In Part 1, we showed how Craxel's Digital Trust Platform can provide the fundamental security, privacy, granularity, scalability, and low latency data services required to provide self-sovereign identity to every person on the planet. As outlined in Part 1, our workflow is uniquely enabled by Craxel's breakthroughs in searchable encryption, explained in further detail in prior blog posts. Part 2 will provide more technical detail on the important properties built into our underlying architecture.

SelfSovereignIdentity-4

  1. Scale. The transaction rates, number of identities, and the amount of data would quickly make scalability problematic if applied to a traditional blockchain structure. For example, imagine holding the identity information for a billion people on a the massively decentralized blockchain network consisting of thousands of servers, and the data-storage, bandwidth requirements, and transaction rates needed to operate such a system. It isn't feasible. With Craxel's Digital Trust Platform, the trustless and immutable properties of blockchain that are so desirable as a solution to these problems are available without the problems that make self-sovereign identity impossible on a massively decentralized blockchain.

  2. Data Granularity. Imagine trying to quickly locate and read a single record within a chain containing huge blocks of transactions... Instead, BFDL supports millions to billions of individual ledgers containing chains of transactions. Each ledger can be secured independently from every other ledger. In fact, every transaction in a ledger can be protected independently from every other transaction. BFDL so easily supports multiple ledgers that ledgers can be created on the fly to contain secure exchanges of information between two or more parties. For example, an individual can choose elements of their identity to share with an identity authority by creating a ledger, encrypting it with the identity authority's public key, and placing the data on that ledger. The identity authority can review the information, create a digitally signed attestation, and securely send it back to the individual on that same ledger. Further, pervasive compartmentalization empowers individuals to assign sensitivity ratings to individual attributes, and enables individuals to control what to release and to whom at a granular level.

  3. Privacy and Confidentiality. Sensitive data is encrypted at the application layer and stored on the ledger. Craxel's Digital Trust Platform has no knowledge of the contents of a user’s records, because all records are encrypted before they enter the ledger, with the ledger never having access to or contact with the encryption keys needed to decrypt them. This minimizes the attack surface as the distributed ledger doesn't have to be trusted. Users will only have to trust their application provider or their mobile devices to protect their encryption keys.

  4. Key Management. Finally, users must have control over release of their information via control over their encryption keys. Their keys can be managed on their own mobile devices (inside trusted enclaves) or by application providers (inside trusted enclaves).

Summary
Craxel's combination of immutable identity records, the ability to securely manage an individual's identity graph with multiple security compartments, and the ability to securely exchange identity information with identity authorities and service providers delivers the foundation of a revolutionary self sovereign identity management capability. Global self-sovereign identity can become a reality because of the unprecendented privacy, security, performance, and scale provided by our Black Forest Digital Trust Platform.