数字身份_数字身份作为投资

最新推荐文章于 2024-11-12 10:23:53 发布

weixin_26744853

最新推荐文章于 2024-11-12 10:23:53 发布

阅读量684

点赞数

文章标签：区块链 python java javascript linux ViewUI

原文链接：https://medium.com/digital-diplomacy/digital-identity-as-an-investment-d6c2ef21431d

版权

数字身份

Trustworthy digital identification remains one of the main challenges of the internet because none of the traditional, offline methods of verifying that someone is who they claim to be apply. Yet, while digital identity is one of the most foundational and valuable digital assets we have - made even more apparent by the pandemic - many people question whether there is a business to be built around it.

可信赖的数字身份识别仍然是Internet的主要挑战之一，因为没有一种传统的脱机方法可以证明某人是他们声称的应聘者。然而，尽管数字身份是我们拥有的最基础，最有价值的数字资产之一(大流行使这一点更加明显)，但许多人质疑是否要围绕它开展业务。

The following article attempts to provide an overview of what digital identity is and why it matters, to explain it’s relevancy now and in the future, and to highlight startups and investors in the space. It is intended as a high level overview and is by no means comprehensive. This article was informed via conversations with ID2020, Okta Ventures, the Omidyar Network, and several digital identity startups.

下一篇文章试图概述什么是数字身份及其重要性，以说明其现在和将来的相关性，并重点介绍该领域的初创企业和投资者。它旨在作为高级概述，而绝不是全面的。本文是通过与ID2020 ， Okta Ventures ， Omidyar Network以及多家数字身份初创公司进行对话而得知的。

什么是数字身份？ (What is Digital Identity?)

Digital identity (DID) can be broken down into two distinct aspects. The first is “the fact of being who or what a person or thing is¹.” This first aspect can be referred to as foundational identity and is generally indicated by credentials: legal name, passport, SSN, and other officially issued forms of qualification. It is inextricably tied to the physical world (via artifacts or biometrics) and the institutions that govern it. ID2020 has created a useful framework outlining the properties of a foundational digital identity, advocating that a responsible digital ID be: personal, privacy-preserving, portable, and persistent. The Omidyar Network further outlines five design principals for Good ID: privacy, inclusion, user value, user control, and security. De-duplication and fraud prevention are top of mind concerns for foundational DIDs.

数字身份(DID)可以分为两个不同的方面。第一个是“成为某人或某物的事实”。这第一个方面可以称为基本身份 ，通常由凭据表示：法定名称，护照，SSN和其他官方发行的资格证明。它与物理世界(通过人工制品或生物识别技术)和管理它的机构密不可分。 ID2020创建了一个有用的框架，概述了基本数字身份的属性，并提倡负责任的数字ID：个人，隐私保护，可移植和持久。 Omidyar网络进一步概述了Good ID的五项设计原则：隐私，包容性，用户价值，用户控制和安全性。重复数据删除和欺诈预防是基本DID的首要考虑因素。

Policymakers and governments are instrumental in developing the foundational identities upon which functional identity can be further developed by the private sector.

政策制定者和政府在发展基础身份方面发挥了重要作用，私营部门可以在这些基础身份上进一步发展职能身份。

The second aspect of identity can be defined as “the characteristics determining who or what a person or thing is¹” and is largely comprised of online attributes: email address, likes, follows, purchases, etc. This aspect of identity can be referred to as functional identity and is less reliant on the physical world, since these attributes are not usually verified by a third-party, and can be established entirely via one’s online behavior. Thus, functional identity is inextricably tied to data.

身份的第二个方面可以定义为“确定某人或某物是谁或什么的特征¹”，并且主要由在线属性组成：电子邮件地址，喜欢，关注，购买等。身份的这一方面可以称为功能标识，并且对物理世界的依赖性较小，因为这些属性通常不由第三方验证，并且可以完全通过一个人的在线行为来建立。因此，功能标识与数据密不可分。

Functional identities require a different framework in which persistence may not be a desirable quality, as users may want to isolate different online interactions and prevent correlation in order to preserve privacy or operate under multiple pseudonyms.

