Published on

Hyperledger Indy Credential Issuance Flow

Authors

Hyperledger Indy is a blockchain that specialises in identity management. These identities can be self-attested meaning that the user provides information about themselves which has not been verified or it can be attested by a trusted organisation. The organisation will normally be trusted with being able to verify the given information for example a bank can verify someone's credit status.

These issued identities are referred to as credentials. The power with this is that the institution can be verified on the Indy chain against their verinym (this is a publicly listed identifier which is published on the Indy chain). This is possible as the credential issued by an institution is signed by them.

Below is the process to issue a credential:

sequenceDiagram
    participant User
    participant Institution
   User->>Institution: Connect using invite
   Note over Institution,User: This is normally in the form of a QR that the user can scan in an identity app (Connect.me for example)
    Institution->>Institution: Fill out credential
    Institution->>User: Offer the credential
alt Answer offer
    User->>Institution: Accept the credential
    Institution->>User: Issue the credential
else
    User->>Institution: Reject the credential
   Note over Institution,User: This may be because something is wrong with the details of the credential
end

In the above the institution will have some way of providing the invite to the user. The user may for example log into the institutions portal and go to a section that helps them setup their identity wallet. An identity wallet can be any app that supports the protocols that Indy uses (many of the protocols are open). Connect.me is an example of one of these apps.