What is Integrity?
Integrity is a new decentralized platform designed for the access economy. Privacy, trust and integrity are our core values. It is with these values that we have created a distributed system, where you can unlock the economic potential of your resources and services, while keeping control of your information.
Integrity is essentially made of three independent parts:
The Integrity App for iOS and Android. The Integrity App is a secure digital passport that stores data that belongs to the user, and this user data is only shared to services with the user’s permission. You can use the app to securely gain access to services built with Integrity, store your credentials, notifications and certifications, execute transactions and sign agreements, keep track of mandates, events and receipts.
The Integrity Realm, to publish resources, define access permissions, share and engage your professional network or personal community. It includes a portfolio of web services. Booking +Integrity is our first service. It is designed to help you publish, discover and book resources in a simple and secure manner. You can create your booking service with +Integrity for free, and and get your own Integrity domain name.
The Integrity Platform. It enables multiple parties to interact with each other, without relying on a central authority. It is a decentralised platform where trust is distributed to the system endpoints, instead of stored in a central database. It is open for participation, which means that anybody can set up a service that any Integrity App user can use.
Why should I download the Integrity App?
The Integrity App is your secure digital passport that allows you to use the services that have been built using the Integrity Platform. You will also need it if you plan on building new services on our platform.
In short the Integrity App features:
- Your online identity for Integrity services
- A logbook with your receipts and events
- Access to Integrity services
- Signing of documents and agreements
Your data is encrypted in your device, so to access any +Integrity services you need to unlock your identity with a PIN code or your fingerprint. You only share the information you want and need to share with the services you use.
Where can I download the Integrity App?
The Integrity App is available in both Google Play and Apple App Store.
Where can I use Integrity?
Anyone can use Integrity with any services that are publishing their functionality on the Integrity Platform. You can find any services that are added on our platform at https://plusintegrity.com. From within the app you can discover publicly available services, either through a search, using local discovery or a geographical lookup.
How can I discover services?
There are multiple ways that you can discover services shared through the Integrity Platform. You might come across a +Integrity tag attached to a resource that you are passing by, such as a 3D printer or a conference room. The tag can be a QR code, or an NFC tag, or a barcode of some kind. By scanning the tag with the Integrity App it will trigger an action for that service. A service can also be announced through the local network you are connected to, or tagged with geographical coordinates so that you can find it with a geographic lookup in the app. A service could also be shared on a website, through e-mail or even through community chat systems such as Slack. Some services are only available on request or by invitation, and might not be discoverable at all. It’s completely up to the owner how they choose to publish their services using Integrity.
How can I trust Integrity with my personal data?
We don’t have your data, only you do. With the Integrity App your personal data stays in your phone at all times. There is no central data repository where your data is stored.
When you share data with a service, you are asked explicitly what data you want to share. The key and the data that identifies you is stored securely in your device. This is why you are asked to verify any transaction with your fingerprint. Any transaction that is performed with a service is secured by modern cryptography. Services built on the Integrity Platform are encouraged to treat your privacy with respect, and only require the minimum set of information from you when using the service. The core functionality of Integrity will be released as open source, so that anybody can audit the software we use.
How do I get started?
When you find a service built for the Integrity Platform, you can download Integrity and use it right away. Perhaps you are going to book a conference room at a co-working space, so by opening a link to do it you will be asked to download the Integrity App from your favorite app store. When you open the app for the first time, a new identity (key pair) will be generated for you, and stored in your device. To use a service you may be asked for your name or e-mail address, so the first task in the app is to add your name and your email address. Now you are ready to use a service!
What is the infrastructure behind Integrity?
Two main components drive the Integrity Platform. The Integrity app, which any user holds in their hand as a digital passport, and the Integrity KYC (Know Your Customer) service. The Integrity platform also offers decentralized storage through a DHT (distributed hash table) based file system called IPFS. The InterPlanetary File System (IPFS) is a peer-to-peer distributed file system. The public key ID of a user is the ID of the public key stored in IPFS.
The Integrity app is the most important component. It is a generic document handler, but also serves as a proxy for relaying messages between the services that might not have direct connectivity between them. For example, you can create a realm with your app that connects to your Google home device. Now you can control your Philips lamps, your Nest, your smart doorlock and much more just by creating one single realm.
