DID Document

A DID Document serves as a public data structure associated with a DID. It contains information about the DID subject and facilitates trust establishment during interactions. However, it's important to remember that unlike traditional identity documents, DID Documents prioritize user privacy.

Here's a breakdown of the DID Document and its role:

• Content: The DID Document typically includes:

  • Public Key(s): This cryptographic key is crucial for verifying the authenticity of signatures associated with the DID.

  • DID Controller: Identifies the entity that has control over the DID (usually the user).

  • Optional Information: Depending on the user's comfort level, the DID Document might contain additional public information like name, avatar, or service endpoints.

• Storage and Discoverability: DID Documents can be stored on various distributed ledger technologies (DLTs) or decentralized storage solutions. While optional, DID Registrars can be used to register the DID Document's location on a public ledger, enhancing discoverability for Verifiers.

• DID Resolution: When a Verifier needs to interact with a user, they can utilize the DID itself or a DID resolver service to retrieve the associated DID Document. The DID Document provides the Verifier with the DID's public key, enabling secure communication and credential verification.

Privacy Considerations with AnonCreds:

This solution leverages AnonCreds, a credential format within Hyperledger Indy, for a privacy-preserving approach. Here's how it works:

• Selective Disclosure: Users control what information they reveal within the DID Document. While the public key is essential, additional information like name or avatar is entirely optional.

• Focus on Verification: The core purpose of the DID Document is to facilitate verification, not act as a comprehensive identity profile. Users can choose to share more details through verifiable credentials issued by trusted Issuers.

Benefits of DID Documents:

• Trust Establishment: The DID Document provides Verifiers with the necessary information to verify the DID's authenticity and establish secure communication channels.

• User Control: Users have complete control over the information they include within the DID Document, prioritizing privacy.

• Flexibility: The DID Document can be customized to specific use cases, balancing user privacy with discoverability needs.

By utilizing DID Documents with AnonCreds, our SSI solution empowers users to manage their digital identities securely while enabling trust-based interactions within the ecosystem.