Add did:aip method registration (Agent Identity Protocol)#689
Add did:aip method registration (Agent Identity Protocol)#689itisparas wants to merge 6 commits into
Conversation
|
Thanks for the comment. A few points of clarification:
The problem On the common agent identity profile idea - we would genuinely welcome that conversation. AIP is released under CC0 and designed as neutral infrastructure. If the W3C DID community wants to define a common agent identity profile that DID methods like The fragmentation concern is worth taking seriously as a community. We’d suggest the right venue for that broader conversation is a W3C or IETF working group discussion rather than a specific method registration PR. |
0e915d3 to
9291f07
Compare
|
Hi @msporny @gatemezing @swcurran — friendly ping on this registration PR. We've just rebased the branch against the current A quick status check on our end:
We're actively engaging with the W3C DID community on AI agent identity (including the NIST NCCoE's 2026 concept paper on AI agent identity and authorisation) and would welcome any editorial feedback before merge. Happy to answer any questions or make changes based on reviewer feedback. Thank you for your time. |
|
Update for reviewers:
@msporny @gatemezing @swcurran, could you approve the workflow run when you have a chance and merge if the registration now looks acceptable? |
|
@itisparas -- note that there are conflicts that have to be resolved before merging. |
Add did:aip DID method registration for the Agent Identity Protocol, an open standard for verifiable AI agent identity. did:aip provides: - W3C DID-conformant persistent identifiers for autonomous AI agents - Cryptographically verifiable principal delegation chains - Fine-grained capability manifests with signed constraints - Tiered revocation (CRL, real-time, mTLS/OCSP) - Standardised reputation data format - Ed25519 mandatory-to-implement with DPoP proof-of-possession Specification: AIP-CORE-v0.1 defines DID method syntax (Section 3.2), DID Document format (Section 3.6), and all four CRUD operations (Section 3.6.5). Released under CC0 1.0 Universal.
Adds AIPRegistry as a formal service type in the DID Extensions properties registry. This service endpoint allows any verifier to discover the key resolution endpoint, revocation status endpoint, and capability manifest for a did:aip subject by resolving the DID document alone — no pre-configuration or out-of-band setup required. Includes: - AIPRegistry section in properties/index.html (Service types) - JSON-LD context at vocabs/aip-registry-v1.jsonld Related: provai-dev/aip-spec, w3c/did#926
fcfd131 to
a51b140
Compare
|
@swcurran Thank you for the review and approval. Before this merges, we want to flag that the conflict on this branch was not editorial: Timeline for the editors:
Because method files are keyed by name, the two registrations are mutually exclusive. We have rebased as requested, and the diff now shows precisely what accepting this PR would mean — replacing the #704 entry. We did not want that substitution to happen as a silent mechanical conflict resolution, so we are explicitly asking the editors to rule on the name collision. We believe priority of filing and the registration record support cc @gatemezing @msporny as #704's reviewers, and @dr-wilson-empty — no bad faith assumed on anyone's part; two projects independently chose the same acronym. |
DID Method Registration
As a DID method registrant, I have ensured that my DID method registration complies with the following statements:
contactEmailaddress [OPTIONAL].verifiableDataRegistryentry [OPTIONAL].Method name:
aip(Agent Identity Protocol)Specification: https://www.ietf.org/archive/id/draft-singla-agent-identity-protocol-01.html
Public repository: https://github.com/provai-dev/aip-spec
Summary:
did:aipis a W3C DID-conformant identity method for autonomous AI agents acting on behalf of human or organisational principals. The method is part of the Agent Identity Protocol (AIP), an open standard for verifiable AI agent identity covering delegation chains, capability manifests, tiered revocation, and reputation data.The method defines:
did:aip:<namespace>:<32-hex-agent-id>with five registered namespaces (personal,enterprise,service,ephemeral,orchestrator) - AIP draft §4.1 and §4.3Security Considerations: AIP draft §21 covers threat model, cryptographic requirements, DPoP proof-of-possession, key management, token security, delegation chain security, and registry security.
Privacy Considerations: privacy-relevant controls are covered across the draft through principal-chain minimisation, revocation, capability scoping, registry trust, and security considerations. The public spec repository remains open for focused privacy/editorial feedback.
License: the public repository is published under CC0 1.0 Universal.
Registration-thread status: the earlier independent
did:aipname-collision PR (#684) was closed unmerged, and the separatedid:agentpassPR (#690) is also closed. This PR now points the registry entry at the published IETF archive fordraft-singla-agent-identity-protocol-01instead of the earlier GitHub Markdown path.