ID Projects
Consortia
Private Entities
Public Entities
Regulations
Standards/Protocols
People
DLT Tech
DID Methods
Blockchains
NEW
Report & API Now Live! Data insights report and open data API endpoints live as of September 23, 2025
View Report Explore API
Global View

did:webs

did:webs
type
DID Method
Specification
trustoverip.github.io
Contact Name
Trust over IP (ToIP) DID Method webs Task Force
Contact Website
wiki.trustoverip.org
Info
Name, Specification URL, Contact name and some relations are sourced from diddirectory.com. If you maintain this or any other didmethod, we encourage you to visit diddirectory and submit or update your data there if its not up to date!

Description

Description
Source

The did:webs method is a secure, web-based Decentralized Identifier method that combines traditional web infrastructure with advanced cryptographic trust mechanisms. Unlike its predecessor did:web, this method's trust is not rooted in DNS, webmasters, or certificate authorities, but instead uses KERI (Key Event Receipt Infrastructure) to provide a secure chain of cryptographic key events controlled by the identifier's owner.

Key features:

  • Uses web servers for publishing and discovery while maintaining strong cryptographic trust
  • Leverages KERI for secure key management and rotation
  • Does not require blockchains but can optionally reference them
  • Supports multi-signature capabilities
  • Enables pre-rotation of keys for enhanced security
  • Provides end-verifiable authenticity through cryptographic proofs

The method achieves a balance between accessibility and security by:

  • Utilizing familiar web infrastructure for deployment
  • Implementing robust cryptographic trust mechanisms
  • Supporting scalable and cost-effective operations
  • Avoiding reliance on exotic cryptography
  • Enabling transparent governance

Technical Architecture:

  1. DID Generation and Structure:

    • Format: did:webs:<host>[:<path>]:<aid>
    • The <aid> component is a KERI Autonomic Identifier
    • Supports both domain names and IP addresses in the host component

  2. Resolution Process:

    • Transforms DID to HTTPS URL
    • Retrieves both DID document and KERI event stream
    • Verifies authenticity through KERI validation
    • Processes key events to determine current state

  3. Key Management:

    • Supports multiple key types including Ed25519 and Secp256k1
    • Enables threshold signatures
    • Implements pre-rotation mechanism for key recovery
    • Maintains cryptographic continuity through key changes

  4. Security Features:

    • End-verifiable authenticity
    • Non-repudiation through KERI events
    • Duplicity detection
    • Multi-signature support
    • Witness network validation

  5. Technology Stack:

    • HTTPS for transport
    • KERI for cryptographic trust
    • CESR for data encoding
    • JSON for DID documents
    • Optional blockchain anchoring

Projects compatible with, endorsing or using this DID Method

Project
Website
Source
Trust Over IP
trustoverip.org
Provenant
vlei.finance

Compatible DLT Instances

Entities maintaining or authoring this DID Method

Entity
Website
Source
Global Legal Entity Identifier Foundation
gleif.org

Persons associated with this DID Method

Person
Source
Samuel Smith
Kevin Griffin
Markus Sabadello
Lance Byrd

If you are featured in the Web of Trust Map and wish to exercise your GDPR rights, including the right to be forgotten, visit the privacy policy page

Our Co-Contributors

We partnered with leading industry experts who help with defining features and working on data quality.

Didas
GLEIF
Danube Tech
Lissi
Digital Trust Venture Partners
Internet Identity Workshop
Esatus
Identity Woman
Mission
Empeira
Dentity
Vereign
Cheqd

Implementation Partners

Perennial Labs
Salon.io
adrianoplegroup

About

The Web of Trust Map is a comprehensive visualization tool that tracks and analyzes the global adoption of decentralized digital identity solutions.

Contact

For inquiries about the Web of Trust Map, please contact us at: [email protected]

Follow Us

Stay updated with the latest developments in decentralized digital identity.

© 2024 Web of Trust Map • Built with force-graph and SvelteKit (MIT)