KYC is a concept where a service provider confirms the identity (and possibly uniqueness) of a user by tying their digital account to official real-world identity information. What an official identifier is depends on the actual use case and is decided by the authority that is attesting, but it will most likely be some form of government issued ID card or a utility bill. Several companies have already outsourced the process of identity verification to special "identity verification services" (IVS).
By connecting the proof of identity to a service-independent ID instead of a specific user-account, the service of the IVS becomes a lot more useful for both the user and other service providers (saving time and money by reusing the verification), thereby generating value for everyone involved.
To keep a witness statement valid even after the key of a witness expired, the content id of the signed witness statement can be published as payload in a blockchain transaction, proving it was signed when the witness' key was still valid.
To proof the validity of a witness statement involving delegated rights, an AfterEnvelope can be used to strictly order the statement and the key management process.
No personal data is included in this Proof of Ordering.
In this example we have
- BANK1: Witness
- BANK2: Verifier
-
You want to prove the fact that you are an EU resident. For this, you show your ID card to BANK1, including your picture, your name and address, place of birth, etc. BANK1 will create a statement, attesting your claim of the type
confirmedEUCitizenabout one of your DIDs (after you prove control, of course). The claim schema may be standardized by the BANK, or even by law, possibly containing information about how they verified your citizenship. In addition, they might register the statement ID to the blockchain. -
Then you'd like to prove your EU citizenship at BANK2 without showing your ID card again (which would expose all your private information to another third party, burdening it with GDPR compliance). To do this, you'll only provide a claim presentation containing the statement signed by BANK1 and a proof-of-control for your DID. Additionally you can include information about how BANK2 is allowed to use the information ("licensing").
-
BANK2 can validate all signatures involved in the claim presentation (BANK1's signature for the statement, the USER's signature for the presentation). BANK2 then queries the blockchain about your DID and the DID of BANK1 (which is known to BANK2, probably even public information because BANK1 has announced their DID publicly). Once they resolved the documents, they can verify that the keys had the correct rights at the time of signing, proving both your control of the DID and the fact that BANK1 supports your claim.
sequenceDiagram
participant User
participant BANK1
participant BANK2
participant Blockchain
rect rgba(255, 255, 0, .1)
opt Customer Support
User ->> +BANK1: Please prove I'm an EU citizen
BANK1 -->> -User: I need a WitnessRequest<br/>process: confirmedEUCitizen
end
end
User ->> +BANK1: SignedWitnessRequest<br/>process: confirmedEUCitizen
BANK1 ->> +Blockchain: Verify DID control
Blockchain -->> -BANK1: Confirmed
BANK1 -->> -User: SignedWitnessStatement
rect rgba(255, 255, 0, .1)
opt Customer Support
User ->> +BANK2: I need your EU service
BANK2 -->> -User: prove your EU citizenship
end
end
User ->> +BANK2: SignedClaimPresentation<br>process: confirmedEUCitizen
BANK2 ->> +Blockchain: Verify DID control
Blockchain -->> -BANK2: Confirmed
BANK2 ->> BANK2: validating signatures
BANK2 -->> -User: Accepted
This diagram extends the previous scenario and diagram with timestamping, to improve transparency of the witnessing process, e.g. in the following cases:
- BANK2 wants to audit that BANK1 is not signing statements with fake timestamps.
- BANK1 wants to make explicit the fact that they acted according to information available at a certain point in time.
- BANK1 wants to audit its delegated witnesses.
- BANK1 is regularly rotating keys, therefore it is necessary to order the statements in relation to the process of key rotation.
sequenceDiagram
participant User
participant BANK1
participant BANK2
participant Blockchain
User ->> +BANK1: SignedWitnessRequest<br/>process: confirmedEUCitizen
BANK1 ->> +Blockchain: Verify DID control
Blockchain -->> -BANK1: Confirmed
rect rgba(255, 255, 0, .1)
opt If Timestamping is Required: Witnessed AFTER
BANK1 ->> +Blockchain: get height, hash of latest block
Blockchain --> -BANK1: Height, Hash
end
end
BANK1 -->> BANK1: Create SignedWitnessStatement
rect rgba(255, 255, 0, .1)
opt If Timestamping is Required: Witnessed BEFORE
BANK1 ->> +Blockchain: SignedWitnessStatementId
Blockchain -->> -BANK1: Confirmed
end
end
BANK1 -->> -User: SignedWitnessStatement<br/>including proofs for before/after
User ->> +BANK2: SignedClaimPresentation<br>process: confirmedEUCitizen
BANK2 ->> +Blockchain: Verify DID control
Blockchain -->> -BANK2: Confirmed
rect rgba(255, 255, 0, .1)
opt Prove Witnessed AFTER
BANK2 ->> +Blockchain: Retrieve block hash and timestamp of<br/>block height from AfterEnvelope
Blockchain -->> -BANK2: result
BANK2 ->> BANK2: compare block hashes
end
end
rect rgba(255, 255, 0, .1)
opt Prove Witnessed BEFORE
BANK2 ->> +Blockchain: Check transaction history for SignedWitnessStatementID
Blockchain -->> -BANK2: block height, timestamp that includes it
BANK2 ->> BANK2: compare timestamps
end
end
BANK2 -->> -User: Accepted
Addendum: BANK2 might now serve as a verifier to another inspector (BANK 3), who lacks the resources to verify the signatures themselves. BANK3 might outsource that task to BANK2, relying on a direct and secure connection to BANK2. (TBD: for the direct connection we could use Mercury).
Addendum2: It was mentioned above that the DID of BANK1 was known to BANK2. When talking about "p2p-claims" between friends, knowledge of each other's DIDs is achieved by meeting up in person and scanning each other's QR Code. Banks could do the same on a grander scale if they don't want to publicly share some of their DIDs.