With the use of the IOP Console, each food item or product that comes into contact with food can be assigned a digital identity, which is unique, forgery-proof, verifiable, transparent and traceable for selected user groups. Simple, quick, affordable, without added effort and error-free.

With the use of a blockchain-based solution and an SSI tool, each genuine product – from raw material and the supplier through the manufacturer, distributor, logistics service and dealer to the consumer – are verifiable with the use of a unique and traceable digital identity (DID). As a result, plagiarism and counterfeit products can be easily identified and their manufacture is not profitable due to the lack of a sales market. Beneficial secondary effect: The trust in generic products is strengthened as due to DID and tracking processes it is traceable in a clear and transparent manner who manufactured the products at which location and which distribution channels were used.

Trustworthy, transparent supply chains and technologies, which safeguard a secure exchange of data, are required to counteract these problems. The IOP Console provides all partners that have access permission, a simultaneous access to all relevant data – nearly in real time – and with this facilitates making optimized and individual decisions on the basis of the available and always correct information. Instead of the evaluation of data that was registered manually and analysed with a time delay, decisions can be made in-situ and as a result considerable cost savings can be achieved. For example, as a result of digitalised value creation chains (supply chain management), on average, savings of 6.8% and an increase in turnover of 7.7% were achieved in 2019. Additional advantages: Due to the digitalisation of the value creation chain, the customer satisfaction was increased due to punctual deliveries and an effective risk management was created.

If instead smart contracts (i.e. computer protocols that depict contracts) are used, then many of the processes can be automated and simplified considerably. The foundation is formed by the blockchain-based SSI solution (SSI = self-sovereign identity) integrated in the IOP Console. With this, all materials, objects, dealers, suppliers, logistics service providers, etc. can be uniquely identified and traced. Moreover, all digital entities are networked, can “negotiate” independently and the billing is performed in an automated, secure and transparent manner. For example, fully automated container ships can be loaded by robots in Chinese ports, be shipped to Europe and then unloaded automated in Rotterdam and Hamburg according to the specifications.

When the current IAM processes are expanded with SSI services (SSI = self-sovereign-identity) of the IOP Console, then these can be considerably accelerated and simplified, enabling the elimination of error-prone and time-consuming synchronisation.  In this manner, thanks to SSI-enabled applications, companies can provide users with so-called credentials (these are digital access permissions) in a simple and uncomplicated manner, which are then immediately available to the users – and when necessary can also be revoked quickly and easily – and for example grant immediate access to data or areas. The credentials originate directly from the data sources in which they are originally created (golden source; authoritative source), they are error-free and reduce the administrative work to a minimum. Moreover, for current solutions, such as single sign-on (SSO), SSI offers the possibility of removing different access data and alternating passwords. Additional advantages are:

• Flexibility  – Credentials can be created, assigned and revoked again as required. The same applies to the use of the credentials – they can be used for applications, internally and also between companies. For example, a company can grant access to all (or selected) employees of a new service provider to defined areas of the intranet without including these in dedicated directory services or having to create user accounts for them.
• Security – Instead of complex authentication and authorisation processes, in which it nevertheless is never 100% certain whether the user who has logged on is actually the owner of the login, SSI credentials are solely assigned to an authorised person and can also only be used by him/her. As a result, unauthorised access is a thing of the past.
• Regulatory compliance – SSI stands for “privacy by design” and by default is secure and data protection-compliant. Moreover, each user can determine on their (personal) data and owns this in the form of credentials, which are stored in a so-called wallet, a type of digital purse, on their smartphone or self-chosen cloud services. Based on this, releases can be performed to desired recipients, whereby the blockchain of the IOP Console will clearly document the transaction and offers the possibility of checking the credentials at any time.
• Privacy – Each user has a unique identity in the SSI world, which can be used freely. Unlike online accounts or physical IDs, which can be “cracked” quickly and relatively easily, with SSI, the privacy of each user is secure. Because a new identity is created by the user for each relation – a DID (decentralized identifier) – no conclusions can be drawn on a user and users can gradually establish a digital identity, whose uniqueness is only evident to the user himself.
• Discretion – Just as credentials are only accessible to involved users, the relationships between users remain discrete and secure. For companies, the SSI-based approach in IAM offers great potential, because the digitalisation is simplified significantly and corporate processes can be handled quickly, flexibly, securely, with GDPR compliance and discretely.