Digital identity is evolving from centralized systems to a decentralized approach known as Self-Sovereign Identity (SSI). SSI empowers individuals to control their digital identities, eliminating reliance on third-party data custodians and reducing the risk of data breaches. However, the concept of trust in SSI remains complex and fragmented. This paper systematically analyzes trust in SSI in light of its components and threats posed by various actors in the system. As a result, we derive three distinct trust models that capture the threats and mitigations identified across SSI literature and implementations. Our work provides a foundational framework for future SSI research and development, including a comprehensive catalogue of SSI components and design requirements for trust, shortcomings in existing SSI systems and areas for further exploration.

中文翻译：

---

SoK：信任自我主权身份

数字身份正在从集中式系统演变为分散式方法，称为自我主权身份（SSI）。 SSI 使个人能够控制自己的数字身份，消除对第三方数据托管机构的依赖并降低数据泄露的风险。然而，SSI 的信任概念仍然复杂且支离破碎。本文根据 SSI 的组成部分以及系统中各个参与者构成的威胁，系统地分析了 SSI 的信任。因此，我们得出了三种不同的信任模型，这些模型捕获了 SSI 文献和实施中发现的威胁和缓解措施。我们的工作为未来的 SSI 研究和开发提供了一个基础框架，包括 SSI 组件的全面目录和信任的设计要求、现有 SSI 系统的缺点以及需要进一步探索的领域。