View stunning SlideShares in full-screen with the new iOS app!Introducing SlideShare for AndroidExplore all your favorite topics in the SlideShare appGet the SlideShare app to Save for Later — even offline
View stunning SlideShares in full-screen with the new Android app!View stunning SlideShares in full-screen with the new iOS app!
idem identity, meaning an identity based on an arrangement; the purpose is persistent identification Idem identity Individual
ipse identity meaning the way you are identified and categorized by your self and others; the purpose is the construction of the self See summary of Future of Identity In the information Society FDIS The concept identity Ricoeur ; Beller ; Leerssen Ipse identity Individual
… and have on average hundreds of those user/name password combinations
Users are exposed to the risk of identity theft The number of US adult victims of identity fraud 8.4 million in 2007. Total one year fraud $49.3 billion in 2007 The mean fraud amount per fraud victim $5,720 in 2007.
Users don’t read privacy policies and don’t trust service providers anyway…
… and they are right… service providers change privacy policies without notification
Individuals have no idea what others think to know about them and why
It is often impossible to unsubscribe from e-newsletters
Often impossible to correct personal information in databases Kowsoleea is een Nederlandse ondernemer van Surinaamse afkomst die ten onrechte bij veel overheids- instanties te boek stond als een harddrugscrimineel . De reden hiervan was identiteitsfraude: een verslaafde aan verdovende middelen gaf zich met regelmaat voor hem uit. De overheid slaagde er niet in om de negatieve en zeer belastende registraties op naam van meneer Kowsoleea op de juiste naam, namelijk die van de echte dader te zetten .
Spam is distributed by the use of your own email address
Service providers - even with “good” reputation - track your behavior across websites by use of super cookies ...
... only to be removed by special browser add-ons like Better Privacy for Firefox
Privacy legislation is too complex and is an obstacle for business and innovation; projects with insufficient privacy are rolled back.
Most organizations are not able to protect confidential data; information breaches are daily news
April 30, 2009 State officials are notifying more than a half-million Virginians that their Social Security numbers may have been contained in a prescription drug database that was targeted by a computer hacker April 30 . The hacker gained access to the Prescription Monitoring Program computer system, which is designed to deter prescription drug abuse, and demanded a $10 million ransom . The hacker has not been identified Virginia patients warned about hacking of state drug Web site http://hamptonroads.com/2009/06/officials-hacker-may-have-stolen-social-security-numbers
“ Almost one in five businesses in the UK has unwittingly breached the Data Protection Act meaning illegal data transfer to third party” according to research of the British Standards institute
Enforcement of privacy legislation is practically impossible
By the way: Alice does trust I2C because they assure privacy PRIVACY ASSURED
I2C.com confirms to Schools4Africa: we know the stranger knocking at your door, what do you want to know about this person?
Schools4africa to i2c.com: that is great, we need only information about the profession and nationality and the right to contact Alice. Can you ask this on our behalf to Alice?
I2C.com to Alice: For getting access to Schools4Africa this site would like to know the following information: Profession = “ school director ” Nationality = “ Gambia ” and they would like also the right to contact you Alice is that ok with you? … just click OK
I2C.Com to Alice …and by the way we don’t provide any further information to schools4africa other than an unique, dedicated reference number only known to you and schools4africa an us…
Assume this number to be an unique number representing your relationship with schools4africa; by the way you don’t have to remember this number : i2c does this for you Your relation number at school4Africa.com is http://i2c.com/re6tgw787w9hdh78wggfew555hh6hhh333656
Alice thinks that’s cool fasttrack registration! I like those smart guys at Schools4Africa now already. Of course are they allowed to know my nationality and profession.
So Alice is ok with School4Africa’s requests and confirms with one-click Profession = Schoolteacher Nationality = Gambia Right to contact = yes OK Alice if you click ok, this information is sent to schools4africa.com
Schools4Africa receives just partial information and redirects Alice to the special area about school projects in Gambia
In future sessions between Schools4Africa and Alice, more information can be requested; But future personal transactions will all be logged by i2c.com
Schools4Africa does not have Alice’s email address but they have the right to contact…
… this means that schools4africa can only send messages via the identity provider: [email_address]
Alice can cancel the account at Schools4Africa and request to delete every data stored about her at Schools4Africa
It is a pity for Schools4Africa but they can easily fulfill this delete request, because every piece of data is stored under the relation number.
School4Africa can’t contact Alice anymore the relation number is canceled, but if would illegally an email, they would get caught by I2C.com and receive a warning or a fine. The message will not be forwarded to Alice.
Interoperability: User attribute verification I2C.ID GAMBIA.GOV.ID CARE.ID Schools4Africa re6tgw787 Nationality = Gambia Federated Services providers I2C.ID has requested us to confirm your nationality for an unknown service provider logged on gambia.gov.id Yes, confirm my nationality I2C can you confirm nationality of the individual with # re6tgw787…. 1 2 Gambia.Gov.id can you confirm nationality ? 3 4 5 6 Nationality = Gambia Heath4Africa f45dlnqs9 logged on Government departments
Start simple and implement incremental improvements against a roadmap
The professional voluntary network organized by Idplatform.eu can help you with the roadmap and development
An overview of inspiration, relationships and activities of the IdPlatform.eu Initiative IdPlatform.eu Developing awareness Political parties Public Governments Companies Non-Profit Funding Gouvernement Commercial Private Standards Protocols Semantics Interoperability Security Legal Obligations Enforcement Liability Portability Certification Idcommons.org (mainly focused on developments in the usa) Development Open source Usability Accessibility Project: European Digital Identity Innovation Virtual relation management Privacy enhancement e-Democracy includes activities : inspired by seeks collaboration with (?) Idealism Human digital rights organizations Knowledge Virtual communities Universities Innovation institutes Government programmes Standard organizations Commercial innovation inspired by: Knowledge management Conferences wiki.idplatform.eu Workshops DevCamps includes: Potential Identity Providers & Software vendors can support Potential Relying Service Providers invited to contribute
Goal: build an operational identity provider prototype
Preparation Aug - Oct 2009
(Roadmap, Working groups, Wiki, Con calls, Open Source Store )
Kick-off 9 – November
Delivery end of November