Putting the Credence Back In Credentials

The Innovations, Technologies, and Standards That Will Make It Happen

Slide navigation:

Press key to advance.

Toggle notes with the 2 key.

Zoom in/out: Ctrl or Command + +/-

This presentation was printed from an HTML page.

A fully interactive version of these slides containing examples and links to further resources can be found at:



Web Technologist, Standards Maker

  • Founder/CEO@Digital Bazaar, Chief Technologist@Accreditrust

  • Chairs multiple W3C standardization groups related to Linked Data and Web Payments

  • W3C builds core infrastructure for Web (HTML, XML, Linked Data, browser APIs)

  • Build identity/credentials into core of the Web


Web Identity/Trust is Broken

  • 2014 - First Ever Web Payments Workshop

  • US Fed, World Bank, Bloomberg, Google, Mozilla, 50+ other orgs.

  • No Verified Identity / Trust Mechanism (72%)

  • Outdated Security Technology (50%)



Same Pain Points Across Industries

  • Banking/Payments - Know Your Customer / Anti-Money Laundering

  • Commerce - Repetitive Data Input

  • Security - Password Proliferation

  • Education - Siloed Digital Credentials



A Failure to Interoperate

  • Data models not built for Web

  • Security models not built for Web

  • Credentials have been an afterthought

  • Access rights are not fine grained



Linked Data as the Data Model

  • Linked Data is an approach to publishing and sharing data on the web.

  • It powers parts of Google, Microsoft, Yahoo!, & Yandex search engines

  • Basic premise: Machine-readable Web of data

  • Enables: Flexible publication, access, and auto-merging of data



Give people an identity online

  • Everyone on the Web gets a read/write identity (Linked Data).

  • You can store credentials in this identity.

  • You can give sites fine grained access to each credential on your terms.

  • Credential issuers can protect confidential or valuable data on their servers.



Make everything verifiable by a 3rd party

  • The Web needs a trust layer beyond the padlock icon.

  • Trust no one, verify everything.

  • Digital signatures and PKI show the way.

  • Non-repudiation - non-reversible claims



New business models

  • Key selling point: global interoperability

  • Pay per credential (customer-owned credential)

  • Pay per verification (background checks)

  • Public credential with pay-to-access private data

  • Credential vault (lifetime storage service)


Learn more...

The End

This presentation will be posted online at:

Questions, comments or more info:

This slide deck is based on HTML5 Slideshow by Marcin Wichary, Ernest Delgado, Alex Russell, and Brad Neuberg with CSS additions by Matthew Richmond and Manu Sporny.