Technology Paternalism, Continued - Five Abilities and a Test for Self-Sovereign Identity

A follow-up to "Technology Paternalism Expands — A Case for Self-Sovereign Identity"

Warming up

A while ago I published a piece on Technology Paternalism – the anti-pattern by which a technology system is designed to shape, restrict, or pre-decide choices for people, commonly justified as safety, efficiency, or protection. What resulted were vivid discussions. A huge thank you to all the voices in the discussion. This article picks up on them.

How to Navigate This

A note from the author: yes, this one fails the TL;DR test - gloriously. The discussion was too good to compress into a quick read, and some things earn their length.

That said, time is precious. A smart brevity version is in the pipeline, for when you have five minutes rather than fifty. Stay tuned.

In the meantime, here is a high-level overview, with direct links to each section.

This gloriously TL;DR-failed article has three parts

Part I starts with the conclusions - what I have drawn from the discussions

Part II is about the discussions - on what the conclusions build upon

Part III ends where this began — the voices that made it possible

A few thoughts on what is still open, then a return to the people in the discussions. This article is as much theirs as mine: every conclusion was drawn from the discussion, and the voices behind it are credited here.

System, what?

A note on the word “system”: here, a system means anything built from software that may make or shape decisions for or about you – an app, a platform, an algorithm, a protocol, an identity wallet, or the infrastructure underneath them, like a trust graph.

Technology Paternalism in a Hazelnut

PART I

The Conclusions

what follows is what I have drawn from the discussions

Throughout the discussions, one question kept returning: what Spiekermann and Pallas called the right to the last word, and the test of whether a system keeps technology paternalism in check. That is what the five abilities a system should leave you with protect (originally there were four abilities with Trace having emerged within the discussion of the first article about technology paternalism). None of them hinder a system from having defaults, filters, or rankings, systems almost always will. What they do is keep those decisions contestable, so a choice made on your behalf does not become one you just have to live with but one that you are, for example, aware of and can act on.

The image below shows the five abilities a system should leave to you. Depending on how well they are met by the system, they determine the degree with which the system resists technology paternalism and, as hypothesized in this article, test how well some of the revisited self-sovereign identity lenses and principles are met.

More information about each ability can be found in the corresponding drop-downs after the image.

The numbering has shifted from what was used in the original article on technology paternalism: there, leave was the fourth capability. Here it is the fifth, with trace inserted at position four. The order is deliberate - it follows the logic of escalation, from override through to leave as the last resort.

The discussion that followed the original article on technology paternalism brought in one topic after another raised by different people. What I added was the connection between them. The image below shows a stack where each layer builds on the one before as a result of that work. Read top to bottom, it traces how technology paternalism settles in, and how, for the affected person, layer by layer, it grows harder to challenge: Technology Moralism at the top, perceived as easiest to argue with. Below it come Invisible Architecture, then Guardianship and Implicit Feudalism, Code as Law and Epistemic Invisibility, and finally Lock-in – the hardest to escape once it has set. Some layers also work by being hard to see: Invisible Architecture, or safety systems whose logic stays closed. Others, like lock-in, are plain enough, yet, you just discover them typically too late to leave. What they share is the direction of travel: the further down, the less the affected person can do about it, even as the people who built the system retain every option.

Each layer, and the contributor whose topic it builds on, is described in the corresponding dropdown after the image. For more details on how the topics evolved within the original discussion check out the Discussion Content section.

A note for readers of the original article: the four forms of technology paternalism described there - design, algorithmic, infrastructural, and protective - are not replaced by the stack shown here. The four forms describe what technology paternalism looks like; the stack describes how it settles in over time, layer by layer. Evolving the topic with the stack shows that the protective form, in particular, reappears throughout the stack (most directly in the guardianship and code-as-law layers).

At some point the discussion turned to coercion, which surfaced a distinction worth clearing up: technology paternalism and coercion are similar, and one can lead to the other, but they do not have the same source.

A system can embed Technology Paternalism without coercing

A benign default set in your interest, say, the most privacy-protective setting switched on by default, is paternalism without coercion: a decision made for you, but with no pressure, no threat, and no direct third-party interest behind it.

