# README
x/iid
Contents
Abstract
Every digital asset in the Cosmos context should have a universally addressable Interchain Identifier (IID). Interchain Identifiers are a standards-compliant mechanism for uniquely identifying and referring to digital assets within chain namespaces. IIDs also enable (off-chain) assertions to be made about (on-chain) digital assets – for instance, in the form of Verifiable Credentials. Each IID is associated with an IID Document, which contains all the data needed to compose and interact with an asset's properties and services.
Concepts
Structure
x/iid module defines a struct IidDocument to house the contents of the identifier and its linked resources and capabilities.
type IidDocument struct {
// @context is spec for did document.
Context []*Context `protobuf:"bytes,1,rep,name=context,proto3" json:"@context,omitempty"`
// id represents the id for the iid document.
Id string `protobuf:"bytes,2,opt,name=id,proto3" json:"id,omitempty"`
// A IID controller is an entity that is authorized to make changes to a IID document.
Controller []string `protobuf:"bytes,3,rep,name=controller,proto3" json:"controller,omitempty"`
// A IID document can express verification methods,
// such as cryptographic public keys, which can be used
// to authenticate or authorize interactions with the IID subject or associated parties.
// https://www.w3.org/TR/did-core/#verification-methods
VerificationMethod []*VerificationMethod `protobuf:"bytes,4,rep,name=verificationMethod,proto3" json:"verificationMethod,omitempty"`
// Services are used in IID documents to express ways of communicating
// with the IID subject or associated entities.
// https://www.w3.org/TR/did-core/#services
Service []*Service `protobuf:"bytes,5,rep,name=service,proto3" json:"service,omitempty"`
// NOTE: below this line there are the relationships
// Authentication represents public key associated with the did document.
// cfr. https://www.w3.org/TR/did-core/#authentication
Authentication []string `protobuf:"bytes,6,rep,name=authentication,proto3" json:"authentication,omitempty"`
// Used to specify how the IID subject is expected to express claims,
// such as for the purposes of issuing a Verifiable Credential.
// cfr. https://www.w3.org/TR/did-core/#assertion
AssertionMethod []string `protobuf:"bytes,7,rep,name=assertionMethod,proto3" json:"assertionMethod,omitempty"`
// used to specify how an entity can generate encryption material
// in order to transmit confidential information intended for the IID subject.
// https://www.w3.org/TR/did-core/#key-agreement
KeyAgreement []string `protobuf:"bytes,8,rep,name=keyAgreement,proto3" json:"keyAgreement,omitempty"`
// Used to specify a verification method that might be used by the IID subject
// to invoke a cryptographic capability, such as the authorization
// to update the IID Document.
// https://www.w3.org/TR/did-core/#capability-invocation
CapabilityInvocation []string `protobuf:"bytes,9,rep,name=capabilityInvocation,proto3" json:"capabilityInvocation,omitempty"`
// Used to specify a mechanism that might be used by the IID subject
// to delegate a cryptographic capability to another party.
// https://www.w3.org/TR/did-core/#capability-delegation
CapabilityDelegation []string `protobuf:"bytes,10,rep,name=capabilityDelegation,proto3" json:"capabilityDelegation,omitempty"`
LinkedResource []*LinkedResource `protobuf:"bytes,11,rep,name=linkedResource,proto3" json:"linkedResource,omitempty"`
AccordedRight []*AccordedRight `protobuf:"bytes,12,rep,name=accordedRight,proto3" json:"accordedRight,omitempty"`
LinkedEntity []*LinkedEntity `protobuf:"bytes,13,rep,name=linkedEntity,proto3" json:"linkedEntity,omitempty"`
AlsoKnownAs string `protobuf:"bytes,14,opt,name=alsoKnownAs,proto3" json:"alsoKnownAs,omitempty"`
}
DIDs and IIDs
Decentralized Identifiers (DIDs) are the W3C specification for identifying any subject in the physical or digital realm. DIDs implement standardised DID Methods to produce fully-qualified Universal Resource Identifier (URI), as defined by RFC3986.
Interchain Identifiers (IIDs) are a DID Method for identifying on-chain assets – such as NFTs, fungible tokens, namespace records and account wallets.
IidDocument
Properties of an IID are conceptually stored in the format of an IID Document object. Which contains core properties (as defined by W3C DID Core):
- Identifiers
- DID Subject
- DID Controller
- Also Known As
- Verification Methods
- Cryptographic material
- Verification Relationships
- Authentication
- Assertion
- Key Agreement
- Capability Invocation
- Capability Delegation
- Service
As well as two additonal property sets which are unique to digital assets:
- Linked Resources
- Accorded Rights
Property extensions may be added by application developers who need to implement their own DID Method for a specific use-case (although it is anticipated that the IID method should serve most).
IID Registry
The IID Module is a Verifiable Data Registry sytem to CRUD decentralized identifiers and IID documents.
Resolving a given IID using the IID Module services returns the data necessary to produce an IID document in a DID-conformant format, which can be serialized as JSON-LD.
IID Method
The IID Method defines a standard way to:
- Create an IID
- Set the properties associated with the IID
- Read (resolve) an IID Document to produce a conformant JSON-LD representation.
- Update IID Document properties
- Deactivate an IID
- Delete an IID
IID Resolver
The IID resolver is a DID resolver service that takes an IID as input and produces an IID Document as output (which conforms to the W3C DID documents format).
IID Deactivation
If an IID has been deactivated, the IID document metadata includes a property with the boolean value true.