Please describe your proposed solution.

<u>Introduction</u>

GLEIF, Global Legal Entity Identifier Foundation, was created in the wake of the 2007/08 economic crisis by the G20 countries to help improve financial stability worldwide and make sure counterparties to transactions could be readily revealed. GLEIF issues Legal Entity Identifiers (LEI) that provides key information about businesses, funds and governmental organizations participating in business transactions, including their name, when they were formed and, crucially, their ownership structure. More than 2.3 millions of Legal Identifiers were issued so far to companies around the world, a number that is rapidly increasing over time as the regulation enforces their use.

Recently, the GLEIF began to issue a verifiable credential called vLEI (verifiable LEI) that allows the assertion of delegation chains and the digital proof of correctness of things like signatures in financial reports. The vLEI allows those Legal Entities to participate in the verifiable credential ecosystem.

Those verifiable credentials are based on a fully Decentralized Identity technology called KERI/ACDC that requires supporting witnesses to provide a second source of trust. On Fund 9, rootsID got funded to develop the first Proof of Concept for a KERI witness on a blockchain, a project that was delivered successfully on time as you can see in the linked close out report. The proof of concept code is now part of the WebOfTrust repositories and can be found here. Additionally, a working cloud instance is available to try at the following URL: <https://backer-dev.rootsid.cloud>

<u>Our Goal</u>

Our goal is to make Cardano the best alternative as a witness for legal entities that participate in the vLEI GLEIF ecosystem. Those credentials, also called as Organizational Identities, provide a person or thing to prove their authority to represent an organization outside the boundaries of that organization. As this medium article explains, “when the authority of a person or thing claiming it can be instantly verified, the world will be different…

• The authenticity of any digital document, agreement, purchase order, filing, or other piece of data will be instantly verifiable;
• Phone calls, texts, email, and other digital communications originating from authorized representatives (or devices) of an organization — or any delegate from that organization — will be instantly verifiable;
• Some documents will prevent signing and some systems won’t be accessible without the expected authority (a parallel to access control lists);
• The authority of every approval, signature, or other digital action in a supply chain will be instantly verifiable by downstream actors, and irrefutably auditable in real-time;
• Authority will be verified before identity in most interactions, and identity not at all in many;”

All those use cases and any other that you can imagine need to be backed by a network of digital trusted witnesses or notaries. Cardano blockchain, with its extensive decentralization and scalability properties, is an unbeatable option to be selected by those Organization and is part of the identity solution selected by Cardano Foundation. You can find useful to hear the following interview at the Cardano Summit 2023 to Thomas Mayfield, team lead of Cardano Foundation's Decentralized Trust and Identity Solutions, talking about their Technical Development and Progress where he explains the technology and adopted open source libraries including our Cardano backer.

<u>Our Solution</u>

We propose to create a KERI Super Watcher to monitor Key Event Logs (KEL) captured by witnesses and analyzes for suspicious activity that need to be reported to verifiers.

In order to understand what a Super Watcher does, we will explain briefly the following concepts:

• The key events are produced por Organizational Identifiers when keys are rotated, verifiable credentials are issued or revoked or when other information needs to be anchored in the identifier.
• All those events are notarized by a set of witnesses selected by the Organization. An example of a witness is our PoC KERI backer developed as a funded proposal on Fund 9, that we are also proposing to improve in Fund 10.
• A verifier is someone that need to verify a signature as in a verifiable credential or a document for example, and decide if it's authentic, valid and if belongs to the Organizational Identity in question.

A Super Watcher is a service that can be used by verifiers to protect against duplicity events and malicious activity. It's under the verifier control instead of the Organizational Identifier control. It's an observer that acts as a Jury when divergence, inconsistent or suspicious activity is detected. Hence, the goal of the Super Watcher is to detect dishonest identity controllers or malicious third party may have exploited vulnerabilities on the controller of the identifier.

This proposal is to develop and host the first Super Watcher for the vLEI GLEIF ecosystem. It will be designed to provide the following funcitonalities:

• watch and analyze Key Event submitted to the Cardano Blockchain by witnesses
• watch and analyze Key Events available by public witnesses (such as GLEIF witnesses)
• Report suspicious activity
• Discovery of Identifiers participating in GLEIF ecosystem
• Verify signatures

The service will be hosted in RootsID AWS cloud instance and will be available for queries from verifiers.

Please define the positive impact your project will have on the wider Cardano community.

GLEIF vLEI ecosystem is being adopted globally and as the number of participating companies grows, it will increase the use of verifiable credentials that enables a smarter, less costly and more reliable way to make decisions about who to do business with.

We believe that if we can position Cardano as a first option for a witness to their Legal Identifiers, the adoption and usage of vLEIs will directly impact in the adoption and promotion of Cardano. That is the business value that we are envision to generate to Cardano with this project.

In regards to the Challenge P&I, we'll be providing a product in the Decentralized Identity space designed for the vLEI GLEIF ecosystem cited before. This products is also part, but independent, of this proposal in Fund 11 towards the same goal. We strongly believe the the integration of Cardano with the GLEIF ecosystem is of mutual benefit.

Additionally, we have been helping Cardano Foundation to adopt that technology. You can find useful to hear the following interview at the Cardano Summit 2023 to Thomas Mayfield, team lead of Cardano Foundation's Decentralized Trust and Identity Solutions, talking about their Technical Development and Progress where he explains the adoption of that technology and mention the partnership with RootsID.

What is your capability to deliver your project with high levels of trust and accountability? How do you intend to validate if your approach is feasible?

