CX-0149 Verified Company Identity v1.0.0
COMPARISON WITH THE PREVIOUS VERSION OF THE STANDARD
- This document combines the previous standards
CX - 0016 Company Attribute Verification v1.1.0andCX - 0017 Company Role by the Connector v1.0.1including all needed information for the identification of a participant and the Dataspace clients acting on behalf of them - Introducing the Identity and Trust Protocol (IATP) used within the identity presentation flow
- Introducing an APIAPI An API is a way for two or more computer programs to communicate with each other. specification for the Creation of Participants Wallet as a foundation for the usage of multiple Wallet providers.
ABSTRACT
This document specifies the requirements for the identification of Dataspace participants and the Dataspace clients acting on behalf of the participants for the enablement of a controlled and controllable data exchange. The requirements and prerequisites described here serve both data sovereignty and interoperability.
1. INTRODUCTION
Self-sovereign identity (SSI) allows you to take control of your own digital identity. Personal and company information are often spread across different platforms and at risk of data breaches. SSI provides a secure and decentralized solution. With SSI, individuals and companies can manage and verify their own identity information, without relying on centralized authorities or intermediaries.
- Concept of Decentralized Identity The idea is that a cryptic identifier is resolved to a document including two major things. The public key of the entity while the corresponding private key is in possession of the entity itself A list of links to specific service endpoints. One of these endpoints is the credential endpoint which offers Verifiable Credentials describing attributes of the entity
- Verifiable Credentials (VCs) Verifiable credentials are a digital representation of attributes about the entity that can be easily shared and verified by multiple entities. These credentials are typically issued by trusted organizations or institutions. These credentials are structured in a standardized format using open standards like W3C's Verifiable Credentials Data Model (https://www.w3.org/TR/vc-data-model/). VCs consist of verifiable claims that contain specific information about an entity and are digitally signed by the issuer using cryptographic techniques. This cryptographic signature ensures the integrity and authenticity of the credential and can be verified by relying parties.
In Catena-X Self-Sovereign Identity (SSI) is used to manage the identity of the Dataspace Participants on company level (company identity) and offering the ability to exchange participant attributes and information in a secure and standardized way. The individual level on users are not in scope - user identities are managed via the known OIDC flow. Additionally eventhrough SSI enables you to fully self-manage your identity, it still allows to use provider offers - it is not necessarily limited to own managed solutions only.
1.1 AUDIENCE & SCOPE
This section is non-normative