 Quick quickly about me. You just heard it, but I built these things and recently also initiated the ESE 20 token standard with italic and That became a lot bigger than expected Yeah, so when we think about identity and this talk is about identity and it's also an ESE What is identity, right? So if you think about identity today My clicker doesn't work Like it could be for example your physical Attributions right like it could be how you look or your biometric data and some kind of like physical properties attached to your physical person and Your body for example, right? But an identity could also be the group you belong to like the country you belong to or even the history over time Like the reputation over time or the things you experience or your ancestors experience and so on and this is all what we kind of aggregate to our identity Today obviously identity are mostly like some kind of like forms and certifications We get from our government or we get from like all kind of other places For example, we have social security numbers. We have plastic cards We have passports and so on This kind of like is what we think our identity is today and this is what we use in the world to represent ourselves So when we think about a passport for example, what is it really right? What is a passport? It's basically the fact that there was a government agency Bureau grad sitting somewhere and I came along with a birth certificate and a photo and Maybe they measured my biometric data and they figured out. Yeah makes sense It's all matching. I give you a passport So basically it's a collection of Things and what it is is actually collection of claims Because what I'm having here is I have a claim The birth certificate which somebody gave me when I was born, right? It's already a claim, but that person who was there maybe was the doctor or maybe was the hospital That I was born there Then I take a physical claim which is basically a photocopy or maybe some biometric data scanned and Then it creates a new claim now done by this guy here There's no laser pointer there and This creates now this new claim a passport So basically almost everything It's just a lot of like attestation we get from each other and we give to each other right for example We could look at here this use case. I have passports or I get driver's licenses Here or for some life a university degree and this is in the first place issued by a government to a person Who can issue that degrees to in universities itself and they then issue a degree and this is really hard here To do another person, right? So it's a lot of claims on the end. It's all claims It's a humongous network of claims and we came up with a lot of different type of claims degree certificates and whatnot and we collect them over time and it's kind of like how we represent ourselves in the world Maybe not necessarily with our friends with our friends. We might use social networks, which is also kind of like a collection of claims But if we go do any kind of like Company cooperation, we make an interview or whatever we just take all of these claims You know we show them here look at all of these titles and I did this and this and that and This basically tells the other person a yeah, I trust this university. It's a big one looks like a real thing here what he has Here I might just hire him for example, right? The problem with the current systems is that we have this huge institutions which issue claims and I'm the tiny little guy and I will receive these claims and I Kind of like the power sits in these institutions and it sits in the humongous data walls, right? so identity claims today is basically Not necessarily with me. I mean it's with the papers I carry around but it's kind of like a more like a monopolized ecosystem What if we could decentralize all the things we could just take that and Distribute that power and that ability to claim things about each other and Where do I have to point I have to put this way So for example when we think about Uh Standards right so what are standards good for and I initiated together with Vitalik? Basically I proposed that standard and it was a huge debate and on the end everybody started like using that standard It really helped foster a few things for example if you look at the token example, right the token standard and how it kind of Came to be is we had already things like Bitcoin and then people came with this idea. Hey made let's make colored coins and Then there was this project master coin out of it later Splitted off counterparty and what's the idea is that we can basically create coins on top of Bitcoin We have the same security like the like the Bitcoin network But we can create new coins and then companies suddenly can issue their own coins And that's what's all really nice and neat and it was kind of used but not really big then a theorem came along and Also people started issuing tokens Inventing their own ideas of how a token can look like and we had things like digix the gold token Which was kind of like the first at least I know of rather bigger custom token But what really actually made this very interesting and very powerful is When you come up with a standard like if you say hey a simple set of rules you basically say hey Let's make these three four or five functions Let's all use these function as the Operator the interface towards the token and suddenly we can have wallets exchanges other contracts interacting with those tokens and Suddenly you have a complete mess Yeah Yeah, I mean this is actually what spurred all this this craziness let's say Because suddenly we have a rather simple standard which doesn't really even determine much But it allows so much flexibility still inside that all of this experimentation and all of this crazy new ways of how using it became possible and that's why it took off so big and it's still like Obviously in the rocket ship flying wherever So It's actually all about standards if we have standards it allows us to basically interoperate and be compatible and especially in a platform like Ethereum where you have an endless amount of possibilities