Verifiable Data Registries

The Need for Verifiable Data Registries for Digital Identities

Verifiable Data Registries (VDRs), also known as trust registries, are an essential component of the self-sovereign identity concept. In this model, natural or legal persons have full control over their digital identities and personal data. VDRs, operated by one or more organizations, are crucial for several reasons in the issuance, presentation, and verification of verifiable credentials.

VDRs are a key component of Decentralized Identifiers (DIDs) and verifiable credentials. They reduce the need for centralized registries, identity providers, and certification authorities.

Core Functions of VDRs

Verifiable Data Registries offer:

  • an immutable environment for storing identity-related meta-information
  • a secure publication place for issuers
  • einen sicheren Veröffentlichungsort for Aussteller digitaler Identitätsnachweise

Promoting Privacy and Trust

Verifiable Data Registries enable

This improves data protection and strengthens trust in the identity ecosystem.

  • The use of digital credentials by holders without issuers knowing details of their use
  • The verification of credential authenticity by verifiers without direct contact with issuers

Relevant data within VDRs

  • Information on revoked credentials
  • Details about credential issuers
  • Die verfügbaren Arten digitaler Nachweise (sog. „Schemas“)

The Verifiable Data Registry of IDunion

IDunion operates a distributed network, jointly managed by its members. Each member operates its own network node. This system offers:

  • Increased resilience and security through decentralized structure
  • Legally binding operations of node administrators for network monitoring
  • frequent risk assessments and the implementation of improvements

The VDR concept is flexible and allows for various implementations, from centralized databases to distributed ledgers. They manage all relevant data for creating and verifying verifiable credentials, including credential schemas, public keys of issuers, and revocation entries.

Operated by Cooperative Members

Each member operates a unique network node. This leads to:

  • Increased resilience and security through decentralized structure
  • Legally binding operations of node administrators for network monitoring
  • frequent risk assessments and the implementation of improvements

Registries in the IDunion Network

Revocation Registry: Allows the revocation of issued verifiable credentials when necessary.

DID Registry: Securely stores Decentralized Identities (DIDs) and associated documents.

Schema Registry: Manages patterns for digital credentials and defines specific types of digital identities.

Verifiable Data Registries are indispensable for modern digital identity systems. They provide the necessary infrastructure for self-sovereign identities and ensure privacy, trust, and flexibility in credential management. VDRs, as demonstrated by IDUnion's implementation, enable secure, decentralized, and user-centric digital identity ecosystems.

en_USEnglish
de_DEGerman en_USEnglish