功能身份需要一个不同的框架，其中持久性可能不是理想的质量，因为用户可能希望隔离不同的在线交互并防止相关性，以保护隐私或使用多个假名进行操作。

Microsoft has put forth a framework that involves primary (persistent) and non-pairwise (non-persistent) digital identifiers to allow for this flexibility. Functional identity is often monetized in ways that are extractive.

Microsoft提出了一个框架，该框架涉及主要(持久)和非成对(非持久)数字标识符，以实现这种灵活性。功能身份通常以可提取的方式货币化。

Both forms of digital identity can be provisioned and verified using centralized or decentralized methods. Decentralized digital identity is often referred to as self-sovereign identity (SSI) and exhibits the principals identified by Christopher Allen below. Proponents of self-sovereign identity advocate for an architecture in which the user owns and controls their own identification data, to be provisioned out to service providers. This stands in contrast to the current system in which each service provider replicates and re-verifies a user’s data. Oftentimes, SSI leverages distributed ledger technology.

可以使用集中式或分散式方法来提供和验证两种形式的数字身份。分散的数字身份通常被称为自我主权身份(SSI)，并展示了下面克里斯托弗·艾伦(Christopher Allen)所标识的主体。自主权身份的支持者主张一种架构，在该架构中，用户拥有并控制自己的标识数据，并将其提供给服务提供商。这与每个服务提供商都在其中复制并重新验证用户数据的当前系统形成对比。通常，SSI利用分布式分类帐技术。

SSI is not to be confused with federated identity systems, which encompasses single-sign-on (SSO.) SSO (“Sign in with Google/Facebook/Apple”) attempts to create one on-boarding process that grants access across sites and services, but results in the accumulation of a large amount of personal data by the single authenticating party.

SSI不应与联合身份系统混淆，后者包含单点登录(SSO)。SSO(“使用Google / Facebook / Apple登录”)尝试创建一个允许跨站点和服务访问的启动过程，但会导致单个身份验证方积累大量个人数据。

为什么数字身份很重要？ (Why Does Digital Identity Matter?)

At the most basic level, foundational identity consists of data points that are recorded on birth certificates, passports, and state issued IDs. The problem is, these forms of identification require the maintenance of physical artifacts in an increasingly digital world, are completely reliant upon the central authorities that issue and validate them, and are susceptible to theft and fraud. ~1.1 billion people globally lack a legal form of identification⁵, preventing them from accessing financial services, purchasing real estate, voting, and partaking in a myriad of other important activities. While this article will focus primarily on private sector approaches to functional identity, please see The Impact of Digital Identity for more on foundational identity.

在最基本的级别上，基础身份包括记录在出生证，护照和州签发的ID上的数据点。问题是，这些形式的识别需要在日益数字化的世界中维护物理制品，它们完全依赖于发布和验证它们的中央机构，并且容易被盗窃和欺诈。全球约有11亿人缺乏合法身份证明⁵，这使他们无法使用金融服务，购买房地产，投票和参加众多其他重要活动。尽管本文将主要侧重于私营部门实现功能身份的方法，但请参见《数字身份的影响》，以了解更多有关基础身份的信息。

From a functional identity perspective, since the Internet lacks a native identity layer, each Internet service provider is forced to conduct authentication procedures individually. Consumers are thus forced to share their personally identifying information (PII) with many different service providers. These service providers are, in turn, required to store and safeguard this sensitive data. Duplication and replication of this data is inefficient and creates many points of vulnerability. Enterprises don’t want this liability. This system also creates a negative user experience. When consumers have to provide the same authentication data to multiple service providers, it slows down on-boarding processes for new interactions and increases the time required to engage in existing relationships with service providers. Valuable time is wasted retrieving and resetting passwords and, given the number of distinct accounts consumers maintain, consumers are likely to use the same passwords across accounts. This leaves consumers vulnerable to identity theft.