of what you can do and how you can interact and what you can create Standards are really the key to make a viable ecosystem flourish So I thought about like a few years about Two years about like kind of like how I then you could look like was working back then With a client and thinking about this idea and I kind of like had this idea Okay, it should be a smart contract and that should represent you and la la la la and I thought about it and really until now I didn't came up with any way different solution than the one I had back then and Actually always expecting that somebody else would came up with a standard and Megan ERC which didn't happen. So I did it So I created this standard or initiated it And on the end it will only become a standard that everybody Participates in everybody agrees, but that's the whole point of a standard and it now has the number seven two five And I created this this standard which basically defines a smart contract which represents you I don't represent not even a person. It could also represent a machine or even could represent a an item an object or a company So this identity standard basically Consists out of three components. So it itself is a smart contract Which is representing you and it has these three components. It has keys, which are your operators It can execute so you can actually act on the blockchain as you and it has claims So I will now explain these three pieces here and then show some examples of how this can work The idea is basically that you have these keys and this is how you act in the world, right? So for example, you can make transactions obviously on the blockchain You can send money around and then you can Prove with that that if this is one of your keys in your identity that it obviously must be done by you I Can also sign any kind of documents or I can send sign any kind of proofs or messages in the real world Proving that it was me doing that as long as I attach my identity to it The person seeing the signature can verify the signature and can assume a very high likelihood that it was me So actually the list is like unlimited because what could do with these kind of things It's like not very limited in this sense. The idea is and this is the beauty of Public-private key topography is that we can have these kind of control over we can basically like validate ourselves In the real world and others can provably Validate this this as well. They can check that this is correct without ever I ever have to reveal my password or my secrets or whatever and I think we are just getting started into the age of Key signing right so will we do this and all the time for basically everything and a really simple use case for this for example would be logins, right? I can simply Sign the message I want to go into your website and they can prove that maybe even check my identity and Do some kind of verification process and they can let me in and I never send my password over the wire Or anything and I could even use a third-party to factor the cation device the other part is and Because it's a smart contract. I can execute so this standard has a execute function Which allows you to act as yourself on the blockchain so you could either use the keys to do actions on the blockchain and then somehow like Point the people you interact with to your identity so they can check things about you or you can actually act directly through your contract and It's really important thing is that you can add other claims to other Identities or to other people objects or even other smart contracts, which might just be code and You can claim that for example You verified them or maybe you're an issuer about claims Maybe your government and you can attach claims and it's very approbably coming from that identity and The third part and that's actually the important part We're just its own ERC After some discussion we decided moving it out in ERC 735 and Basically making it a substandard of the 725 and the idea is really to have a way to attach claims to a smart contract and now we have all to debate exactly how this can look like and I have an initial draft up there of how this can look like and how it can work the benefit of claims in Your own identity it can be added by anyone, but I always have to approve it right if it's my identity I want to need to I want to be able to approve it because I don't want that things are attached to my identity Which I don't really agree to this is especially important if I'm a person if I'm a smart contract Maybe an approval is not even needed. Maybe a smart one who can just like get a bunch of Claims and randomly people can do that and it can't be changed without my permission Or it can be changed without my permission. So basically The person who issued to claim about me on my identity once I approved it They are technically in control because they issued it, right? But if I don't for example, if they change something about the claim and I'm not agreeing I could always remove it Because it's on my identity so I can allow it to add but I can also take it off anytime if I disagree with a change Or for example if the change to data hash and I never really was in their office again or whatever and the important thing about the claim structure in this standard is that the Claim itself contains in actual signature and The beauty about having it index mark on it and having a signature that this could be any kind of signature The difference here for example, if you would make a registry of claims, then it's always the always have to be an ethereum Signature, it's an ethereum transaction and the smart contract registry will determine how these claims are added But this is a really open container because it can be all kind of different type of signatures in the future doesn't need to be an ethereum one. It could be anything and It obviously contains the actual claim reference or claim data It really depends on what kind of claim it is Most of the cases you don't want to store any kind of actual data on the blockchain You don't want to store an actual claim like it. Maybe here your The bytes of your