This is the repository of the identity and authentication working group. This repository is used to collaborate, document decisions, discuss changes, raise issues and provide feedback.
The working group sessions are public and everybody is welcome. If you are interested in discussions about identity and authentication on the IC, please join us.
- DFINITY lead: Frederik Rothenberger
- Community Leads:
- Dan Ostrovsky (Identity Labs)
- Bruce Huang (AstroX)
- DFINITY Research Lead: Michel Abdalla
- Coordinator: Mary Dwyer
| Topic | Description |
|---|---|
| Mobile App Integration | Improving interactions between: 1. native mobile apps (Android and iOS) and identity providers hosted on the IC. 2. dapps hosted on the ic with native mobile wallets acting as identity providers |
| Interoperability of Services using User Identity | Currently, users either have different principals on each service or limited access rights to a specific list of canisters. While great for security some use-cases require to bridge this isolation in a controlled way. The working group needs to find a solution for this problem. Attribute sharing is part of this discussion. |
| Transaction Approval | Currently, access to a service can only be given entirely or not at all. This is not sufficient for high value interactions. In those cases, repeated and explicit user consent for the particular interaction is desired (e.g. authorizing asset transfers). Developers should have an easy to use way to achieve that. |
| Attribute Support on the Internet Computer | For identity providers such as the Internet Identity, the principal under which a user is known to a dapp is both unique to that dapp and unpredictable, making it hard for dapps to share information about their users with one another. Here we discuss ways of addressing this problem in a privacy preserving manner. |