从功能身份的角度来看，由于Internet 缺少本机身份层，因此每个Internet服务提供商都必须单独执行身份验证过程。因此，消费者被迫与许多不同的服务提供商共享他们的个人身份信息(PII)。反过来，要求这些服务提供商存储和保护此敏感数据。此数据的复制和复制效率低下，并造成许多漏洞。企业不希望这种责任。该系统还产生负面的用户体验。当消费者必须向多个服务提供商提供相同的身份验证数据时，它会减慢新交互的启动过程，并增加与服务提供商建立现有关系所需的时间。检索和重置密码浪费了宝贵的时间，并且鉴于消费者维护着不同帐户的数量，消费者很可能在各个帐户中使用相同的密码。这使消费者容易遭受身份盗用。

为什么数字身份具有挑战性？ (Why is Digital Identity Challenging?)

The Sovrin Foundation breaks down the challenges of digital identity into five categories, illustrated below. I’ve added completeness as a sixth challenge.

Sovrin基金会将数字身份的挑战分为五类，如下所示。我将完整性作为第六个挑战。

Finally, all identity solutions face an inherent trade-off between security (effectively and appropriately restricting access and excluding bad actors) and frictionless access (improving convenience and speed, and including more good actors.)

最后，所有身份解决方案都面临安全性(有效和适当地限制访问并排除不良行为者)和无摩擦访问(提高便利性和速度，并包括更多好的行为者)之间的固有权衡。

为什么现在与数字身份相关？ (Why is Digital Identity Relevant Now?)

While not immediately obvious, COVID-19 is a catalyst for DID. The most obvious impact, while fraught with ethical issues, is the need to monitor health status as we return to economic activity during the pandemic. This process could require citizens to carry “immunity certificates,” which are essentially digital IDs tied to health data.

虽然不是很明显，但是COVID-19是DID的催化剂。尽管存在很多道德问题，但最明显的影响是在大流行期间我们重新从事经济活动时需要监测健康状况。此过程可能要求公民携带“免疫证书”，该证书实质上是与健康数据相关联的数字ID。

A large portion of the global population may soon be equipped with a digital wallet that holds their unique digital identity and digital assets (ie. health certificates.)

全球大部分人口可能很快就会配备一个数字钱包，该钱包可以保存其独特的数字身份和数字资产(例如健康证明)。

There are also many second-order catalysts related to the pandemic. Given the shift to remote work, enterprises face a real authentication challenge as their workforces access sensitive data and engage with an increasing number of applications (approaching 100, on average³) via remote devices. The reliance on processes that leverage in-person verification has resulted in delays and dysfunction across a large number of critical processes and, in some cases, has resulted in increased fraud. Finally, digital identity is a key enabler of the move towards cashless societies, accelerated by the pandemic given the need to quickly and accurately distribute funds and the desire to avoid physical currency.

还有许多与大流行有关的二阶催化剂。随着远程工作的转移，企业面临着真正的身份验证挑战，因为其员工访问敏感数据并参与越来越多的应用程序(平均接近100个³) 通过远程设备。对利用亲自核实的流程的依赖导致大量关键流程的延迟和功能障碍，在某些情况下还导致欺诈行为增加。最后，由于需要快速，准确地分配资金以及避免使用实物货币的需求，大流行使数字身份成为无现金社会发展的关键推动力。

数字身份的组成部分是什么？ (What are the Components of Digital Identity?)

There are many aspect to one’s identity. The World Economic Forum breaks down the technical identity stack into the above layers. The layers are discussed in more detail below, somewhat proportional to the level of startup activity in each.

一个人的身份有很多方面。世界经济论坛将技术身份栈分解为上述各层。这些层将在下面更详细地讨论，每个层中的启动活动程度都与之成比例。

Standards such as SAML, WebAuthn, OpenID Connect, OAuth have been, and will remain, critical to the development of the digital identity ecosystem. New digital identity protocols and standards, many for decentralized architectures, are also being developed. Solid, an open source project led by Sir Tim Berners-Lee; Sovrin; Blockstack; and Microsoft’s ION(Identity Overlay Network to be built on the Bitcoin protocol in conjunction with the Decentralized Identity Foundation) are examples. Protocols tend to be open source and are often viewed as public utilities. While value can accrue to these “public utilities” (ie. Ethereum), they could require a longer investment horizon as they must effectively incentivize developers to build services and products on top of a new network.

