex-encoded EIN]
erc1484-network = "mainnet" / "ropsten" / "rinkeby" / "kovan"
[IdentityRegistry contract Address] = Ideally [TBD]; however the DID should account for alternate implementations
hex-encoded EIN = [EIN denoted in IdentityRegistry encoded as a 32-byte hex string]
The EIN in the IdentityRegistry is encoded as a uint; however, to standardize the DID, it is hex-encoded in this DID method. Ultimately, the DID should be: did:erc1484:<network>:<contract_address>:<32-byte hex EIN> where the absence of defaults to mainnet.
This specification currently only supports Ethereum "mainnet", "ropsten", "rinkeby", and "kovan", but can be extended in the future to support arbitrary Ethereum instances (including private ones).
Example erc1484 DIDs:
did:erc1484:0xd26846cd6EE289AccF82350c8b2087fedB8A0C07:00000000000000000000000000000000000000000000000000000000000000e1did:erc1484:mainnet:0xd26846cd6EE289AccF82350c8b2087fedB8A0C07:00000000000000000000000000000000000000000000000000000000000000e1did:erc1484:ropsten:0xdd974D5C2e2928deA5C21b9825b8c916686AC200:00000000000000000000000000000000000000000000000000000000000000e1
{
"@context": "https://w3id.org/did/v1",
"id": "did:erc1484:ropsten:0xdd974D5C2e2928deA5C21b9825b8c916686AC200:00000000000000000000000000000000000000000000000000000000000000e1",
"RecoveryKey": [{
//this can initiate recovery as outlined in the IdentityRegistry
"id": "did:erc1484:ropsten:0xdd974D5C2e2928deA5C21b9825b8c916686AC200:00000000000000000000000000000000000000000000000000000000000000e1",
"type": ["Secp256k1RecoveryKey2018"]
"publicKeyHex": "0c8181aaf9bfcd703f25cc6b3814023d4a38cae4aba6e7f1ce8e0c41fbc84210edbc04a97ea6f566e376261c465387f730a39f2f87fd74512ca55a32caea71ce"
},
"authentication": {
//this can be used to authenticate an identity through signatures
"type": "Secp256k1AssociatedAddress2018",
"publicKeyHex": "3e5ff6bea277535d32368325f416492fb89b58cae0b53ec415a2d8c65b670f182c26eb093402b6f5315816d881806f0b8b8cce4e9ee5cf5d759ff99af1da7d65"
},
"authentication": {
"type": "Secp256k1AssociatedAddress2018",
"publicKeyHex": "cd509276b337548586915d1dfb4c38af16f8717c099e4f739f8935c3983773dd4b232c6fec946832afe092fa60b1033a767c50469fb58e4b91e4a21a16dbe1ac"
}
"service": []
}
To create a DID, the createIdentity or createIdentityDelegated functions of the ERC-1484 IdentityRegistry must be called. The returned EIN becomes the entity defined by the DID per the specifications above (i.e. did:erc1484:00000000000000000000000000000000000000000000000000000000000000e1).
To construct a valid DID document from an erc1484 DID, the following steps are performed:
- Determine the Ethereum network identifier ("mainnet", "ropsten", "rinkeby", or "kovan"). If the DID contains no network identifier, then the default is "mainnet".
- Determine the IdentityRegistry contract address on which the
EINis registered. - Invoke the
getDetailsfunction of theIdentity Registry ERC 1484 contractfor theEIN. Hex-encode theEIN. - Add the returned
Recovery Addressto the DID Document in the specified format above. - For the returned
Recovery Addressaddress, look up the secp256k1 public key associated with the key address. Add the public key to the DID Document in the specified format above. - For each
Associated Addresspublic key:- Add a
publicKeyHexof typeSecp256k1AssociatedAddress2018(see [3]) to the DID Document.
- Add a
Note: Service endpoints and other elements of a DID Document may be supported in future versions of this specification.
The DID Document may be updated by invoking the relevant smart contract functions as defined by the ERC1484 standard:
function initiateRecoveryAddressChange(uint ein, address newRecoveryAddress) public;function addAddress( uint ein, address addressToAdd, address approvingAddress, uint8[2] v, bytes32[2] r, bytes32[2] s, uint salt ) public;function removeAddress(uint ein, address addressToRemove, uint8 v, bytes32 r, bytes32 s, uint salt) public;function triggerRecovery(uint ein, address newAssociatedAddress, uint8 v, bytes32 r, bytes32 s) public;
Note that these methods are written in the Solidity language. Ethereum smart contracts are actually executed as binary code running in the Ethereum Virtual Machine (EVM).
Revoking the DID can be supported by executing a triggerPoisonPill function in the smart contract. This will effectively mark the DID as revoked.
function triggerPoisonPill(uint ein, address[] firstChunk, address[] lastChunk, bool clearResolvers) public;
TODO
TODO
In Ethereum, looking up a raw public key from a native 20-byte address is a complex and resource-intensive process. The DID community may want to consider allowing the truncated hash of a public key in the DID documents instead of (or in addition to) the raw public keys. It seems this would make certain DID methods such as erc725 or erc1484 much simpler to implement, while at the same time not really limiting the spirit and potential use cases of DIDs.