ID Projects
Consortia
Private Entities
Public Entities
Regulations
Standards/Protocols
People
DLT Tech
DID Methods
Blockchains
Global View

did:key

did:key
type
DID Method
Specification
w3c-ccg.github.io
Contact Name
Rick Astley (thank you for your inspiration), Manu Sporny, Dmitri Zagidulin, Dave Longley, Orie Steele
Info
Name, Specification URL, Contact name and some relations are sourced from diddirectory.com. If you maintain this or any other didmethod, we encourage you to visit diddirectory and submit or update your data there if its not up to date!

Description

Description
Source

DID:key is a lightweight, non-registry based Decentralized Identifier method that generates DIDs directly from cryptographic public keys. Unlike blockchain-based DID methods, it requires no external infrastructure or registries, making it ideal for ephemeral and single-use identity scenarios.

The method creates a deterministic mapping between public keys and DID Documents, where each DID is derived from the public key using Multibase and Multicodec encoding. This approach provides a simple way to represent cryptographic keys as DIDs while maintaining the core benefits of the DID architecture.

Key characteristics:

  • No external dependencies or blockchain requirements
  • Supports multiple cryptographic key types including Ed25519, X25519, Secp256k1, P-256, P-384, P-521, RSA, and BLS12381
  • Immutable by design - no update or deactivate operations
  • Ideal for ephemeral use cases and scenarios with hardware-isolated keys
  • Includes built-in support for both signature verification and key agreement

The method is particularly suited for:

  • Short-lived authentication scenarios
  • Single-use verification keys
  • Hardware-protected key material
  • Lightweight identity systems
  • Testing and development environments

Technical Details:

  1. DID Generation and Structure:
  • Format: did:key:<multibase-encoded-public-key>
  • Public key is encoded using multicodec and base58-btc encoding
  • Includes key type identifier and raw key bytes
  1. Resolution Process:
  • Purely deterministic - no external lookups needed
  • Decodes the key material from the DID string
  • Expands into a complete DID Document with verification methods
  1. Key Management:
  • Supports multiple key types with different prefixes
  • Automatic derivation of encryption keys from signing keys
  • No key rotation capability by design
  1. Security Features:
  • Hardware isolation recommended for long-term use
  • Built-in support for signature verification
  • Integrated key agreement capabilities
  1. Technology Stack:
  • Multibase encoding framework
  • Multicodec for key type identification
  • Standard cryptographic primitives
  • JSON-LD contexts for semantic interoperability

The method implements the core W3C DID specification while prioritizing simplicity and minimal infrastructure requirements.

Projects compatible with, endorsing or using this DID Method

Project
Website
Source
W3C - World Wide Web Consortium
w3.org
ADIA - Accountable Digital Identity Association
adiassociation.org
LFDT - LF Decentralized Trust
lfdecentralizedtrust.org
MyKEEPiN Alliance
mykeepin.org
EWC - EU Digital Identity Wallet Consortia
eudiwalletconsortium.org
MATTR
mattr.global
Farmer Connect
farmerconnect.com
Mein Bildungsraum
meinbildungsraum.de
ConnectID
connectid.com.au
Dhiway
dhiway.com
esatus
esatus.com
WaltID
walt.id
LearnCard Suite
learncard.com
EU Digital Identity Wallet
ec.europa.eu
Trinsic
trinsic.id
Vereign
vereign.com
Altme
altme.io
Transmute Verifiable Data Platform (VDP)
transmute.industries
Affinidi Trust Network
affinidi.com
Talao Wallet
talao.io
Decentralized Identity for Government (DIG)
voyatek.com
Nym Wallet
nymtech.net
Verite
developers.circle.com
Billon Platform
billongroup.com
Wise DID Authenticator
wisesecurity.com
Archipels
en.archipels.io
Midy
midy.com
Secure Value Exchange
meeco.me
Ledgis Wallet
ledgis.io
Masca
masca.io
Mosaïque
torontomu.ca
MyID on Verify 365
verify365.app
moveID
moveid.org
Liquid Avatar Platform
liquidavatartechnologies.com
Veramo
veramo.io
MyInfo
yeskey.or.kr
certME
certme.ro
IdentiMint
identimint.com
MyID by IT Fintech
myid.md
Hashkey Me
me.hashkey.com
Quark ID Wallet
quarkid.org
One37
one37id.com
Service NSW
service.nsw.gov.au
Kraken
krakenh2020.eu
The Creative Passport
creativepassport.net
Blockster Labs
blockster.global
ON REM
wdi.net
Credential Master
web.archive.org
Status
status.app
Triall
triall.io
Identiproof
identiproof.io
Nashid
nashid.io
Digital Immunization Passport
ownyourdata.eu
Ontario's Digital ID
ontario.ca
MyCreds
mycreds.ca
Paradym Wallet
paradym.id
SportChain
sportchain.vidchain.net
BLOK Pass
blok.solutions

Compatible DLT Instances

Entities maintaining or authoring this DID Method

Entity
Website
Source
Transmute Industries, Inc.
transmute.industries
Digital Bazaar, Inc.
digitalbazaar.com

Persons associated with this DID Method

Person
Source
Manu Sporny
Dave Longley
Richard Astley

If you are featured in the Web of Trust Map and wish to exercise your GDPR rights, including the right to be forgotten, visit the privacy policy page

Our Co-Contributors

We partnered with leading industry experts who help with defining features and working on data quality.

Didas
GLEIF
Danube Tech
Lissi
Digital Trust Venture Partners
Internet Identity Workshop
Esatus
Identity Woman
Mission
Empeira
Dentity
Vereign
Cheqd

Implementation Partners

Perennial Labs
Salon.io
adrianoplegroup

About

The Web of Trust Map is a comprehensive visualization tool that tracks and analyzes the global adoption of decentralized digital identity solutions.

Contact

For inquiries about the Web of Trust Map, please contact us at: [email protected]

Follow Us

Stay updated with the latest developments in decentralized digital identity.

© 2024 Web of Trust Map • Built with force-graph and SvelteKit (MIT)