Unverified Commit 6f8dd861 authored by Tomislav Markovski's avatar Tomislav Markovski
Browse files

Add section for problem and proposed solution

Updates based on review received
parent 9369a07f
......@@ -6,9 +6,20 @@ SSI-powered interactions need to be trustworthy and safe for **all** participant
Trust Registries are one of the critical components of machine-readable governance frameworks. Through this component, holders can avoid coercion by verifying the verifier; verifiers can discern offline which issuers they trust; issuers can communicate to holders which governance framework they are associated with. It will lead to additional safety and confidence for all participants.
### The Problem
Participation in an open ecosystem offers great potential for data exchange in trusted and verifiable way, but it also opens up a lot of room for misuse of the system. For example, accepting a verifiable credential as valid is a great use case, but the fact that anyone can issue such credential poses a trust problem.
This may deter participants who might gain from this system the most, like governance entities.
### Proposed Solution
In order to address this problem, Trust Registries offer a way for these parties to utilize the beneifts of this network, but also provide means for them to build their own trust network on top of the open system. It's the network within a network principle.
Trust Registires solve this problem by using the open SSI infrastructure, while providing a central authority to extend it with it's own governance mechanism. This is done by adding technical solutions that leverage decentralized systems, such as identifier PKIs, decentralized storage, blockchains. <br />
In the form of open or secured API's, governing authorities can provide a central registrar of trusted participants, publish governance framework and allow entities to use this service to check if other parties are authorized to issue and verify given credentials.
### Component Description
A trust registry maintains a list of all authorized entities in a trust ecosystem, the types of data they're authorized to exchange, and the operations they're to perform on those types.
A trust registry maintains a list of all authorized entities in a trust ecosystem, the types of data they're authorized to exchange, and the operations they're allowed to perform on those types.
The registry supports operations to register, revoke, and query for authorizations granted to entities on data type operations within a trust ecosystem. For example, authorizing a specific university to issue a diploma. The core of the solution is developing authorization rules engine that is able custom defined policies based on the requirements of a trust registry.
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment