What are you looking for?

Self-sovereign identity
Self-sovereign identity (SSI) is a new paradigm in identity management. SURF has been researching it for several years. We look at aspects such as applicability, functionality, technology and privacy. Read more about SSI and what we are doing and have already done here.
student met laptop - Kees Rutten

What is self-sovereign identity?

SURF has been researching self-sovereign identity (SSI) for several years. We focus on aspects such as applicability, functionality, technology, and privacy, while also considering usage and legal issues. With this knowledge, we support educational institutions in their IAM development and enhance SURF's services.

New paradigm in identity management

Self-sovereign identity (SSI) represents a new paradigm within identity management. A key difference from existing identity management systems, such as Federated Identity Management (for example, SURFconext), is that users have more control over how their personal data is used.

How does self-sovereign identity work?

In the SSI model, the source, such as an educational institution, provides credentials to the user, which the user can store in a wallet. This wallet is typically an application on the user’s mobile phone. When a user wants to access a service, that service requests specific proof from the user, such as verifying that the user is a student. The user can then choose to release this information to the service via their phone.

Important tool for control of personal data

Policymakers in various sectors increasingly view SSI as an important tool to give users greater control over their own data while preserving privacy. This is evident at both national and European levels, for example, in the new eIDAS regulation. eIDAS provides a login option that allows European citizens and businesses to access Dutch services using their national authentication methods without relying on DigiD or eHerkenning.

Research into self-sovereign identity

For this reason, SURF has been researching SSI for several years, focusing on aspects such as applicability, case studies, maturity, impact on educational institutions, functionality (its capabilities and its relationship to the existing IAM landscape), technology (how it works and which technical standards apply), as well as privacy and legal considerations. With this knowledge, we support educational institutions in their IAM development and improve SURF’s services.

SURF draws inspiration from use cases at institutions and technological innovations from SURF Trust and Identity, applying this knowledge to service development initiatives such as edubadges and eduID. We monitor developments across Europe and collaborate both nationally and internationally.