标准，例如SAML ， WebAuthn ， OpenID Connect ， OAuth 对于数字身份生态系统的发展已经并将继续至关重要。也正在开发新的数字身份协议和标准，其中许多都是针对分散式架构的。 Solid ，由Tim Berners-Lee爵士领导的开源项目；索夫林 ; 区块栈 ; 微软(Microsoft)的ION (基于比特币协议与去中心化身份基金会一起构建的身份覆盖网络)就是例子。协议往往是开源的，通常被视为公用事业。尽管这些“公用事业”(即以太坊 )可以产生价值，但它们可能需要更长的投资期限，因为它们必须有效地激励开发人员在新网络之上构建服务和产品。

Attribute Collection involves the processes by which characteristic data is collected and stored and encompasses personal data stores. 3Box and Blockstack are startups building decentralized solutions in this layer.

属性收集涉及收集和存储特征数据的过程，并包括个人数据存储。 3Box和Blockstack是在这一层构建分散式解决方案的初创公司。

Authentication is perhaps the most crowded space within the digital identity stack. Authentication answers the questions “how do I prove who I am?” and “how do I prevent others from pretending to be me?” It also encompasses identity-related fraud reduction and security solutions such as Sift Science (leveraging machine learning to reduce fraud) and SentiLink (combating synthetic identity fraud.)

身份验证可能是数字身份堆栈中最拥挤的空间。身份验证回答了以下问题：“我如何证明自己是谁？” 和“如何防止他人假装自己？” 它还包括与身份相关的欺诈减少和安全解决方案，例如Sift Science (利用机器学习来减少欺诈) 和SentiLink (打击合成身份欺诈)。

Comprehensive ID: Completeness is one of the key challenges of DID. Global iD is working on this challenge by operating a sort of “DNS for identity”, in which identity verifications are attached to a name located in GlobaliD’s public namespace. Users can have more than one name (which can also be privacy-preserving), but GlobaliD enables traceability in a way that creates a complete view of a user. GlobaliD acts as a sort of identity backbone, connecting to identity verifiers across silos, including self-sovereign identities. Unum ID is a startup that is working to create a decentralized, federated ID so that users have one digital identity that they can use to access all services.
全面的ID：完整性是DID的主要挑战之一。全球ID 正通过运行一种“用于身份的DNS”来应对这一挑战，其中将身份验证附加到位于GlobaliD的公共命名空间中的名称。用户可以使用多个名称(也可以保留隐私)，但是GlobaliD可以通过创建用户完整视图的方式来实现可追溯性。 GlobaliD充当一种身份骨干，跨各个孤岛(包括自我主权身份)连接到身份验证者。 Unum ID是一家初创公司，致力于创建一个去中心化的联合ID，以便用户拥有一个可用于访问所有服务的数字身份。
Reusable ID: Reusable know your customer (KYC) verifications aim to reduce duplication and redundancy in the authentication process. Civic and Trusted Key (acquired by Workday) are blockchain-based startups working with enterprises to facilitate reusable KYC. Once an entity has verified a user, other enterprises can leverage this KYC, provided they trust the authenticating entity. Authenticating entities are compensated for their verifications.
可重用ID：可重用知道您的客户(KYC)验证旨在减少身份验证过程中的重复和冗余。思域和可信密钥 (由Workday收购)是与企业合作促进可重复使用的KYC的基于区块链的初创公司。实体验证用户身份后，其他企业只要信任身份验证实体就可以利用此KYC。身份验证实体对其验证进行补偿。
Passwordless ID: In 1995, Bill Gates claimed that passwords were dead², a claim that has been repeated over the decades. However, advances in both hardware and software, combined with government efforts on foundational identities (you need something against which to match biometrics), may finally have created a conducive backdrop for passwordless solutions to succeed. Beyond Identity, Secret Double Octopus, and HYPR are all working on passwordless authentication. Companies like Smile Identity and Element are combining biometrics with mobile phones to enable authentication in developing economies in Africa and Southeast Asia. Callsign is similarly leveraging biometrics, and other advanced techniques, to enable mobile authentication globally.
无密码的ID： 1995年，比尔·盖茨声称密码已失效²，这一说法在过去的几十年中屡屡发生。但是，硬件和软件的进步，再加上政府对基础身份的努力(您需要与之匹配的生物识别技术)，可能最终为无密码解决方案的成功创造了有利的背景。除了身份，秘密的双重八达通和 HYPR 都在进行无密码身份验证。像Smile Identity这样的公司和元素正在将生物识别技术与移动电话相结合，以实现非洲和东南亚发展中经济体的认证。呼号同样利用生物识别技术和其他先进技术在全球范围内启用移动身份验证。

Attribute Exchange involves how data is exchanged between entities and encompasses privacy-preserving methods for data exchange. Data encapsulation is one approach, which keeps data private and confidential while allowing identity verification via a protocol that enables a common source of truth. These systems can then leverage selective disclosure, whereby third parties can verify attributes without accessing the entirety of the underlying data (ie. a person is above 18 years old, a passport matches the one on file, etc.) uPort and Oasis Labs are two companies building decentralized protocols for attribute exchange.

属性交换涉及实体之间如何交换数据，并包括用于数据交换的隐私保护方法。数据封装是一种方法，它使数据保持私有和机密性，同时允许通过启用真相公共来源的协议进行身份验证。然后，这些系统可以利用选择性公开，从而第三方可以验证属性而无需访问基础数据的全部(例如，一个人年龄在18岁以上，护照与所记录的护照相匹配，等等) 。uPort和Oasis Labs是两个公司建立用于属性交换的分散协议。

Authorization involves permissioning and access management. It answers the questions like “is this person allowed to enter?” or “is this person allowed to access this file?” Companies such as Proxy enable authorization via mobile access (turning a user’s mobile phone into an accepted ID.) Since more US adults own a cellphone than a driver’s license, access is improved while overcoming the challenging economics of non-smartphone, hardware-based access approaches. OpenPath is another startup enabling mobile access. In practice, authorization relies on authentication, and therefore startups that operate in the authorization layer also authenticate users.

授权涉及许可和访问管理。它回答“是否允许此人进入？”之类的问题。或“此人是否可以访问此文件？” 代理公司等通过移动访问启用授权(将用户的手机转换为可接受的ID。)由于拥有手机的美国成年人多于驾照，因此访问得以改善，同时克服了非智能电话，基于硬件的访问方法带来的挑战。 OpenPath是另一家启用移动访问的创业公司。实际上，授权依赖于身份验证，因此在授权层中运行的启动程序也会对用户进行身份验证。

Service Delivery encompasses identity-as-a-service providers and password managers. This is the layer in which the biggest valuations, and public companies, reside. Identity-as-a-service providers abstract the complexity of authentication workflows and enable many different authentication approaches. Okta is a public, cloud-based, enterprise identity management solution with +100M users and Auth0, recently valued at $1.9B, is an identity-as-a-service provider for developers that abstracts the complexity of identity management. ForgeRock and OneLogin are later stage startups that operate identity and access management platforms. Persona is an early stage startup that has built developer tools that essentially create an API for identity, which is needed by companies that lack the expertise to build strong authentication and verification services in-house. Veriff is another startup that has built developer tools that aim to provide the fastest and most thorough log-in experience for users by collecting the most information about users in the fewest steps. Password managers are also important players in this layer, including Dashlane, 1Password, and LastPass. All of these services reduce the complexity of identity flows.

