Trust management
Decentralized digital identities and credentials carry a certain level of trustworthiness on their own due to the nature of the technologies used, but there are still important elements of trust missing. For example, when a holder submits a verifiable presentation the verifier can check that the claims have not been altered since they were issued. The question remains, however, whether the verifier trusts the issuer making the claims.
The trust management layer provides a way for verifiers to get trusted information on who issued the credential being presented, for issuers to convey trusted information to verifiers, and for both issuers and verifiers to convey trusted information to holders about with whom they are interacting.
Wallet holders in identity ecosystems rely on trust management to know if they are interacting with a legitimate issuer or verifier and not some fraudulent entity.
Trust management models
Trust management is a nascent field and models are still developing. Most models are similar to how SSL/TLS certificates work in web browsers, which come with a pre-installed list of trusted Certificate Authorities (CA). When you visit a website, the site presents its certificate to your browser. If something doesn't check out—the certificate was not issued by one of the trusted CAs, it is expired or the domain name doesn't match what's in the certificate—your browser will warn you and typically require extra action from you before continuing.
Procivis One natively supports the following trust management type:
SIMPLE_TRUST_LIST- Procivis One Trust Registry