Key Event Receipt Infrastructure (KERI): A secure identifier overlay for the internet with Sam Smith

In this SSI Meetup presentation Samuel M. Smith explains that KERI that stands for Key Event Receipt Infrastructure.

Its a ledger-less approach to identity that enables a universal decentralized key management infrastructure (DKMI). KERI is the basis for a new proposed universal DID method DID:uni.

Because KERI identifiers are portable they are truly self-sovereign. The primary root-of-trust in KERI is a self-certifying identifier that is cryptographically bound to a set of key-pairs. These have fully generalized derivation mechanisms including content addressability with support for both rotatable and non-rotatable key-pairs. Its secondary root-of-trust are end-verifiable key event receipt logs.

End verifiability means that KERI is not dependent on any intervening infrastructure. This fixes the primary security weakness of internet identity system security overlays thereby making KERI a candidate for a universal trust spanning layer for the internet to replace DNS-CA. KERI is an open-source project within the Decentralized Identity Foundation.


Download the full presentation “Key Event Receipt Infrastructure (KERI): A secure identifier overlay for the internet” from Google Slides.

Related Articles

Leave a Reply

Back to top button