服务交付包括身份即服务提供商和密码管理器。这是估值最高的公司和上市公司所在的层。身份即服务提供程序抽象了身份验证工作流的复杂性，并启用了许多不同的身份验证方法。 Okta 是一个公共，基于云的企业身份管理解决方案，拥有+ 100M用户和Auth0 ，最近价值为$ 1.9B ，是面向开发人员的身份即服务提供商，抽象了身份管理的复杂性。 ForgeRock和OneLogin是运行身份和访问管理平台的后期启动。 Persona是一家早期的初创公司，已经建立了开发人员工具，该工具实质上创建了用于身份的API，而缺乏专业知识的公司需要在内部构建强大的身份验证和验证服务。威夫是另一家建立了开发人员工具的创业公司，旨在通过最少的步骤收集有关用户的最多信息，从而为用户提供最快和最彻底的登录体验。密码管理器在这一层中也很重要，包括Dashlane ， 1Password和LastPass 。所有这些服务都降低了身份流的复杂性。

数字身份是否“可投资”？ (Is Digital Identity “Investable?”)

It’s hard to define what constitutes an identity company. For starters, identity is a hard sell as an application in and of itself, but many times identity is actually at the core of a business. For example, Fast enables one-click authentication and check-out, which improves the e-commerce experience for both shoppers and merchants, but is also a very powerful combination for taxes, investing, job or mortgage applications, and even checking in at the doctor’s office. There are many such companies, that upon closer inspection, are actually identity plays.

很难定义什么是身份识别公司。对于初学者来说，身份本身作为应用程序是一件很难的事，但是很多时候身份实际上是企业的核心。例如，快速启用一键式身份验证和结帐，这不仅改善了购物者和商人的电子商务体验，而且还是税收，投资，工作或抵押贷款申请甚至在银行办理登机手续的强大组合。医生办公室。有很多这样的公司，经过仔细检查，实际上是身份游戏。

While identity is not a sector, it is relevant in very large sectors including communications, financial services, and healthcare. Even the gig/passion economy is highly dependent on identity as a means to create trusted marketplaces (see Passbase.)

虽然身份不是一个部门，但它在非常大的部门(包括通信，金融服务和医疗保健)中具有相关性。 甚至演出/激情经济都高度依赖身份作为创建可信赖市场的一种手段(请参阅 Passbase) 。

Even so, the direct identity opportunity set remains limited to 300–500 startups and it’s difficult to make the case that there are deep exit opportunities as the list of potential buyers is limited. Identity solutions face very high minimum scale requirements and, therefore, identity startups must create or connect to a platform of some sort to generate real utility (ie. Okta has +6,500 integrations.) Thus, IPO opportunities for standalone entities also seem limited.

即便如此，直接身份机会机会集仍然限于300-500个初创企业，而且由于潜在买家的数量有限，很难说存在深度退出的机会。身份解决方案面临极高的最低规模要求，因此，身份启动公司必须创建或连接到某种平台才能产生实际效用(即Okta具有+6,500集成)。因此，独立实体的IPO机会似乎也很有限。

Identity startups face real barriers to entry (regulatory, compliance, and trust challenges at par with FinTech.) They also have to compete with platforms like Microsoft/Salesforce, which may ultimately become the dominant purveyor(s) of digital identity. Partnering with consortia may be a way for startups to “bootstrap” scale and compete against these established platforms, and some are employing this strategy. For example, a consortium of banks has been partnering with SecureKey as an authentication provider and PayID is a consortium of blockchain-based payments companies hoping to establish a universal payment identifier.

身份初创企业面临真正的进入壁垒(与金融科技同等的监管，合规和信任挑战。)它们还必须与Microsoft / Salesforce之类的平台竞争，后者最终可能成为数字身份的主要提供者。与财团合作可能是初创企业“引导”规模并与这些既定平台竞争的一种方式，有些企业正在采用这种策略。例如，一个银行财团已经与SecureKey合作作为身份验证提供者，而PayID是一个基于区块链的支付公司财团，希望建立通用的支付标识符。

Whether you view identity as an “investable” opportunity will depend on whether you take a narrow or broad view of identity, whether you’re thinking of foundational or functional identity, whether you view it as a technology or a service, and whether you’re more interested in access or security.

