Summary

Credebl is a product of Blockster labs and is owned by parent company Ayanworks Technological Solutions Private Limited.
Credebl has undergone a technical review by the Digital Public Good Alliance and meets the 9 basic criteria of the DPG Standard (and 10 of 12 of sub criteria).
The platform collects PII data for users, which is essential for access to the platform but is NOT distributed. All PII data are stored in the users’ wallets according to SSI principles.
When assessed against basic SSI principles it was found to have met 11 of 16 fundamental properties.
Credebl’s architecture allows for it to be ledger and wallet-agnostic. The four remaining criteria have external dependencies on how these two elements are integrated, most notably the trust assumptions made on the chain it is deployed on.
Code development is based on open standards DID, VC, ToIP, and W3C.
Selective disclosure and ZKP elements are based on Hyperledger’s AnonCreds VC format, leveraging Credo (Hyperleder Aries JS Framework now owned by OpenWallet foundation).
There is no BBS+ implementation and there are no plans for it in the foreseeable roadmap.
The assessment of the ZKP element in the technical evaluation was conducted based on AnonCred, which has limited features and comparisons. Circom and circuits are not currently used but could be a viable way to reproduce the same features previously supported.
There is some missing documentation - most notably with the API and contract deployment.
Contract deployment on polygon seems to exist in the Ayanworks repos: https://github.com/ayanworks/polygon-did-registry-contract. They are using the same DID registry as Polygon and Iden3.
They seem to leverage the immutability and decentralization of the blockchain to register DID, but don’t plan to build on-chain use cases with the verifiable credentials (e.g. verify zk-VCs on-chain).
Credebl is currently using/supporting two blockchains and many networks:
- Hyperledger Indy: bcovrin-testnet, indicio-testnet, demonet & mainnet.
- Polygon: mainnet.
Data stored on-chain:
- For Hyperledger Indy-based ledgers: schema, cred-def, and public DIDs.
- For Polygon: DID records and schema records.
Credebl currently supports three DID methods: did:web, did:key and did:polygon.

General

✅ Fulfils Criteria

🟠 Dependency / Questionable

❌ Does not fulfil criteria

❓ Unclear

Website	https://credebl.id
Solution source	https://github.com/credebl
Developed in	India
Deployed in	India
OSS Insight	https://next.ossinsight.io/analyze/credebl?period=past_90_days#overview

Product and Company Overview

Credebl is a product of Blockster labs (Adeya wallet is also a product) and is owned by parent company Ayanworks Technological Solutions Private Limited (both companies have the same CEO and CTO). Credebl and Adeya are protected by intellectual property rights and are owned and licensed by Blockster labs.

Evaluation	Details
People	Kalayan Kulkarni
Ajay Jadhav
Ownership	Privately Held (Blockster labs)
Company	Ayan Works Technological Solutions Private Limited - Through Blockster labs
Team Size	1-10
Founded	2019 (Blockster labs)
Funding	Unfunded?
Revenue	$727k (ayanworks) 2022
Project Status	Active
Last Commit	3 months ago ‣
last week ‣
Integrations	Cheqd, Polygon, Indy Ledgers, Sovrin, Indicio, Credo
Associated Products	‣
https://github.com/ayanworks
API	🟠 Yes but no documentation
SDK	❌
Credential Management	Are there means for credential management? Yes ✅
Regulatory Compliance	Are there mechanisms in place for ensuring ongoing compliance with changing regulatory requirements?
🟠 Unclear

Self-Sovereign Identity Basic Principles

High-Level Criteria	Sub Goals	Description	Credebl	Source
Foundational Property	Existence	A self-sovereign identity must enable a user to encode her characteristics digitally.	✅ Credebl supports digital encoding of user characteristics through DIDs and VCs	https://docs.credebl.id/en/intro/intro-to-ssi/
	Autonomy	The model leverages decentralized domains where no singly party can assert its control. This enables a user to create/manage as many self-sovereign partial identities as required without relying on a specific provider	🟠 Functions are managed by a SSI wallet (organisations may integrate their own wallet, Adeya, a wallet created by the same company is also available)	https://docs.credebl.id/en/guides/architecture/
	Ownership	Only the creator of the identity can claim ownership. Model enforces that assertions from the providers are released only by the owner.	🟠 Organisations can setup their own SSI Web Wallet based on a multi-tenant shared Aries agent.	https://docs.credebl.id/en/guides/architecture/
	Access	Users must have unrestricted access to their identity information.	🟠User registration process through email-based verification. FIDO Passkey for phishing-resistent user verification.	https://docs.credebl.id/en/guides/architecture/
	Single Source	If any provider-asserted claim is only released via a profile leveraged by a self-sovereign identity as advocated previously, the user can act as the single source of truth regarding her identity.	✅ inherited from the protocol and the trust assumptions on the credential	https://docs.credebl.id/en/guides/architecture/
Security Property	Protection	Well-protected with the latest cryptographic mechanisms.	✅ (See technical evaluation below)
	Availability	Any identity data in a decentralized domain will be readily available and accessible as long as such domain exists.	🟠Ledger agnostic. Dependent on liveness of ledger used/ chain deployment . (see below on decentraliazation)	https://docs.credebl.id/en/guides/architecture/
	Persistence	Data in a decentralized domain will be persistent as long as the domain exists.	🟠Ledger agnostic. Dependent on the ledger used/ chain deployment . (see below on decentralization)	https://docs.credebl.id/en/guides/architecture/
Controllability Property	Choosability	User control over when and to whom identity data is released.	🟠 Supports selective disclosure features	https://docs.credebl.id/en/intro/platform-features/
	Disclosure	Ability to selectively disclose attributes.	✅ Supports selective disclosure features (but NOT bbs+ and nothing on the roadmap) unsure if uses zkps
	Consent	Data released to third parties only with user consent.	✅ See data privacy in table below	https://app.digitalpublicgoods.net/a/10902
Flexibility Property	Portability	Identity data must be portable across different platforms.	✅ Uses VCs and adheres to various standards (see below)	https://app.digitalpublicgoods.net/a/10902
	Interoperability	Designed for maximum interoperability with other systems.	✅ .Designed for interoperability with W3C specifications such as Decentralized Identifiers (DID) and Verifiable Credentials (VC), along with contributions from the Decentralized Identity Foundation (DIF), Trust over IP Foundation (ToIP), as well as the collaborative efforts of the Hyperledger Indy and Aries open-source initiatives.	https://docs.credebl.id/en/intro/what-is-credebl/
	Minimisation	Minimize disclosure of identity data.	✅ Agent creates a separate wallet database for each organization wallet in order to keep the data isolated. Platform uses NATS for message-driven data exchange between CREDEBL microservices.	https://docs.credebl.id/en/guides/nats/
Sustainability Property	Transparency	The system must be transparent to all involved entities.	✅ Credebl is open-source	https://app.digitalpublicgoods.net/a/10902
	Standard	Based on open standards for maximum portability, interoperability, and adoption.	✅ Based on open standards DID, VC, DIF, ToIP, W3C* see above	https://app.digitalpublicgoods.net/a/10902

Sources

Technical Evaluation

Decentralized Identity Foundation Criteria

| --- | --- | --- | --- |

ZK Criteria

| --- | --- | --- | --- |

| On-chain Deployment Requirements | Requirements for deploying the solution on-chain. | Signatures verification If using BBS+, depending on the curve implemented, it should be possible to implement the verification logic for the EVM, though I didn’t see any on-chain verifier at the moment, could lead to research and implementation on our side. For CL signatures it should also be possible but again no verifier implementation found for the EVM.

Data storage The protocol is currently using Polygon PoS, to post unique user identifiers (DID identifiers) in a decentralised registry, as well as the schemas for VCs (optional). | https://github.com/hyperledger/anoncreds-clsignatures-rs |

Additional Pros and Cons:

General impression:
Figure out how ZKP is used in the project?

Q3-4 2024 Feature Roadmap (Last updated Sep 2023)

Support emerging W3C VCDM (2.0) Data Integrity & Secure VC (1.0) standards
Support SD-JWT
Mobile Verifier in ADEYA Wallet & on Web
External Data Connectors

Github Metrics

How active and responsive are the maintainers of the repository? - Past 90 Days

Untitled

For most updated Dashboard For Credebel: https://next.ossinsight.io/analyze/credebl#overview

Dashboard for Ayan Works: https://next.ossinsight.io/analyze/ayanworks?repoIds=725101845&period=past_12_months#engagement

Digital Public Good Alliance Criteria

| --- | --- | --- |

Source https://app.digitalpublicgoods.net/a/10902