A system can be coercive without Embedding Technology paternalism

A threat that serves the platform’s interest (“comply or lose access”, for the platform’s benefit, not yours) is coercion without any reasonable paternalistic “for your own good” justification.

Yet, while technology paternalism and coercion are different failures, the catch is that technology paternalism can tip into coercion. The image "When Technology Paternalism Tips into Coercion" below sketches how, with further explanations after the image.

Two Expressions of Technology Paternalism

The image shows that technology paternalism (upper-left box) is inherent when a system is designed to make decisions for you, on the assumption that these decisions are made in your interest, yet, without you being part of that assumption.

Depending on how firmly it does so, it takes one of two forms:

1. Soft technology paternalism steers you but leaves a choice: a default you could change, if you noticed it was there

2. Hard technology paternalism removes the choice altogether: a filter or restriction you can’t disable, even once you’ve noticed it

Tipping from Technology Paternalism into Coercion

The orange arrow, pointing from technology paternalism to coercion, shows what has to change for that technology paternalism turning into coercion: the intention, and whose interest the technology serves. Technology paternalism makes its decision for what it takes to be for your own good – that justifying goal is built into the concept. Coercion is different: it applies pressure – a threat, or the weight of a power imbalance – until going along with it is the only realistic “choice” left.

what is any of this worth in the context of Self-Sovereign Identity?

Let’s get to the core of this article. The claim:

Building on the technology paternalism work – the original article and the discussion that followed – all five abilities (trace among them, which emerged from the discussion itself) can be mapped onto the RevisitingSSI lenses, a community effort revisiting the SSI principles now under way.

The image below shows how these abilities connect to six of those lenses: Coercion Resistance, Self-Coercion, Choice Architecture & Exit Rights, Binding Commitments, Principal Authority, and Stewardship, and how strongly each ability tests each lens.

The original article on technology paternalism discussed four lenses under Preventing Coercion. This follow-up maps onto six: the same four, plus Principal Authority and Stewardship. The two additional lenses came into focus through the discussion, particularly around delegation to agents and care relationships such as guardianship.

A closer look at each of the 13 connections can be found in the drop-downs after the image.

Next, we walk through all thirteen connections, lens by lens, opening each to the abilities that test it, strongest first.

Coercion Resistance

What it guards against: pressure applied to a person.

A system – or whoever stands behind it – leaning on you to make a “choice” or accept an outcome that actually is not reflecting what you want. That pressure runs along a range: at one end the explicit threat (comply or lose access), at the other the more subtle but often stronger weight of a power imbalance, where refusing feels the wrong “choice” due to being labelled in a certain way, being excluded from activities, or from the use of features.

Three abilities give you ways to test whether a system actually resists this.

Self-Coercion

What it guards against:the pressure you apply to yourself.

Knowing – or just suspecting – that you’re being watched, you police your own behavior before any rule is enforced. It’s the most effective control of all, because the system doesn’t have to do anything; you do its work for it, while typically not being aware of doing so.

Choice Architecture & Exit Rights

What it guards against: lock-in.

The slow accumulation of small, reasonable choices into a dependency you can’t get out of (without loosing a lot) – credentials in a format that is not interoperable in a different context, reputation that won’t transfer, switching costs so high that “voluntary” is not actually a choice.

Binding Commitments

What it guards against:the misuse of constraint.

Some commitments are good – they’re what lets people trust each other and cooperate over time. The danger is constraints that gradually become a cage: the “commitment” you can never get out of.

Principal Authority

What it guards against: delegation that isn’t really delegation. When you grant a system authority – to a wallet, an issuer, a verifier – you’re supposed to stay the one in charge, able to pull that authority back. The harm is the “agent” that takes your authority and then can’t be recalled.

Stewardship

What it guards against: care that curdles into control.

Someone manages another person’s identity – a parent for a child, a guardian for someone who can’t act alone – which may be necessary, but the power in that relationship eventually can turn from protection into permanent control the person can not escape from.