For example, the administration of the Realm might not be able to communicate directly with a Service. So any administrator that will configure services for a Realm will also act as a proxy for the communication between the systems that are being configured. There are some central services in Integrity, such as a KYC service. The default KYC service is also by default trusted by the app, and is part of the core infrastructure of Integrity. The KYC service is belonging to an infrastructure realm that all parties will trust by default. However, any service can be disconnected from any default configuration, and choose to trust whatever other services are available from any third party.
The Integrity Platform is also offering decentralized storage through a DHT based file system called IPFS. This immutable file system can be accessed by any node on the internet. The public key ID of a user is the ID of the public key stored in IPFS. Currently the IPFS functionality is not an integral part of the Integrity App, so the app uses a central API for access to IPFS.
How does a service identify a user?
The Integrity App allows a user to collect and control facts about themselves. These facts can be things like what email address the user has control over, what their phone number is, or different social media user identities. A user could potentially also add their national ID cards or passport to their identity. The user can add any number of facts of any type. When requested by a service, the user gets to choose which part of their identity they want to share. However, a service could potentially deny a user access based on these facts, or the lack of them. The Integrity KYC service will offer a set of default facts a user can add. In order to use a service, the user must have a authorization that tells the service in what role the user can act. The authorization is given to the user by the realm. The authorization gives the user the right to use any service that are configured to accept this authorization. The authorization can be given to the user providing that he shares some facts or other things deemed necessary by the realm, and the service in turn can require further data to accept any type of interaction with the user. A authorization can for example say that the user is a member or an employee of the realm, or it can be even more refined to say that the authorization is only valid for a limited time or for a very specific service.
How do I keep my identity secure?
Anyone can create and claim an identity. The service will look at the signature covering any fact the user will present, so the service can choose to trust facts coming from the Integrity KYC service, or any other KYC service that might be deemed more suitable by the service in question. The core of the identity is the key that was generated by the Identity App. This key, like all other valuable data on your phone, must be protected at all times. Keep your phone secured. Remote wipe your phone if it’s lost or stolen. Back up your phone in the cloud to ensure that even if your phone is stolen or lost, you can use your +Integrity keys in your new device.
What is a Realm?
A realm is typically run by an organisation or a user in order to share any services or goods with either people within an organisation or a space, or people that are external to an organisation. A realm by itself is useless without any services shared by it. So there is typically at least one service bound to the realm. The realm and the service could be run and provided by different parties. So the realm can be hosted by the organisation running it, or it could be hosted by a provider on behalf of the organisation. Any services that binds to the realm can be run by yet another party. For a user the realm will look like an organisation, or a friend, that is offering any services that the user might be interested in. Initially, a user will be connected to one or very few realms.
Is Integrity using any blockchain technology?
Blockchain technology is only used when revoking a certificate or document. The fundamental technology behind your identity and the normal use of services offered does not rely on any blockchain technology. However, if anyone needs to verify if a document is still valid, there is the possibility to store key revocations in a blockchain. The benefit of using blockchains for key revocation is that there is no data leakage of which user is making use of what service, since the service provider can do the lookup through any node running the blockchain. We are also planning for services that use blockchains in other ways, but the core technology can be used without relying on a blockchain.
What happens if I lose my phone?
In the event that you lose your phone, you can restore your data from a backup. On an iOS device, you can choose to backup your app data to iCloud. On an Android version 6 and up, you can use Google Drive to backup your app data. For these backups, Apple and Google is providing the security to protect your data. Please select “backup” in the settings to ensure that you keep your data safe, even if you lose your phone.
How can I share my services with Integrity?
We are working hard to make sure that Integrity is as open and flexible as possible. We are already offering a booking service where you can share resources using a Google Calendar as the backend for scheduling. More services from us will come soon. We are also working on releasing open source components that allows any developer to create new types of services, the sky is the limit.
Do you have any more questions?
We are looking forward to answer any additional questions, so feel free to contact us: email@example.com
How can I contribute?
We are really excited about the potential that Integrity represents, and we are pretty certain that our users are going to find an array of innovative ways to use the system. If you have interesting services or ideas that can valuable additions to our platform, feel more than free to contact us: firstname.lastname@example.org