The RootsID team has been delivering Open Source building blocks for the Self-Sovereign Identity ecosystem in Cardano. We have been funded in several Catalyst projects since Fund 6. Our funded proposal are listed in lidonation, where you can find that we have delivered successfully and on time 18 out of 19 funded proposals. Proposal links, reports, and final videos can be found in those links.

The team is constantly engaged in all Self Sovereign Identity Cardano activities such as Atala Prism Astros, Atala Prism Pioneer Program, Prism+SSI After Town Hall break rooms, and meeting periodically with partners or related Catalyst projects with the aim of collaboration and help adoption and growth of Cardano in the Identity world.

Additionally, the team participates actively in the worldwide SSI community by attending and collaborating to several working groups in the Decentralized Identity Foundation, the Hyperledger foundation, the Trust over IP foundation, and the KERI community.

We’ve been providing technical services and consultancy on Decentralized Identity to several companies and organizations including:

• IOG
• Cardano Foundation
• GLEIF
• Provenant

What are the key milestones you need to achieve in order to complete your project successfully?

The design documentation of the project available in a public GitHub repository as well as issues created for each individual task

• Design new architecture and features (1 week): this is a technical design of the new architecture to provide high availability and the proposed new features.
• Documentation (1 week): documentation on how the witness interacts with the Cardano blockchain and how the service should be deployed and maintained
• Project planning and task allocation (1 week): definition of individual development and operational task using an Agile methodology and allocation to developers and devops

The acceptance criteria for that milestone are the documentation available in the public GitHub repository and the activity task created on the same repository as individual issues.

>The open source code of the KERI Witness available in a public GitHub repository

• Development (8 weeks): actual development and coding activities as defined previously

The acceptance criteria is the open source code available in the public GitHub repository that can be built and run. The repository must include instruction on how to build and execute the code.

This team adopts Agile methodology based on the tools provided by Github. Besides progress reports, the advancement will be tracked by public Github issues, project views (like Kanban board) and commits.

>A working cloud instance hosted on AWS pointing to mainnet

• DevOps and deployment (1 week): containerization and deployment of the service in RootsID AWS cloud instance in testate
• Test and improvement iterations (1 week): iteration cycle of testing and improving performance and reliability

The acceptance criteria is the availability of the cloud instance. It should be showcased in a video.

Who is in the project team and what are their roles?

This project will be delivered by:

Rodolfo Miranda is a co-founder of RootsID and contributor on several of our projects, including RootsWallet.

His background includes a MS EE degree at Stanford University and more than 25 years of successful work experience in both large multinational companies and owned startup projects. His main activities involve architecting, developing, and implementing large scale software solutions for the Telecommunication Industry. Lately, he was engaged in blockchain technologies and became an enthusiast of Self Sovereign Identity. He’s an active contributor in the Aries, DIDComm, KERI and Anoncreds Working Groups.

He’s also involved in the Cardano Community, participating as a veteran Proposal Advisor, member of the LATAM Cardano Community, and the Cardano Community SSI Alliance.

LinkedIn

Lance Byrd is a co-founder of RootsID, a group of decentralized identity specialists building open source software for digital identity. Several of their projects have been funded by Catalyst. He is primarly focused on RootsWallet, the end-user identity wallet.

His background includes a BS in Computer Science (UMBC) and MS in Information Assurance (Capitol College) and more than 22 years of software development as a consultant. He has developed massive scale data analytics and visualizations, machine learning analysis pipelines, and worked with University researchers to bring their work to market. He has also built and taught technical certification courses for several different topics in data analysis, big data, and compliance.

He completed the first cohort of the Atala Prism Pioneer program and is now part of the Atala Prism Astros program.

Linkedin

Alex Andrei is an experienced open source developer who has a passion for architecting decentralized data solutions. With vast knowledge and expertise in data, Alex is able to create, secure, and scale systems that have the most demanding needs . He’s currently working on the open source identity wallet, RootsWallet. He’s actively participating on standards at Hyperledger, DIF and IETF.

Linkedin

Rodolfo will be leading the project counting with Alex and Lace as supporting developers of KERI technology. We are also including two extra developers currently working for RootsID that will help with the efforts of UI design and DecOps.

Since we are participating in 7 proposals, we carefully planned time allocation for each of us. We defined our individual commitment per week as if all of the proposals are funded including extra activities. Based on that, we defined the allocation per proposal for each of us needed to deliver the proposal in time.

Please provide a cost breakdown of the proposed work and resources.

Budget is mostly composed of development hours at a ratio of $100/hr (aprox ₳400/hr), plus the hosting costs. Based on the activities defined above the requested breakdown budget is:

• Design: 20hr = $2.000 = ₳8.000
• Documentation: 20hr = $2.000 = ₳8.000
• Project Plan: 20hr = $2.000 = ₳8.000
• Development: 300hr = $30.000= ₳120.000
• DevOps tasks: 50hs= $5.000 = ₳20.000
• Test and improvement iterations: 50hr = $5.000 = ₳20.000
• Yearly AWS instance: $500 = ₳2.000
• Domain name + SSL: $25 = ₳100

TOTAL BUDGET: $46.525 = ₳186.100

How does the cost of the project represent value for money for the Cardano ecosystem?

The cost of the project goes directly for the development of an open source product that can be deployed by anyone interested. Likewise, we envision that the product will help onboard Legal Entities/Organizations that participate in the vLEI GLEIF ecosystem. The real value is provided when those Organizations anchors their Organizational Identities in Cardano, producing actual transactions in the blockchain that contribute in the trustfulness of their business operations. By this means, not only the transactions fees contribute to the Cardano ecosystem, but also consolidates the benefits of Cardano Business community.