Your SlideShare is downloading. ×
User consent for consumer identity (@ISSE2010)
User consent for consumer identity (@ISSE2010)
User consent for consumer identity (@ISSE2010)
User consent for consumer identity (@ISSE2010)
User consent for consumer identity (@ISSE2010)
User consent for consumer identity (@ISSE2010)
User consent for consumer identity (@ISSE2010)
User consent for consumer identity (@ISSE2010)
User consent for consumer identity (@ISSE2010)
User consent for consumer identity (@ISSE2010)
User consent for consumer identity (@ISSE2010)
User consent for consumer identity (@ISSE2010)
User consent for consumer identity (@ISSE2010)
User consent for consumer identity (@ISSE2010)
User consent for consumer identity (@ISSE2010)
User consent for consumer identity (@ISSE2010)
User consent for consumer identity (@ISSE2010)
User consent for consumer identity (@ISSE2010)
User consent for consumer identity (@ISSE2010)
User consent for consumer identity (@ISSE2010)
User consent for consumer identity (@ISSE2010)
User consent for consumer identity (@ISSE2010)
User consent for consumer identity (@ISSE2010)
Upcoming SlideShare
Loading in...5
×

Thanks for flagging this SlideShare!

Oops! An error has occurred.

×
Saving this for later? Get the SlideShare app to save on your phone or tablet. Read anywhere, anytime – even offline.
Text the download link to your phone
Standard text messaging rates apply

User consent for consumer identity (@ISSE2010)

1,002

Published on

As presented for ISSE 2010, on 7 October 2010 in Berlin.

As presented for ISSE 2010, on 7 October 2010 in Berlin.

0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
1,002
On Slideshare
0
From Embeds
0
Number of Embeds
1
Actions
Shares
0
Downloads
10
Comments
0
Likes
0
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide

Transcript

  • 1. User consent for consumer identity 7 October 2010, ISSE 2010, Berlin Maarten Wegdam Principal Research @ Novay
  • 2. Novay?
    • Mission “ to create breakthroughs in the way we work, live, and entertain ourselves, by creating and applying ICT-innovations ”
    • Independent Dutch ICT research institute
    • Formerly Telematica Instituut
    • Innovation projects for clients
    • Networked innovation
    • Identity & Trust is focus area, e.g.:
  • 3. An intro to user consent
    • User centric identity
    • Empower user to control his/her identity
    • See also: Laws of Identity by Cameron
    • Why: legal, ethical and user acceptance
    • How: insight and control over data flow
  • 4. Case: SURFfederation
    • Federate for Dutch higher education and research
    • ~700k users, ~40 IdPs, ~30 SPs
    • Limited sharing of attributes
    • Trust framework
    • Multi-protocol, including SAML & WS-Federation
    • Question: do users want consent, and how?
    IdP IdP IdP IdP SP SP SP SP hub
  • 5. State-of-the-art for consent InfoCard (active client)
  • 6. State-of-the-art for consent OpenID (web-redirect)
  • 7. User centric SAML?
    • But isn ’t SAML is Identity Provider centric? Well, that depends …
    • SAML WebSSO is web-redirect, similar to OpenID: consent can be similar
    • Already examples:
      • consent module van SimpleSAMLphp (WAYF, Feide)
      • uApprove (SWITCH)
  • 8. A step back A complicated trade-off for consent
  • 9. Privacy attitude [Privacy indexes: a survey of Westin’s studies. Kumaraguru, Faith Cranor. ISRI technical report, december 2005.]
  • 10. Approach
    • State-of-the-art
    • Design web-redirect based consent
      • Not SAML/OpenID specific …
      • 5 guidelines (next slides)
      • Based on ‘professional’ literature, academic literature and existing implementations
    • User studies! InfoCard vs user-centric SAML
    • Pilot
  • 11. We decided in our case not to provide per-attribute choice, too difficult to understand. Always ask user before exchanging data 0 Consent
  • 12. We show actual value of information, explain the federation and role of SURFnet, and link to privacy statement Make the information flow clear 1 Informed
  • 13. We decided to only have ‘timed’ automation, people forget… Enable providing consent for future log-ins 2 Automate
  • 14. We decided to only have ‘timed’ automation, people forget… Enable providing consent for future log-ins 2 Automate will be longer
  • 15. Difficult to do with web-browser without becoming too intrusive…
    • Notify when information is exchanged (in right context)
      • Even if consent was already provided
    3 Notification
  • 16. Including what attributes are included in consent, but no log. Provide overview and allow revocation of provided consents 4 Revocation
  • 17. Including what attributes are included in consent, but no log. Provide overview and allow revocation of provided consents 4 Revocation
  • 18. User study setup
    • Small/qualitative, in depth, using mockups
      • Co-discovery, 9 * 2 people, 3 universities, mix students & employees, questionnaire
    • Do they want consent, or will they rather leave it to their university?
    • If they do: do they prefer InfoCard or user-centric SAML?
    • And specific feedback on trade-off in our user-centric SAML
  • 19. User study outcome
    • Yes , they did want consent
    • They prefer user-centric SAML over InfoCard
  • 20. User study – other points
    • No consensus on desired ‘obtrusiveness’: we decided to skip notification
    • They want to know why service providers want their attributes
    • They want control over the data after consent: no solution yet …
  • 21. Current status
    • Exploring user-centric SAML
    • Additional user studies to fine-tune user interface
    • Started large pilot two weeks ago 
    • Based on outcome SURFnet will decide if to roll-out
  • 22. Closing remarks
    • Providing actual consent is NOT trivial
    • Unclear how specific the results are for our case: trust, web-redirect, limited attributes
    • Complication (?): role of hub and SURFnet
    • Asking people about privacy behavior is tricky: risk of bias towards privacy-paranoids, behavior over longer time, social desirable
    • Timed consent: what period?
  • 23. THANK YOU
    • Acknowledgement:
    • SURFnet: Hans Zandbelt, Roland van Rijswijk, Eefje van der Harst, Remco Poortinga-van Wijnen and others
    • Novay: Ruud Janssen, Bob Hulsebosch, Dirk-Jan van Dijk and others
    More information: report: User controlled privacy voor de SURFfederatie (Dutch) report: User controlled privacy voor de SURFfederatie: een gebruikersstudie (Dutch) report: Outcome user controlled privacy pilot, to appear Dec 2010 (English) blog post: http://maarten.wegdam.name/2010/03/11/user-centric-saml/ email: [email_address]

×