photo or maybe your actual address you only want to claim at the claim with the reference To the actual data. So the actual data will still sit somewhere else and this is to be debated This could be sitting in swarm IPFS or this could be sitting with the company directly still But in some cases even it might be you want to have a bit mask or something which actually says something about you Right in the bytes of the claim where there's more detailed Claim detailed so to say in it So basically how this could look like in detail how it's currently in the in the standard and because it's a smart contract standard It's obviously code We have a claim type and the claim type for example says Maybe it's a claim type zero one two three four five Maybe we say zero is the claim for a biometric data and one could be the claim for an address So if I see you on your smart contract, you have a claim type zero and a claim type one and They are both issued by an issue. I trust Maybe it's the German government and maybe it's the Deutsche Post which knows your address and I trust them Then the only thing I have to check is does the signature actually contains Contains actually the holder address which is you at the address of the of me in this case It contains this number here the claim type and it contains this little data And it comes out to an address which is still owned by the Deutsche Post or the German state Then I know that claim was actually issued by the Deutsche Post or the German state and as long as any external party trust that issue on He can be completely confident that you have an address and that you are human or Maybe some kind of flesh thing. I if you have biometric data and That might be fully enough to allow you access to something to issue credit or to issue an account or whatever you want to do in an automated process so it's all about Basically trusting the claim issuers and it's obviously that depends on what kind of like issues This could be and in the beginning this probably will be big institutions But in the future this could also be peer-to-peer networks or other kind of reputation systems or whatever the claim Can be it's it's completely open, right? So how would the process look like and I have three minutes I have to go faster for example like a off-chain example could be here I'm walking around with my Smartphone simple use case I want to get into a disco and The guy has to prove that I'm over 18 or whatever So he would basically send me from his phone a random string and this random string is something I can sign and I will sign this random string plus my identity address and send it back to him He will be able to verify Okay, this was signed by this key and he signed my random string So obviously he could he had the private key he could sign it properly and yes, there is his address his identity So he goes check on the blockchain gets the claim he needs or whatever claim that is right Maybe it's the age whatever or an age certificate. That's over 18 says that says over 18 or so He basically checks the claim and this means he checks the signature and And then goes and checks on the smart connect of the issue that actually the key he's designed with is still there So this would be the power for the issue to remove a claim even though that I might not agree to so as long as the signature is correct and Returns a address still owned by the issuer this person here The bouncer can be confident that this person is whatever the claim says it does And it might be a very abstract information. Maybe just over 18. It doesn't even mean he's 20 30 50 or 110 it just says it's over 18 or He's allowed to just Go in for whatever reason, right? So you you could do this in the off-chain world basically by going around and signing messages all the time And then people can always go to your blockchain identity and check Hey, who is that person does he have the right requirements and you can verify these kind of requirements? If I do this on the blockchain, I Basically can act through my identity. I can call a function on another smart contract and this could be the super important Cool file smart contract and I really want to use that function But this function requires to check some identity stuff. Otherwise it can't be used So the smart corner will automatically realize, okay an identity is calling me So I get the claim from this identity smart contract back. I will verify the signature right in the smart contract Go to the issuers smart corner and check that key is still there. I know the key is still there So it's a valid claim still attached here. I trust the issuer I don't even need to know the actual data most of the time. We don't care about the actual data I don't know care how what your name is or how you look like until As long as I know that you are a person and that you have maybe a residence somewhere where it's Where maybe it's the country or whatever or maybe it's just enough to know that you haven't residence at all And that's it. I can continue with the execution of the super cool function in this case so you couldn't do this you can use this on chain and you can use it off chain and my time is off and You can basically do these really simple steps of Actually two or three steps to completely verify the claim and it's attached to my identity. So I'm full in control and This allows basically all of these interesting things and it combines these these two little rather simple standards And it gives enough flexibility that all kind of experimentation can happen So we can figure out what kind of claims we trust how these claims can look like in detail Where they are stored? How could you even verify the claims actually content may be in a CK snark proof outside of the blockchain? People can come up with all kind of systems. They want to Claim about each other and as long as we follow the simple standard we have that interoperability Which can create all of this network effect we see with ESC 20 for example so it's all about discussing and Coming to an agreement what makes sense start playing around and making a huge experimentation around it you