bisq-network / projects

@bisq-network project management
https://bisq.wiki/Project_management
9 stars 2 forks source link

Research on solutions for DIDs (decentralized IDs) in Bisq #55

Open eyalron33 opened 3 years ago

eyalron33 commented 3 years ago

Description

Research on solutions for DIDs (decentralized IDs), The proposal is to create a document that includes a market survey, the current state of IDs in Bisq, and one or more proposals for protocols for DIDs in Bisq, considering Bisq needs and capabilities.

Rationale

A core idea proposed for future versions of Bisq is "social tradings", see https://github.com/bisq-network/proposals/issues/330 and https://github.com/bisq-network/projects/issues/51 . Any kind of social interaction in a decentralized platform like Bisq needs a clear, easy way for users to maintain and manage their IDs.

The current Bisq treatment of user IDs is almost ad-hoc, including onion IDs and account age witnesses. At the same time, there was plenty of progress in DIDs (decentralized IDs) in the last few years, including various blockchain projects, and W3C SPECs focusing specifically on DIDs.

The proposal here is to research the state-of-the-art, survey possible solutions for DIDs, and create one or more proposals of how DIDs can be integrated explicitly into Bisq, considering Bisq needs and technology. Knowing the unique requirements of Bisq and how previous solutions were made for it, I imagine that most of the proposals would not be a "straightforward" adaptation of existing technology, but more tailored solutions for Bisq needs, based on existing ideas.

No matter which future direction Bisq ends up taking, having DIDs as a tool opens new directions to which Bisq can head.

This proposal was raised following a discussion considering what I wrote about DIDs in https://github.com/bisq-network/projects/issues/51#issuecomment-830086442.

Criteria for delivery

Measures of success

The provided results are considered sufficient for choosing one proposed solution to be used as a base for an RFC.

Risks

Tasks

Estimate

The work should take about 3 weeks and cost 3k USD.

Notes

A bit myself. I was involved in Bisq, under the nickname Neiman, from the end of 2017 till the release of Bisq DAO in 2019.

I was mostly involved in the design of Bisq protocols, such as the design of the Bisq DAO algorithms and the current trading protocol. You can see a document I wrote back putting the Bisq DAO into a theoretical abstract computer science framework (here, or lectures I gave about Bisq (Fosdem, Amsterdam Bitcoin Wednesday) at the time.

chimp1984 commented 3 years ago

Just a few notes to avoid potential confusion: The intended identity system is fully under control of the user. The user can choose between maximal privacy (appear always like a new users with zero reputation/fresh identity) or an identity used for reputation which enables new features like usage for trade protocols, access to certain features without financial cost.

Any permissionless and open system needs to protect against abuse. This protection can be achieved by different means.
If no reputaton is in place financial costs or proof of work are the best protection against abuse. To avoid such costs (e.g. bonds, security deposits, fees) users can choose to provide some sort of reputation based on identity (e.g. a key pair).

Current Bisq has several forms of identity/reputation:

For protection of the p2p network proof of work is considered as further dos protection, thought that might have limitations (mobile use case) and an access token based approach is considered as well. So if the node cannot generate enough pow an access token can be used instead (e.g. based on BSQ bond/fee or some other model). Other intended features like chats, allowing users to add custom payment methods, assets, contracts,... require protection against abuse as well. And finally it will allow new trade protocols with a lower security but with lower costs and higher convenience.

All those things will be optional. Users still can use Bisq with high security protocols only and either have limited access to those new features (chat) or only read access. And Bisq 2.0 will fix a few privacy issues present in the current Bisq model (global onion address and keys). So it will increase privacy, make it more censorship resistant and optionally allows users who prefer cheaper trade protocols options to trade off some level of privacy with convenience/lower costs.

chimp1984 commented 3 years ago

As identity will play a key role in the p2p network layer I can share my preliminary view on it.

An identity is a key pair. For most cases and network it includes also the network address(es) (onion address, i2p address). Each interaction (take offer) comes with its own isolated new identity. So taking 2 different offers from the same maker will appear as its 2 independent traders if both use the strict mode to isolate each trade. The user can manage their identities and can decide to prefer reputation-based features which will require to re-use identity for building up reputation (e.g. like in current Bisq where you can see you have traded x times with same trader, thus giving some level of security that this user is likely not a scammer). User will be also able to attach more meta data to an identity like their social media account if they wish to do that. They get informed about the trade offs between privacy <-> reputation but they can make their choices.

Maybe there will be possible more complex featueres where a signature of one identity can be used as backing security for another identity, similar as in the account age witness model. But that needs more thoughts. There might be also options to re-gain privacy by using cryptographic techniques like blind signatures, but again that will require more time to figure out how this could be used in that context.

So basics from my side: