DID Recovery

A designated entity or set of rules authorized to initiate a recovery operation on a DID Document. This is a delegated authority separate from the primary cryptographic keys.

• Types: Can be a trusted third-party service, a multi-signature wallet, or a smart contract.
• Function: Holds the power to update the DID Document to replace lost keys, but is typically configured to be inert unless a recovery event is triggered.

The specific cryptographic or procedural mechanisms used to authenticate a recovery request and prove the identity of the legitimate DID subject.

• Social Recovery: Uses a pre-defined group of guardians (e.g., friends, devices) who must collectively approve the recovery.
• Time-Lock/Delay: Enforces a mandatory waiting period after a recovery request is made, allowing the legitimate owner to cancel if it's fraudulent.
• Biometric or Hardware: Uses a secure enclave or biometric proof as a backup authentication factor.

A pre-defined, objective state that must be met to authorize recovery, making the process transparent and auditable. This moves recovery beyond simple trust.

• Examples: A consensus vote from a guardian set reaching a threshold (e.g., 5 of 9), the passage of a specific time delay without objection, or the verification of a zero-knowledge proof attesting to identity.
• On-Chain vs. Off-Chain: Conditions can be enforced by a smart contract on a blockchain or through a decentralized protocol.

The final, on-chain state change that completes the recovery process by modifying the target DID's controlling keys.

• Process: The recovery controller, after verifying the condition is met, submits a signed transaction to the DID's underlying registry (e.g., a blockchain).
• Result: The DID Document's verificationMethod and authentication sections are updated to point to new public keys, severing control from the lost keys and granting it to the new recovery keys held by the user.

The core design challenge: balancing the ability to recover access with protection against hostile takeover.

• High Security, Low Resilience: A DID controlled by a single private key with no recovery is highly secure if the key is safe, but permanently lost if it is.
• High Resilience, Lower Security: Adding many recovery guardians or easy methods increases recovery likelihood but expands the attack surface.
• Goal: Design systems where recovery is possible for the owner but prohibitively expensive or complex for an attacker.

A Decentralized Identifier (DID) is a globally unique, persistent identifier that does not require a centralized registration authority. It is the core subject of a DID document and is controlled by the DID subject via cryptographic keys. DIDs are the foundational building block that recovery mechanisms are designed to protect.

• Format: did:method:method-specific-identifier
• Control: Verified via public key cryptography.
• Resolves to a DID Document containing public keys and service endpoints.

A Verifiable Credential is a tamper-evident digital claim issued by an issuer to a holder, which can be cryptographically verified by a verifier. DID recovery is crucial for maintaining access to the private keys needed to present and manage these credentials.

• Structure: Based on the W3C standard, containing claims, metadata, and proofs.
• Role: Enables portable, user-centric identity attributes.
• Recovery Impact: Loss of DID control can mean loss of access to all associated VCs.

Social Recovery is a specific DID recovery mechanism where control of a decentralized identifier is restored through the consent of a pre-defined group of trusted entities, known as guardians or recovery contacts. This method avoids single points of failure like seed phrases.

• Process: A majority of guardians must cryptographically sign a recovery transaction.
• Use Case: Prominent in Ethereum Name Service (ENS) and some smart contract-based DID methods.
• Security Model: Shifts trust from a single secret to a social graph.

A DID Method defines the specific operations (create, read, update, deactivate) for a particular type of decentralized identifier on a given verifiable data registry, such as a blockchain. Recovery logic is defined and implemented at the DID method level.

• Examples: did:ethr: (Ethereum), did:key:, did:web:.
• Specification: Each method publishes a DID Method Specification detailing its recovery scheme.
• Interoperability: Recovery capabilities vary significantly between different DID methods.

A Verifiable Data Registry is a system that mediates the creation and verification of identifiers, keys, and other relevant data, such as a blockchain, distributed ledger, or decentralized file system. It is the trusted root where DID documents and recovery configurations are anchored.

• Function: Provides the immutable backbone for DID state changes, including recovery operations.
• Examples: Ethereum, Bitcoin, IPFS, Sovrin Ledger.
• Recovery Role: Recovery transactions must be written to and confirmed by this registry.

Key Rotation is the security practice of periodically updating the cryptographic keys associated with a DID. It is a proactive security measure, distinct from recovery, but often uses similar authorization mechanisms defined in the DID document.

• Purpose: Mitigates risk from key compromise or cryptographic advances.
• Process: Adds new public keys and removes old ones via a DID document update.
• Relation to Recovery: A robust recovery system is needed to perform key rotation if the primary key is lost.