Identity Validators

In the HP SSI framework, Identity Validators (Issuers) are the entities that check the private data submitted by users and issue verifiable credentials (VCs) if these data are proven to be valid against the respective claims of the VCs. Identity Validators are considered trusted entities since they are ultimately responsible for the authenticity of the issued VCs (similar to the role of the sequencer in zero-knowledge rollup applications).

Given the Issuers’ privileged access to user PII, a fully decentralized, permission-less approach where anyone can become an Issuer may not be desirable from a privacy perspective. That said, some degree of decentralization may still help reduce the reliance on a single trusted agent without too much sacrifice to user data safety, and we are actively exploring methods that will partially decentralize the VC issuance process in Phase 2.

In Phase 1:
- Humanity Protocol Core Platform processes the palm signatures collected by the Human Recognition Module and issue unique-human VCs if and only if the palm signatures passes the unique human test (i.e. belong to a human and are dissimilar to all existing palm signatures in the PoH universe).
- HP Core Platform is also responsible for producing the zero-knowledge verifiable presentations (VPs) used in the customized queries from third-party applications (for human uniqueness, zero-knowledge proof of non-membership of the User in the HP).
In Phase 2:
- Humanity Protocol targets to appoint a diverse set of Identity Validators that are required to hold a significant stake in Humanity Protocol through the staking of $H tokens. These Identity Validators are accredited institutions that have the authority to issue VCs pertaining to their respective claims. For example, a licensed financial institution would have the credibility to verify a user’s KYC data, whilst a university can attest to the fact that a user was in fact a student and has completed a specific degree.
- Identity Validators will have a fixed term that will be determined via the HP Governance process, which opens up nominations (including self-nominations) of candidates and conducts network-wide elections.
- Identity Validators validate a user’s credentials (in off-chain manner if appropriate) and issue relevant PII VC. For example, an education institution issues education VCs regarding a user’ graduation status from itself, and has no authority in/access to the same user’s other credentials such as driving license status. Phase 2 will also support more complex verifiable presentations (VPs) involving both non-PII and PII VCs, requiring the collaboration of both the HP Core Platform and Identity Validators in the production of these complex zero-knowledge VPs. Whenever possible, sharding of the PII VC metadata will be implemented to reduce the concentration risks for data storage.

PreviousPrivacy-Preserving Data Storage and Use NextzkProofer Nodes

Last updated 22 days ago

Identity Validators

In Phase 1:
- Humanity Protocol Core Platform processes the palm signatures collected by the Human Recognition Module and issue unique-human VCs if and only if the palm signatures passes the unique human test (i.e. belong to a human and are dissimilar to all existing palm signatures in the PoH universe).
- HP Core Platform is also responsible for producing the zero-knowledge verifiable presentations (VPs) used in the customized queries from third-party applications (for human uniqueness, zero-knowledge proof of non-membership of the User in the HP).
In Phase 2:
- Humanity Protocol targets to appoint a diverse set of Identity Validators that are required to hold a significant stake in Humanity Protocol through the staking of $H tokens. These Identity Validators are accredited institutions that have the authority to issue VCs pertaining to their respective claims. For example, a licensed financial institution would have the credibility to verify a user’s KYC data, whilst a university can attest to the fact that a user was in fact a student and has completed a specific degree.
- Identity Validators will have a fixed term that will be determined via the HP Governance process, which opens up nominations (including self-nominations) of candidates and conducts network-wide elections.
- Identity Validators validate a user’s credentials (in off-chain manner if appropriate) and issue relevant PII VC. For example, an education institution issues education VCs regarding a user’ graduation status from itself, and has no authority in/access to the same user’s other credentials such as driving license status. Phase 2 will also support more complex verifiable presentations (VPs) involving both non-PII and PII VCs, requiring the collaboration of both the HP Core Platform and Identity Validators in the production of these complex zero-knowledge VPs. Whenever possible, sharding of the PII VC metadata will be implemented to reduce the concentration risks for data storage.

PreviousPrivacy-Preserving Data Storage and Use NextzkProofer Nodes

Last updated 22 days ago