...
Kelly Cooper - working on Identity White Paper.
Comments on the Hyperledger Identity white paper.
Drummond - current presentations on Sovrin, etc.
Sovrin - by December 4, 2019, will submit the data protection revisions to the SVF. Finished 2nd generation in March. Tackled everything except GDPR compliance (DPR compliance). A number of our stewards and customers pointed out GDPR is one set of compliance regulations. Some potential Sovrin customers are governments. Provenances of BC and Ontario, for example. Transaction endorser agreement. The transaction author is anyone who wants to write to the Sovrin Network. Working with BC.gov to close on addressing issues. How does SSI, which is ultimately backed by blockchain immutable ledgers, GDPR rights of data subjects (right of erasure)? In systems like Sovrin, there is very little on the ledger. Widely acknowledged even a DID, if it identifies an individual (even pseudo-anonymous) is subject to GDPR. Eight documents involved. Contract - transaction author agreement. Sovrin is a legal representative of the stewards as a whole. There will be a web page, there currently is a diagram.
Three roles GDPR sets out. GDPR did not anticipate SSI where the ultimate data controller is the individual. Individuals and Things will eventually be able to write to the ledger. Two policy paths, the only path today is permission write access. Driving toward public write access. Now, need to go through Transaction Endorser > Steward > you submit a proper transaction that is validated and it goes on the ledger. In public, transaction authors write directly to the ledger via the Stewards, with a fee (no commitment to Sovrin tokens or dates - only future possibility).
Revisions to the SVF. The legal analysis arrived at is to say, the role of the Sovrin Foundation is not as a data controller; transaction authors are the data controllers. The role of SF is something called a joint controller that does not have control; for legal purposes called a designated data controller. Stewards have contracts for SF. Transaction authors and transaction endorsers - SF transaction author agreement.
Vipin: Initial paper by Satoshi - ledger becomes mutable (erasure). Especially if the ledger is to stand forever. Any human construction designed to stand forever never does. SF write rules and expect people to implement a real system. DPR bodies need to revisit these ideas, otherwise, no real system will be built that conforms to the specifications.
Drummond: Actually 'pruning' is a possibility. However, given pseudo-anonymous nature of ledger - DIDs and public keys, less concern because there's also a pending question. If you destroy the private key have you effectively deleted the data?
Vipin: What about a cold storage wallet?
Drummond: Counter argument, individual's right to erasure. You control the data, you can erase the data. Working with Stewards. There is a task force called the Guardianship Task Force - Guardianship White Paper will launch in Toronto 11/21 at an event on Digital Identity (SSI) and Dementia. Put together by Secours.io. Drummond will speak and launch the paper. Deep discussion and exploration of the concept of guardianship and identity. Maintaining a digital wallet and the credentials needed for someone unable to control themselves.
Hyperledger Aries Announcement RFC published: published The Trust over IP Stack. https://github.com/hyperledger/aries-rfcs/blob/master/concepts/0289-toip-stack/README.md
Discussion in Decentralized Identity foundation if the set of RFCs will be housed there.
Comments on the Hyperledger Identity white paper. Web of Trust - snapshot. Getting the paper into GitHub. Version 2019. Start on version 2020. Will be in GitHub this week.