PART II

The Discussions

what follows is how each conclusion actually emerged

THE DISCUSSION STARTED

with technology moralism, a concept that can precede technology paternalism. A builder embeds their own moral judgment into a system. The problem is not that the judgment exists. It is that building the system does not make the judgment right.

THE DISTINCTION THAT EMERGED

IS ABOUT WHO GETS THE LAST WORD

Technology moralism makes a claim to moral authority. Someone states a position: this is what we think, and here is why we built it this way. As the person on the receiving end, you can weigh that position, disagree with it, propose something better. A position is something you can push against.

Technology paternalism is what is left when the standing-behind-it falls away. The same for-your-own-good decision is still being made. It has just been built into the system rather than stated. The system simply works that way — and pushing against it now may mean giving up the function.

What followed from that

is that when a decision can no longer be overruled, no one has to own it anymore either. That is not part of Spiekermann and Pallas's definition, which is about what the system does to the person rather than what happens to the builder's responsibility. But it is a consequence that tends to follow.

THE DISCUSSION CONNECTED THE MORALISM ARGUMENT TO social license

Social license is the ongoing acceptance and legitimacy a provider needs from the communities it governs - not just legal authority, but a standing that has to be continuously earned from those who are affected. It differs from formal regulatory permission because it cannot be issued once and held indefinitely. It has to be maintained.

Within the Discussion

and alongside the critique of technology moralism as a claim to moral authority, it was raised that there is the prior question of whether that authority was ever accepted by the people most affected. In government identity contexts, that question is typically explicit - it is what drives implementation decisions and shapes how agencies approach public trust.

Social License makes the difference between a provider who has the right to make a decision and one who has earned the standing to make it

This means, while technology moralism is what happens when a provider acts as though building the system confers moral authority. The absence of social license is what makes that assumption visible as an assumption: the provider decided, the people it serves were not part of that decision, and there is no ongoing mechanism for them to withdraw their agreement.

What follows from that

is a gap the stack shown above does not explicitly close. A system can satisfy all five abilities - override, contest, inspect, trace, leave - and still operate without social license, if the legitimacy of the decisions embedded in it was never established with the people it governs. *

The abilities test whether you can challenge a decision. Social license tests whether the decision had standing to be made in the first place.

THE DISCUSSION EXPANDED

towards Invisible Architectures, which is about decisions built into a system long after anyone remembers them having been made (Rebooting the Web of Trust (2016): the Invisible Architectures, described in Embedding Human Wisdom in Our Digital Tomorrow, authored by Daniel Hardman, Kaliya "Identity Woman" Young, and Matthew Schutte).

THE DISTINCTION THAT EMERGED

Is about time

The underlying issue with invisible architectures is that the corresponding decisions embed assumptions of the moment they were made – the values and the logic of a particular time and context – and keep applying them after that context has changed, sometimes long after.

This adds the dimension of time to technology paternalism, and with it, responsibility. If a system embeds assumptions from years ago, today, then the people building it are making choices whose consequences most likely outlast them – which means they have to build with that in mind.

What followed from that

is that considering invisible architectures in the context of technology paternalism helps explain why technology paternalism is so hard to shake. While previous decisions may have been reasonable on their own, and still may, they may also be adding up to a system that substitutes its judgment for yours by default. The people who built the system may not have intended that. The people who deploy it may not see it. And the people who use it experience it only as friction, or, more often, as a narrowing of what seems possible.

THE DISCUSSION THEN MOVED back FROM DESIGN TO POWER

placing technology paternalism inside a much older political frame: guardianship - not in the legal sense of a court-appointed role, but in the older political sense of a group that claims the right to decide for others on the grounds that it knows better. That idea is ancient, it runs from Plato’s philosopher-kings, through Lenin’s revolutionary vanguard, down to today. The modern tech version is, for instance, a head of platform safety, a small standards committee, a product team. typically unelected, and rarely accountable to the people they decide for, however good their intentions.

THE DISTINCTION THAT EMERGED

IS ABOUT ACCOUNTABILITY

Protective technology paternalism, one of the four forms of technology paternalism I described in the original article, turns out to map onto Plato’s guardian class almost exactly: restrictions that are justified in the language of safety, security, or harm prevention, imposed by those who have decided they know what you need protecting from. It's a parallel that emerged from the discussion and that added depth to the original article’s framing of protective paternalism.

What followed from that

is the observation of a crucial difference. Guardianship in the digital world scales without accountability. Plato's philosopher-kings were visible - you knew who they were.

In the original article, guardianship was framed as a claim to authority: someone asserting they know best. Technology paternalism is almost the opposite. The claim is built into the system itself, so it no longer needs to be asserted. It shows via defaults, interface flows, filtering logic, or access rules.

And once it is in there, the system enforces what is best for everyone. Hence, technology paternalism can persist without an active guardian. The system does not need a philosopher-king. It only needs to have been built by someone with a particular idea of who the person using the system is - and then deployed at scale to everyone, including all the people who do not fit that idea.

THE DISCUSSION actually SURFACED

STRUCTURAL ASSUMPTIONS

or, what happens when guardianship is baked into the system itself? That is where the discussion put Nathan Schneider's concept of implicit feudalism into focus.

Schneider describes a bias - cultural and technical - in how online spaces get built. Platforms grant administrators absolutist control over their communities, with competition among them as the primary mechanism for quality control, under rules set by the platform companies above them. Whoever creates a space has essentially absolute power over it. The only tools available for addressing conflict are censorship and exile. There is no way to appeal.

Over time, Schneider argues, these feudal defaults train people to give up on their communities’ democratic potential - inclining them to tolerate autocratic authority and distrust their own capacity for self-governance.

What the discussion draw from that

is that while implicit feudalism is not the same concept as technology paternalism, and Schneider did not say otherwise, the two share the same structural logic. Where implicit feudalism describes how online spaces are built by default - with power already concentrated before any single design decision is made - technology paternalism describes what that concentration makes possible: decisions embedded in systems that the people affected by them cannot overrule.

THE DISCUSSION then BROUGHT IN A software view

the original article had not used: Lawrence Lessig's insight that code is law. His argument, developed in Code and Other Laws of Cyberspace, is that software and hardware set permissions, create affordances, and block uses - regulating behavior just as law does, but through architecture rather than statute [2]. The people who write the code make the decisions. Everyone else has just to live according to them. Seen through that view, technology paternalism is not an edge case of system design. It is what happens when the regulatory power of code is turned inward - toward the people the system is meant to serve.

THE MOST ACUTE IMPLICATION

the discussion found, is around safety and surveillance. Platforms scan content at scale to prevent harm. But the same infrastructure that protects can just as easily restrict, censor, or repress.

And because the architecture is closed and the decisions are made upstream, the people being governed by it have no way to see how those decisions get made — or whether they have drifted from their original purpose.

What the discussion draw from that

was a response about community rights.

These three rights line up almost exactly with the original article’s framing. There, the right to the last word rested on four abilities: override, contest, inspect, and leave.

The three community rights reflect, in essence, the ability to inspect: scaled up from an individual right to a community one, and stretched forward in time through consent in advance.

And the third right - the right to inspect regularly, to confirm the system does what it says and nothing more or less - is what determines whether safety means protection, or simply third-party control with better framing.

THE DISCUSSION THEN tapped into practice

by focusing on a concrete testing ground: the Decentralized Trust Graph — a joint working group run by Trust over IP (ToIP) and the Decentralized Identity Foundation (DIF), launched in 2025 as part of a broader initiative on digital trust for agentic AI [3]. Its purpose is to define the standards for building decentralized trust graphs: graphs of trust relationships between people, organizations, AI agents, and so on - where there is no centralized database and all parties control their own portable subgraph of trust relationships [4].

WHAT THE DISCUSSION DREW FROM THAT

was that as an identity community, we run the risk of building systems that restrict behavior in the name of safety - and not noticing we have fallen into the very trap we set out to prevent. A system that makes its restrictions impossible to challenge is technology paternalism, regardless of the intentions behind it.

