Overview#Hyperledger Indy is a Hyperledger Project for supporting independent identity on Distributed Ledger Technology by the Sovrin Foundation
Hyperledger Indy also has a rock-solid revocation model for cases where those claims are no longer true. Verifiable Claims are a key component of Hyperledger Indy’s ability to serve as a universal platform for exchanging trustworthy claims about transactions. Provenance is the foundation of accountability through recourse.
Another vital feature of Decentralized Identifier entity & ??;especially for a public ledger—is privacy. Privacy by Design is baked deep into Hyperledger Indy architecture as reflected by three fundamental features:
- identifiers on _Hyperledger Indy are Pairwise Pseudonymous Identifiers by default to prevent Identity Correlation. Hyperledger Indy is the first Distributed Ledger Technology to be designed around Decentralized Identifiers (DIDs) as the primary keys on the ledger. Decentralized Identifiers on the ledger point to DID descriptor objects (DDOs), signed JSON Objects that can contain Public Keys and service endpoints for a given identifier. Decentralized Identifier are a critical component of Hyperledger Indy’s pairwise identifier architecture.
- personal data is never written to the Hyperledger Indy. Rather all private data is exchanged over peer-to-peer encrypted connections between off-ledger agents. The ledger is only used for anchoring rather than publishing encrypted data.
- Hyperledger Indy has built-in support for Zero-knowledge proofs (ZKP) to avoid unnecessary disclosure of identity Attributes—privacy preserving technology that has been long pursued by IBM Research (Identity Mixer) and Microsoft (U-Prove), but which a public ledger for decentralized identity now makes possible at scale.
Hyperledger Indy is all about giving identity owners independent control of their personal data and relationships. Hyperledger Indy is built so that the owner of the identity is structurally part of transactions made about that identity. Pairwise Pseudonymous Identifiers stop third parties from talking behind the identity owner’s back, since the identity owner is the only place Pairwise Pseudonymous Identifiers can be correlated.