您是否将身份视为“可投资的”机会取决于您对身份的看法是狭or还是广泛，是否考虑基础或功能性身份，是否将其视为技术或服务，以及是否对访问或安全性更感兴趣。

Foundational identity efforts are better suited to grant or impact funding. The Omidyar Network, the Gates Foundation, and the Mozilla Foundation all invest in foundational DID. Functional identity isn’t viewed as a category of it’s own, so it’s hard to find venture investors that focus specifically on identity. Funds that invest in identity range from dedicated funds such as PTB VC, to strategic investors such as Okta Ventures and SamsungNext, to generalist funds like First Round Capital (Persona), Kleiner Perkins (Proxy, Dust ID), NEA (Beyond Identity), and Andreesseen Horowitz (SentiLink.)

基础身份识别工作更适合于拨款或影响资金。 Omidyar Network ， Gates Foundation和Mozilla Foundation都投资了基础DID。功能性身份不被视为属于其自身的类别，因此很难找到专门关注身份的风险投资者。进行身份投资的基金包括PTB VC等专用基金， Okta Ventures和SamsungNext等战略投资者，First Round Capital( Persona )，Kleiner Perkins( Proxy ， Dust ID )，NEA( Beyond Identity )等通才基金，和Andreesseen Horowitz( SentiLink 。)

The best identity solutions are privacy-first, nearly invisible, and improve convenience and/or security for customers. The most compelling opportunities are in authentication and service delivery and have go-to-markets that target enterprises or developers rather than end consumers. Consumers don’t want to take on the onus of identity management and customers are not interested in the underlying architecture of DIDs. The best identity solutions are intelligent, secure, simple, and convenient.

最好的身份解决方案是隐私优先，几乎不可见，并为客户提高了便利性和/或安全性。 最引人注目的机会是在身份验证和服务交付中，并具有针对企业或开发人员而不是最终用户的市场。 消费者不想承担身份管理的责任，客户对DID的基础体系结构不感兴趣。 最好的身份解决方案是智能，安全，简单和方便的。

Successful startups enter the market with a narrowly scoped initial use case (ie. mobile access or compliance with new regulations) and then gradually expand, adding products and features as they move closer to an identity platform over time.

成功的初创企业进入市场时会采用范围狭窄的初始用例(即移动访问或符合新法规)，然后逐步扩展，随着产品和功能逐渐接近身份平台而添加产品和功能。

数字身份的未来是什么？ (What is the Future of Digital Identity?)

The centrality of digital identity in our increasingly online lives means DID will only grow in importance. Below, I’ll outline just a few future opportunities.

数字身份在我们日益增长的在线生活中的中心地位意味着DID的重要性只会越来越高。下面，我将概述一些未来的机会。

Identity infrastructure for Web 3.0 is still nascent. Magic has created tools that abstract the onerous key management process required for authentication in Web 3.0, enabling end-users to log-in into d’Apps without the use of third-party software.
身份基础架构 Web 3.0仍处于新生阶段。 Magic已创建了一些工具，这些工具可以抽象化Web 3.0中身份验证所需的繁琐的密钥管理过程，从而使最终用户无需使用第三方软件即可登录d'Apps。
As new browsers without cookies gain traction (Brave, Opera, Puma), identity providers will either have to figure out how to work with privacy-preserving browsers or a tokenized identity system will need to be integrated into browsers, potentially replacing the current constant monitoring system.
随着不带cookie的新型浏览器( Brave ， Opera ， Puma ) 越来越受关注，身份提供商将不得不弄清楚如何使用保护隐私的浏览器，或者将令牌化身份系统集成到浏览器中，从而有可能取代当前的持续监控系统。
As bad actors increasingly take advantage of siloed identity systems, shared or pooled intelligence between organizations will be required to effectively combat fraud (remember the completeness challenge?)
随着不良行为者越来越多地利用孤立的身份系统，组织之间将需要共享或集中的情报来有效地打击欺诈(还记得完整性挑战吗？)
Peer-to-peer authentication could enable peers to verify each other’s identities, which could allow a user to verify they’ve been picked up by the correct ride-sharing driver or to leverage and “lend” their reputation to a friend.
点对点身份验证可以使对等方能够验证彼此的身份，这可以使用户验证是否已由正确的拼车共享司机接过他们，或者可以利用其信誉将其“借给”朋友。