THE DISTINCTION THAT THEN EMERGED IS about CONTRADICTION

A further input sharpened the original article’s message: if a system only stores resolved states, the conflicting claims behind them are invisible by design. And you cannot judge what you cannot see. Judgment is only possible in a system whose decisions - and the reasons behind them - remain open to you.

Take the exclusion example. You cannot inspect or argue with why you were excluded if the system has already resolved the conflict on your behalf. The only thing it shows you is the outcome - the exclusion itself.

THE DISCUSSION SURFACED

is that a system that hides its conflicting claims reproduces protective technology paternalism at the level of the data model. Not through intent, but through architecture.

From this came a proposed fifth ability

Alongside the four abilities named in the original article, within the discussion a fifth one surfaced: the ability to trace a decision back to the conflict it came from, before the system has resolved it on its own and forced it into a final state.

The full list of abilities a system should leave you with, revised below. The order follows the logic of escalation: you first try to override, then contest, then inspect, then trace the decision back to the conflict behind it - and only leave when none of that has worked.:

THE DISCUSSION THEN MOVED TO Portability

what is likely the most practical challenge of all: data portability; and whether, without it, the five abilities bear any value.

The discussion also raised a side question about whether technology paternalism belongs on the agenda of MyData Global, the international nonprofit working to empower individuals through the right to self-determination regarding their personal data.

WHAT THE DISCUSSION DREW FROM THAT

was the core challenge highlighted next:

You can contest a decision made by a system you cannot leave. You can also inspect the reasoning of a system whose data you cannot take with you. But contesting and inspecting do not count for much when acting on what you find means losing everything you have built up inside the system — your data, your history, your relationships.

Portability is what makes the ability to leave a valuable option: an exit you can actually take, with your data and relationships intact.

ONE MORE DISTINCTION THAT THEN EMERGED digital literacy

Digital literacy is a person's ability to understand and use digital systems. It also bears a familiar argument: if people understood these systems better, they could navigate them better.

That is true, but it is not enough.

You can know exactly how the defaults were set, and why, and still have no real way to switch them off. Knowledge of the mechanism is not the same as access to the controls.

There is a second problem with making literacy the answer. Those who have not had the chance to build it are left with whatever the system decided for them - which is worse, because it adds a layer of blame. The system constrained you, and now it is somehow your fault for not understanding it well enough.

Closing Thoughts

What Held, What Sharpened, What Opened

WHERE THIS LEAVES US.

The discussion took the original article apart - not to dismantle it, but to stress-test it. It opened the anti-pattern into pieces: moralism, assumptions hardening into infrastructure, guardianship without accountability, code that governs like law, conflicts resolved before anyone can see them. Always with the same question in focus: can the person still get the last word?

That question framed the two main takeaways. First, the five abilities – override, contest, inspect, trace, leave – are not a guarantee against technology paternalism. They are a way to see, in any given system, whether a decision made for you is still one you could challenge, understand, or walk away from. And second, how those same may map onto the SSI lenses now being revised, each one a way to test how concretely a given lens is actually met. That mapping is a beginning, not a conclusion.

One clarification

may be needed before going further. The five abilities are a measure, not a checklist every system must fully pass. Some systems - government identity infrastructure above all - cannot leave a direct override with you: a tax assessment or an eligibility ruling is final by law, for reasons that are considered to protect everyone. That is not the ability being waived. It is the last word exercised through due process - contest, inspect, a lawful appeal - rather than a toggle. The test still holds though: it shows how much of the last word a system preserves, and through what mechanism. In that context, a low score on direct override is a finding, not a failure.

