Current definition

Decentralized identity system architecture

A decentralized identity system is one where verified credentials are not stored and controlled by a single, central authority – i.e. it is the exact opposite of a centralized identity system.

The “decentralized” nature of the system may be seen at different levels. For example, the actual issuing of ID credentials may be decentralized (such as the wide range of cell phone retailers registering SIM cards) or in the storage of the data (using a network of different databases).

In contrast to centralized systems, a decentralized identity system allows for identity assertions or artefacts to be made independently of established identity providers, such as a bank.

In a digital context, this can allow users to access a range of different services using one “wallet” of credentials which is in their hands – rather than needing to be identified and verified by each service separately, or relying on the defacto ID of a big institution to unlock other services.

Some prominent examples of decentralized identity systems utilize distributed ledger technologies – such as blockchain – though not all decentralized systems do so.

A private sector example of a decentralized identity system is uPort – a system which allows users to register their own identity on the blockchain platform, Ethereum, and control which data is shared and accessed by different services.

Governments are also increasingly drawing on decentralized identity systems. A notable example is Estonia which used home grown KSI Blockchain technology to power its national ID card system and e-government services.

The concept is closely aligned with self-sovereignty, in that these systems users greater control of their personal data and how it is shared.

More around the web

“Creating a unified decentralized identity ecosystem requires addressing a set of fundamental user needs and technical challenges:

1. Enabling registration of self-sovereign identifiers that no provider owns or controls.

2. The ability to lookup and discover identifiers and data across decentralized systems.

3. Providing a mechanism for users to securely store sensitive identity data, and enabling them to precisely control what is shared with others.”

The Rising Tide of Decentralized Identity – Decentralized Identity Foundation

"A key piece to decentralized identity is how people, devices, and other entities in the world are identified without a centrally owned registry."

Understanding Decentralized Identity – Richard Chen, 1confirmation

“In distributed identity systems, many identity providers collect, store and transfer user attributes to many relying parties. These systems are notable in that they do not rely on attributes from a single identity provider. The purpose of these systems is to allow users to interact easily with many different entities in an online environment by giving them a digital “wallet” of credentials.”

A Blueprint for Digital Identity – R. Jesse McWaters & Giancarlo Bruno, World Economic Forum

Join the debate

You can help frame the Good ID debate and build a shared understanding of digital identity terms.

Join the discussions on Twitter and submit your own definitions below.

Help to define Decentralized identity system architecture