Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat: update mediator docs #53

Merged
merged 1 commit into from
Sep 6, 2023
Merged
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
60 changes: 43 additions & 17 deletions documentation/docs/atala-prism/prism-mediator.md
Original file line number Diff line number Diff line change
@@ -1,19 +1,45 @@
# PRISM Mediator

[Mediators](/docs/concepts/glossary#mediator) play a critical role in identity wallets, particularly in the context of mobile devices (edge agent), because mobile devices don’t typically have static IP addresses. They might be offline or turned off, making it difficult to establish direct connections between different parties in the ecosystem and ensure [DIDComm](/docs/concepts/glossary#didcomm) message delivery.
The Mediator works as an Email Box of the recipient. But instead of receiving an email it receives a Forward messages and stores the final encrypted message (that is inside of the forward message) until the recipient retrieves it.

In a decentralized identity infrastructure, a mediator can act as an intermediary between the [holder](/docs/concepts/glossary#holder)'s device and other entities in the ecosystem, such as [issuers](/docs/concepts/glossary#issuer) and [verifiers](/docs/concepts/glossary#verifier).
For example, when a holder requests a credential from an issuer, the mediator can mediate or [relay](/docs/concepts/glossary#relay) the requests between the holder and the issuer.
When the holder presents a credential to a verifier, the mediator can again act as an intermediary that mediates or relays the requests between the holder and the verifier.
Using a mediator, identity wallets can ensure that all transactions are securely communicated between the various parties. At the same time, holders have control over their data and identities.
Mediators and identity wallets can provide security and trust while ensuring the system is scalable and efficient.

The PRISM mediator is a critical component of the Atala PRISM suite. Without a centralized authority, it enables secure communication between different entities in the Atala PRISM ecosystem, such as holders, issuers, and verifiers.

The PRISM mediator is an Open Source project and can be found in [GitHub input-output-hk/atala-prism-mediator](https://github.com/input-output-hk/atala-prism-mediator).
The mediation is a protocol specially designed to overcome the limitation of the edge agents.
The nature of the edge agents is that they are not always online, like in the mobile paradigm. Usually, we can assume that the mediator is always online.
By acting as an intermediary, the DID Comm v2 Mediator helps facilitate secure and private communication between entities while leveraging the decentralized nature of DIDs and cryptographic techniques to ensure authenticity, integrity, and confidentiality of the messages exchanged.
The [GitHub input-output-hk/atala-prism-mediator repository](https://github.com/input-output-hk/atala-prism-mediator) contains more documentation how it works.
All protocol of the mediator was fairly tested. We plan to open the test set in the future so you can compare functionality and performance with any mediator.
> The Linchpin of Decentralized Identity Management.

## Introduction

[Mediators](/docs/concepts/glossary#mediator) serve as indispensable elements in the realm of identity wallets, especially when dealing with mobile devices, or edge agents. These mobile devices usually lack static IP addresses and may not always be online. This poses a challenge in establishing reliable, direct connections between various parties in a decentralized ecosystem, and in guaranteeing the delivery of [DIDComm](/docs/concepts/glossary#didcomm) messages. The PRISM Mediator functions similarly to an email inbox for the recipient, storing "Forward" messages and their final encrypted content until retrieved by the intended party.

## Mediator's Role in Decentralized Identity Transactions

Within a decentralized identity framework, the Mediator acts as a bridge between the [holder's](/docs/concepts/glossary#holder) device and other key players such as [issuers](/docs/concepts/glossary#issuer) and [verifiers](/docs/concepts/glossary#verifier). For instance, if a holder wishes to obtain a credential from an issuer, the Mediator can [relay](/docs/concepts/glossary#relay) or mediate this request, ensuring smooth interaction between both parties. Similarly, when a holder needs to present a credential to a verifier, the Mediator steps in once again to mediate or relay the transaction. By leveraging a Mediator, identity wallets can offer secure and reliable communication between all involved entities. This approach also empowers holders to maintain control over their own data and identities.

## Security, Scalability, and Efficiency

The Mediator is an integral part of the Atala PRISM suite, facilitating secure communication without the need for a centralized authority. It seamlessly connects various entities in the PRISM ecosystem, including holders, issuers, and verifiers, and ensures that the system remains secure, scalable, and efficient.

## Technical Specifications

The PRISM Mediator is an open-source initiative, for more details, you can refer to the [atala-prism-mediator Github repository](https://github.com/input-output-hk/atala-prism-mediator). The project aims to address the inherent limitations of edge agents, which are not always online, by assuming that the Mediator is perpetually online. Employing DIDComm v2 protocols and cryptographic methods, the Mediator guarantees the authenticity, integrity, and confidentiality of all exchanged messages.

## DIDComm V2 Mediator Test Suite

### Overview
Our Mediator protocols have been rigorously evaluated using the [DIDComm V2 Mediator Test Suite](https://github.com/input-output-hk/didcomm-v2-mediator-test-suite/). This test suite is designed to scrutinize the compatibility of mediators with DIDComm V2 protocols, serving as a benchmark for quality and reliability.

### Protocols Tested
The suite tests a variety of vital protocols, including:

- [Trust Ping 2.0](https://didcomm.org/trust-ping/2.0/)
- [Mediator Coordination 2.0](https://didcomm.org/mediator-coordination/2.0/)
- [Pickup 3.0](https://didcomm.org/pickup/3.0/)

For an exhaustive list of test scenarios, along with their detailed descriptions, you can consult the [features folder](https://github.com/input-output-hk/didcomm-v2-mediator-test-suite/blob/main/src/test/resources/features) in the test suite repository.

### Future Enhancements in Testing

As part of our ongoing commitment to improve the PRISM Mediator, we plan to make our test sets publicly accessible. This will allow users and developers to perform comparative assessments on functionality and performance against other mediators in the market. Our aim is to continually refine the PRISM Mediator's features based on real-world scenarios and demands, thereby ensuring it remains a reliable and robust component in the Atala PRISM ecosystem.

We are working on enhancing the scope of our testing suite to address limitations and include additional protocols and scenarios. These future updates will contribute to making the PRISM Mediator even more robust and versatile.

In summary, the PRISM Mediator is poised for future advancements, with rigorous testing protocols in place to ensure it remains at the forefront of secure, efficient and interoperable decentralized identity management.

## Future Developments

Looking ahead, we are committed to the ongoing development of the PRISM Mediator, with plans to expand its feature set and integrate new protocols. These updates will be driven by real-world use cases and the goal of achieving feature completeness. Additionally, we aim to keep the mediator at the forefront of industry developments, ensuring it remains aligned with emerging protocols and technological advancements.