A few directions that could further be explored are:

PRACTICALity

So far the abilities have been applied as an argument: for example, does override, in principle, test coercion resistance? The next step is to apply them as architecture. Take the Decentralized Trust Graph: can a participant override an exclusion, inspect why a trust relationship was dropped, trace the conflicting claims behind a verdict, leave with their relationships intact? That turns the abilities from criteria on paper into design requirements a protocol can be measured against.

broadness

This piece touched six lenses, not all fifteen. It may therefore be an opening into the RevisitingSSI work rather than a finished frame — offered, like the lenses themselves, as an invitation to engage

looking sideways

Technology paternalism has cousins. Persuasive computing sets out to change what you want. Nudging steers without removing the choice. Dark patterns push you toward someone else’s interest. Each is a little different: paternalism decides for what it takes to be your own good, persuasion reshapes your wants, coercion applies pressure. Telling them apart - and giving each its own evaluation criteria - may be where this work goes next.

Voices in The Discussion – Thank You

This follow-up exists because people read the first article and gave it their time, their thinking, their questions, and their pushback. That is a generous thing to do, and it is what made this piece possible.

Tim Bouma introduced technology moralism: the mistaken belief that being a technology provider also confers moral authority, which opened the thread on visibility and the right to the last word.

Colin W. connected the discussion to social license: the ongoing acceptance and legitimacy a provider needs from the communities it governs, and a concept already top of mind in most government identity implementations. It is the condition the stack does not just close on its own.

Christopher Allen picked up the original article on Life With Alacrity and Blockchain Commons, connected it to his Architecture of Autonomy work, identified the moment moralism turns into paternalism, brought in the Invisible Architectures concept from Rebooting the Web of Trust, named institutional guardianship in credential governance, proposed the four abilities as evaluation criteria for trust infrastructure, and pointed to the RevisitingSSI Stewardship and Preventing Coercion lenses discussed above.

Jonathan Bellack contributed the political-historical frame through his Platformocracy writing. The guardianship lineage from Plato to Lenin, Nathan Schneider’s implicit feudalism, and the code-as-law connection with the three community rights around platform surveillance - understand, consent, inspect - all trace to his work there.

Drummond Reed connected the discussion to the Decentralized Trust Graph Working Group at Trust over IP and the Decentralized Identity Foundation, making trust infrastructure the concrete test case for the five abilities.

Veikko Eeva introduced the distinction between restricting information and marking its epistemic status - and with it, the shape of the fifth ability: the right to reach the conflict behind a decision, before the system has resolved it out of sight.

Fredrik Lindén raised the question that surfaced the portability thread - whether technology paternalism belongs on the MyData Global agenda - and with it, exit as the practical floor beneath every other ability.

Jeno Giordano offered a practitioner’s confirmation: building an identity layer, his team found that anchoring credentials to a platform quietly repriced exit as loss - so they came to treat portability not as a feature but as a correctness condition.

Kaliya Young included the original article in Identosphere newsletter #167, bringing it to the wider identity community.

The conversation is not finished. If something here resonates, or if you think something is missing, that is a reason to continue it.

Sources and Further Reading

• Original article - Technology Paternalism Expands — A Case for Self-Sovereign Identity — https://www.kosmaconnect.net/interactionblog/technologypaternalism

• LinkedIn discussion thread 1 - https://www.linkedin.com/posts/mkolpondinos_ssi-digitalidentity-sociotech-share-7439696404773707776-YS6E

• LinkedIn discussion thread 2 - https://www.linkedin.com/posts/christophera_martina-kolpondinos-phd-youve-named-something-share-7439808340001529856-naS3

• Spiekermann, S. & Pallas, F. (2006) - Technology Paternalism: Wider Implications of Ubiquitous Computing. Poiesis & Praxis — https://edoc.hu-berlin.de/bitstreams/74b6f72e-5827-4b67-9dbe-8ccd18e7a09b/download => also refers to [1]

• Christopher Allen, Life With Alacrity - Dispatches of a Trust Architect: Fighting Technology Paternalism — https://www.lifewithalacrity.com/article/dispatches-technology-paternalism/

• Christopher Allen, Blockchain Commons (cross-post) - https://www.blockchaincommons.com/dispatches/technology-paternalism/

• Buterin, V. — Ethereum Foundation EF Mandate. Ethereum Foundation Blog, March 13, 2026 - https://blog.ethereum.org/2026/03/13/ef-mandate (PDF: https://ethereum.foundation/ef-mandate.pdf)

