Term · 27. Emerging Categories 2024-2026
Self-Sovereign Identity SSI
Self-sovereign identity (SSI) is a model where individuals hold and control their own identity data in a personal digital wallet, sharing only what is needed and without a central authority owning the identity. Built on decentralized identifiers and verifiable credentials, SSI lets a person collect signed claims (a diploma, a license) and present them selectively. The goal is privacy, portability and user consent rather than provider-controlled accounts.
Definition
Identity model where individuals own and control their digital identifiers and credentials, without dependence on any central authority. Built on Decentralized Identifiers (DIDs), Verifiable Credentials (VCs), and cryptographic key management in user-controlled wallets. Aligned with EU Digital Identity (EUDI) Wallet, the Trust Over IP Foundation principles, and ISO/IEC 18013-5 (mobile driver's license).
- Synonyms
-
- SSI model
- User-centric identity
- Application
- Regulatory: ISO/IEC 24760 / 27001 / 29115
MidPoint: Self-sovereign identity is an approach to digital identity that gives individual control over their identity data.
- Standards & regulations
-
- ISO
- Sources
-
- Trust Over IP Foundation primary source
- W3C Verifiable Credentials Data Model 2.0 industry commentary
Related terms
-
CIAM (CIAM)
Customer Identity and Access Management — specialized IAM for managing customer (not employee) identities. Differs from …
-
Decentralized Identifiers (DID)
W3C standard (DID v1.0, 2022) for globally unique identifiers controlled by the identity subject, not a central authorit …
-
Identity Control Plane
Centralised policy and orchestration layer governing identity decisions across heterogeneous IAM, IGA, PAM, and authoriz …
-
Identity Fabric
KuppingerCole-coined architectural concept (2019, mainstream 2023+) for an integrated identity platform that delivers al …
-
Remediation (Rem)
Action taken to correct an identified identity risk or policy violation — disable orphan account, revoke excessive entit …
-
Access Management (AM)
Discipline of granting and enforcing access to resources after identity has been established. Encompasses authentication …
Frequently asked questions
What does self-sovereign mean?
It means the individual, not a company or government, is the custodian of their identity. They decide what to share, with whom, and for how long, using cryptographically signed credentials they store themselves.
What are the building blocks of SSI?
Decentralized identifiers (DIDs) for self-controlled identity, verifiable credentials (VCs) for signed claims, and a digital wallet to store and present them. A trust framework defines which issuers are accepted.
Is SSI practical today?
It is emerging. Standards are solid and government wallets such as the EU Digital Identity Wallet are driving adoption, but ecosystems, issuer participation and UX are still maturing. Expect gradual, sector-by-sector rollout.