Standards Compliance
To guarantee interoperability and legal compliance, TLIP is built in accordance with a variety of technical standards.
Identity Standards
- Decentralised Identities: TLIP manages identity and access using Web3 decentralised identities, allowing stakeholders to create and own their identity via public/private key pairs.
- Verifiable Credentials: Signed, verifiable attributes are added to each identity, ensuring secure and trusted interactions. This decentralised approach eliminates single points of failure and is resilient against denial-of-service attacks.
- W3C Compliance: TLIP adheres to the W3C standard for decentralised identifiers – specifically the IOTA did:method implementation – and supports the JWT standard for verifiable credentials presentation.
Data Standards
To ensure compliance and facilitate integration with existing systems, TLIP leverages established data standards:
- GS1 EPCIS 2.0 for event occurrence tracking.
- GS1 Digital Link for collecting consignment properties.
- Standard Vocabularies including UN/CEFACT and schema.org, to enhance focus on documents and trade events.
For more details, visit our TLIP Developer Wiki.
Security Standards
All on-chain data in TLIP is secured through the public key cryptography used to settle transactions on the IOTA DLT.
- IOTA addresses are linked to key pairs on a Twisted Edwards Curve, specifically the Edwards25519 Curve.
- DLT transactions are signed and verified by nodes using the EdDSA signature scheme.
- Addresses, identifiers, transactions, essences, and hashes (including Merkle Tree hashes) are generated using (generally) the Blake2b-256 hash function.
- The data integrity of verifiable credentials is maintained through the EdDSA signature scheme, with IETF JWK used for public key representation in DID documents (IETF RFC7517).
- Additionally, data encryption is based on ChaCha20Poly1305.
Legal Standards
TLIP ensures legal compliance in digital trade documents by adhering to principles established by key regulations, particularly the UNCITRAL Model Law on Electronic Transferable Records(MLETR) and the UK Electronic Trades Bill.
- Under MLETR, digital trade requires methods to identify and control electronic transferable records. Additionally, it is essential to maintain the integrity of these electronic records.
- The UK Electronic Trades Bill mandates that electronic trade systems must distinguish documents from their copies and protect them against unauthorised alterations. Furthermore, the Bill enables the transition from paper to digital-only documents, provided that proper conversion statements are available.
TLIP’s use of IOTA’s DLT and decentralised identities meets stringent security, integrity, and auditability standards. Additionally, TLIP employs unique QR codes to link a document’s paper copy to its digital version for improved auditability and verification.