• Kaliya Young — Identosphere Newsletter #167 (March 14–28, 2026) - https://newsletter.identosphere.net/

• Jonathan Bellack, Platformocracy - Explainer #2: Guardianship Is Why Tech Execs Think They Are Uniquely Qualified To Protect Communities - https://www.platformocracy.com/p/explainer-2-guardianship-is-why-tech-execs-think-they-are-uniquely-qualified-to-protect-communities

• Jonathan Bellack, Platformocracy - Explainer #1: "Implicit Feudalism" Is Why Online Communities Feel Like Warring Kingdoms - https://www.platformocracy.com/p/explainer-1-implicit-feudalism-is-why-online-communities-feel-like-warring-kingdoms-4ef8f387d88375a8

• Jonathan Bellack, Platformocracy — Unchecked Surveillance In The Name Of Safety Is Dangerous - https://www.platformocracy.com/p/unchecked-surveillance-in-the-name-of-safety-is-dangerous-f1377c7318bae676

• Schneider, N. - Governable Spaces: Democratic Design for Online Life. University of California Press, 2024 — https://luminosoa.org/books/m/10.1525/luminos.181

• Schneider, N. - Admins, Mods, and Benevolent Dictators for Life: The Implicit Feudalism of Online Communities. New Media & Society, 2021 — https://osf.io/preprints/mediarxiv/sf432_v1

• Lessig, L. - Code: And Other Laws of Cyberspace - https://archive.org/details/codeotherlawsofc0000less; Version 2.0. Basic Books, 2006 — https://www.basicbooks.com/titles/lawrence-lessig/code/9780465039142/ => also refers to [2]

• Decentralized Trust Graph Working Group (ToIP/DIF) - announcement - https://www.lfdecentralizedtrust.org/blog/toip-and-dif-announce-three-new-working-groups-for-trust-in-the-age-of-ai => also refers to [3]

• Decentralized Trust Graph Working Group (DTGWG) - working group home - https://lf-toip.atlassian.net/wiki/spaces/HOME/pages/257785857/Decentralized+Trust+Graph+Working+Group => also refers to [4]

• Eeva, V. - Comment in LinkedIn discussion thread on Technology Paternalism, 2026 — https://www.linkedin.com/posts/mkolpondinos_ssi-digitalidentity-sociotech-share-7439696404773707776-YS6E

• MyData Global — https://www.mydata.org/

• RWoT3 - San Francisco, October 2016 — Embedding Human Wisdom in Our Digital Tomorrow — https://github.com/WebOfTrustInfo/rwot3-sf/blob/master/final-documents/WisdomEmbedding-Human-Wisdom-in-Our-Digital-Tomorrow.pdf

• RevisitingSSI - Lens Exploration Briefs: 15 Lenses for Viewing the Future of SSI (Version 0.2.01) — https://revisitingssi.com/lenses/briefs/

• RevisitingSSI - Coercion Resistance Lens — https://revisitingssi.com/lenses/briefs/coercion-resistance/

• RevisitingSSI - Self-Coercion Lens — https://revisitingssi.com/lenses/briefs/self-coercion/

• RevisitingSSI - Choice Architecture & Exit Rights Lens — https://revisitingssi.com/lenses/briefs/choice-architecture/

• RevisitingSSI - Binding Commitments Lens — https://revisitingssi.com/lenses/briefs/binding-commitments/

• RevisitingSSI - Principal Authority Lens — https://revisitingssi.com/lenses/briefs/principal-authority/

• RevisitingSSI - Stewardship Lens — https://revisitingssi.com/lenses/briefs/stewardship/

• RevisitingSSI - Regulatory Frameworks Lens — https://revisitingssi.com/lenses/briefs/regulatory-framework/

• European Commission - Data Act Explained — https://digital-strategy.ec.europa.eu/en/factpages/data-act-explained

* Social license originated in the mining and resource industries. Its use in government digital identity contexts is growing while in the SSI and decentralized identity space the term is less established, yet.

Change History

Started, June 12, 2026: began the writing phase after a previous longer elicitation phase

Published, June 22, 2026