Digital Identity is Essential for Online Privacy, But Who’s Leading the Pack in 2021?

As we live out more and more of our lives online, the need for a comprehensive digital identity solution is becoming more pressing, and for several good reasons. First, and perhaps the most significant driver from the individual perspective, is privacy.

The increasing shift to digital means users must leave electronic copies of sensitive paper documents like passports or identity cards littered across the internet. Furthermore, high profile data breaches have become so normalized, they barely break news headlines anymore. In one of the most recent instances to affect a high-profile firm, Spotify was forced to reset user passwords after it admitted that it had leaked customer data to its third-party business partners. The average user already has around 100 online account passwords to manage, creating a poor online experience with too much friction.

From the enterprise perspective, firms are also taking responsibility for significant swathes of user data. In many circumstances, it would be easier for them to navigate data protection legislation such as the EU GDPR were they not to collect it.

The answer to all this lies in equipping users with self-sovereign digital identities. The general idea is that individuals will hold all of their data in an online wallet and decide for themselves which parties have access. Although there are several approaches, using blockchain technology is a popular choice because it offers multiple advantages, including user privacy and control thanks to public-key encryption.

With the concept of digital health passports on the horizon following the rollout of the COVID-19 vaccine, there’s a powerful imperative to provide a suitable solution. Currently, there are several firms making significant strides in the area of blockchain-based digital identity. Here are a few of the frontrunners.

1. Concordium

Concordium is a brand-new, enterprise-grade blockchain platform set to launch on mainnet in early 2021. Unlike most public blockchains, which are predicated on the principles of pseudonymity, Concordium has integrated an identity layer connected to the real world.

When users create a Concordium account, they have to provide their ID or other credentials to an off-chain identity service provider. The provider then creates their on-chain digital identity, which makes use of zero-knowledge proofs. These proofs allow any two parties to interact with the ability to verify that the parties are identifiable but without revealing their actual credentials.

To put this into a real-world context, a merchant selling age-restricted products could confirm that a customer is of the appropriate age for a purchase, but the customer wouldn’t have to disclose their birth date.

A built-in compliance mechanism ensures an account can be identified if there’s a legal need to do so. The Concordium Foundation appoints a group called “anonymity revokers.” Upon receiving a legally valid order, the anonymity revoker can decrypt the user’s account, allowing the identity provider to reveal the off-chain credentials to the legal authorities. However, nobody except the identity provider ever handles the identifying documents, ensuring that the user can transact in total privacy for almost all everyday purposes.

Concordium is being developed by a team that includes heavyweights from business and academia. CEO Lone Fønss Scrøder holds senior executive positions at Volvo and IKEA, while founder Lars Seier Christensen founded investment bank Saxo in the 1990s.

2. Microsoft

Tech giant Microsoft is also leading the pack on digital identity, and perhaps surprisingly, is also championing a decentralized approach using blockchain as a foundation. Even more surprisingly, Microsoft opted to use the Bitcoin blockchain as an infrastructure layer for its digital ID.

The Identity Overlay Network (ION) is based on Microsoft’s blockchain-agnostic Sidetree protocol, designed to create scalable digital ID networks. The ION is designed to deliver digital ID solutions at scale while taking advantage of the security and decentralization of the Bitcoin network. The company launched a beta version of ION in June 2020.

Microsoft, along with Accenture, the Rockefeller Foundation, and vaccine alliance Gavi, is a founding member of the ID2020 Alliance dedicated to equipping everyone in the world with an identity. As the result of a collaboration with Microsoft on digital identities, payment behemoth Mastercard also joined ID2020 last year.

3. Elastos

Elastos is on a mission to build a decentralized internet of value, with the concept of self-sovereign digital identity at its core. When a user signs up for Elastos, they’re automatically assigned a digital ID to use with any application operating on the network.

Recently, Elastos confirmed that it had launched a privacy-centric messenger application called Hyper, which will soon be available for the Android and iOS operating systems. Whereas many existing messenger services harvest user data, Elastos assures users of total privacy. They can sign up using their Elastos digital ID, and messages are transmitted using the Elastos Carrier network of distributed nodes, meaning that user communications aren’t even stored on any servers.

The launch comes after the project also launched a decentralized, privacy-focused file storage solution for applications operating on the network.

Elastos was founded by Rong Chen, one of the World Wide Web’s original creators and a former executive at Microsoft. He left big tech with the idea of developing Elastos as an open-source, decentralized version of the internet that puts the user in control. The Elastos Foundation recently joined the World Economic Forum as part of its efforts to bring ethical standards to data collection.

This list is far from exhaustive. Other projects and firms, such as Civic and Accenture, are also developing digital identity solutions based on blockchain. Still others, such as DocuSign and KYC Chain, are looking at more specific ways to ease the general growing pains of digital transactions from the user and enterprise perspective.

Therefore, it seems unlikely in the end that there will be “one digital identity to rule them all.” However, even incremental steps in enhancing user privacy and reducing the administration involved in access rights and data management will be a vast improvement over the status quo.

Subscribe on Google News