SSI Meetup

Introduction to DID Auth for SSI – Markus Sabadello – Webinar 10

Webinar 10 DID Auth

Markus Sabadello, CEO of Danube Tech, will talk about DID Auth, an emerging building block in the SSI ecosystem. Although the technical details of DID Auth are not well-defined at this point, its general concept is clear: With self-sovereign identity infrastructure, the most trivial and straightforward functionality for identity owners should be the ability to authenticate, i.e. to prove control of a DID in some relationship or during a transaction. This could take place using a number of different data formats, protocols, and flows. DID Auth includes the ability to authenticate to web sites and applications, and to establish mutually authenticated communication channels. In this webinar, we will discuss the current state of the DID Auth concept, and how it relates to other efforts such as Verifiable Credentials and agent protocols. We also recommend reading the white paper “Introduction to DID Auth” by Markus Sabadello, Kyle Den Hartog, Christian Lundkvist, Cedric Franz, Alberto Elias, Andrew Hughes, John Jordan, Dmitri Zagidulin.

Authentication: The ceremony where an identity owner proves to a relying party that the identity owner controls a DID, by a mechanism that is described in the DID’s associated DID Document.

Authorization: Method of verifying the rights and privileges of an individual to perform certain actions upon a DID that is not proving its ownership.

Decentralized Identifier (DID): A globally unique identifier that does not require a centralized registration authority because it is registered with distributed ledger technology or other form of decentralized network.

DID Document: A structured document containing metadata that describes a DID, including authentication materials, such as public keys and pseudonymous biometrics, that an entity can use to authenticate, i.e. to prove control of the DID. A DID Document may also contain other attributes or claims describing the entity.

DID Record: The combination of a DID and its associated DID Document.

Identity Owner: Individual, organization or thing who created the DID, is identified by the DID that is the subject of the DID Document, and who has the ultimate authority to update or revoke the DID.

Relying Party: Individual, organization or thing that authenticates an identity owner using a DID Auth protocol. Also called “Verifier” in other specifications.

Verifiable Credentials: A set of one or more claims which are statements made by an issuer about a subject that is tamper-resistant and whose authorship can be cryptographically verified.

Video recording:

Slideshare presentation:


How can you use these slides and knowledge?

This content is shared with a Creative Commons by Share Alike License. This allows you to reuse the powerpoint slides we are sharing here to build your own SSI communities around the globe. You only need to credit SSIMeetup and the invited guest of the day and share whatever you produce with the same license. Please read the license for full details.

Download the full presentation “Introduction to DID Auth for SSI – Markus Sabadello” from Google Slides.

Interested in collaborating or sharing?

Please get in touch via the contact form or one of the social media channels and we will find something interesting to do together or support you.



Let’s Talk & Meet

Get in touch to create a global SSI Meetup movement in place.