Immunity passport

[murillojorge]

As a user I want to be able request a digital id so I can prove that I have been vaccinated.

[murillojorge]

Based on M. Allende's Self Sovereign Identity document we have 7 basic requirements for DID implementations:

Suitable technological tools used for electronic identity proofing, authentication, and authorization should at least have the following seven essential requirements:

• Interoperability: accessible to all kinds of public and private services
• Portability: ability to take one’s digital identifier credentials anywhere
• Pseudonymity: ability to interact without disclosing one’s real identity
• Recovery: able to retrieve keys and credentials easily and safely
• Scalability: feasible for adoption and replication
• Security: protects data and information, including keys and credentials
• Usability: human-meaningful and good user experience

[murillojorge]

How do we comply with this requirements?

• Interoperability: by using w3c standards on how to model and show the data. https://www.w3.org/TR/did-core/ https://www.w3.org/TR/vc-imp-guide/
• Portability: Credentials with valid blockchain data can be found with use of a URL, received via Email, SMS or downloaded as a printable PDF.
• Pseudonymity: personal private data should be only shown to roles that specifically require it to provide access to locations, on a need-to-know basis.
• Recovery: we can provide verification codes via email so patients can create a user to our system where they can access their credentials.
• Scalability: LACChain would be providing this through blockchain.
• Security: blockchain would make the data inmutable, but we would need to be able to reset credentials, maybe through the use of active keys??
• Usability: the use of traditional user-password credentials could help a better UX, but we should be able to provide a future-proof wallet solution too.

@xavier506 what do you think?

[xavier506]

@murillojorge thanks for the great info

As for the w3c requirements here is the DID method registered by OmniOne for EOSIO , it may provide further guidance as to how this cab be implemented

https://github.com/OmniOneID/did_method/blob/master/did_method.md