The Sovrin Trust Framework Working Group is currently processing feedback on Public Review Draft 01 of the Sovrin Provisional Trust Framework (see this forum post for details) in order to produce Public Review Draft 02 by March 1.
The Sovrin Identity Owner Agreement was one of the areas where we received the most feedback. The #1 request was to simplify and streamline this agreement so it represented the minimum possible friction for new Sovrin Identity Owners while at the same time still providing a solid legal foundation for the Sovrin Network.
To this end, the Trust Framework Working Group agreed on two simplifications:
- Click-through consent. No separate off-ledger proof of consent is required. Rather, registration of a Sovrin DID with the Sovrin Ledger will constitute consent.
- Simplified obligations. The obligations of a Sovrin Identity Owner will be as simple and direct as possible.
To the second point, we have condensed the Identity Owner obligations down to exactly two sentences—one stating what you agree to do and one stating what you agree not do. The proposed wording is as follows (note that “You” is formally defined in the agreement as the Identity Owner, and all other terms in First Letter Caps are defined terms in Public Review Draft 01):
- You agree to the Sovrin Promise—to uphold the purpose, principles, and policies of the Sovrin Trust Framework, including any special policies applying to roles for which You qualify and elect such as Trust Anchor and Guardian—and to abide by all applicable laws and regulations.
- You agree not to abuse, attack, spam, or otherwise take any malicious action against the Sovrin Network and not to interfere with the use or enjoyment of the Sovrin Network by other Members.
Is this simple enough? Too simple? Please post any further thoughts or comments on this thread.
Thank you in advance,
Chair, Sovrin Trust Framework Working Group