Presentation held by Debora Comparin, Chair of the OSIA workgroup Secure Identity Alliance at TRUSTECH at on 27 November 2019 as part of the track: "How African governments are facing Identity needs and challenges".
4. IDEMIA RESTRICTED
a Secure Identity Alliance initiative
4
Level playing field competition
Spur innovation
Open market to SMEs and local players
Integrator/ Vendor / Technology lock-in free
Sovereignty of choice and control/ownership of solution
Open flow of data and services
Favour ROI of identity systems
Enable identity as a service
Interoperability
1
2
3
The needs
5. IDEMIA RESTRICTED
a Secure Identity Alliance initiative
5
Interoperability is a characteristic of a product or system, whose interfaces are completely understood, to work
with other products or systems, present or future, in either implementation or access, without any restrictions.
De facto standard
A
DC
B
Compatibility
GDT Interop, John McCreesh, Ed Daniel
Level of Operability
A
DC
B
One-on-one agreement Imposed by a dominant player
Interoperability
Consensus-driven and universal Open Standard
A
DC
B
Open Standard
Interoperability as consensus-based open standard
6. IDEMIA RESTRICTED
a Secure Identity Alliance initiative
6
A universal interoperability framework
as a set of open standards interfaces (APIs)
It’s happening today
developed by the identity industry
in partnership with governments
Our solution
10. IDEMIA RESTRICTED
a Secure Identity Alliance initiative
10
GUIDELINES
API
List of services
Service 1
Service 2
Service 3
…
Service N
Select and deploy
A
DC
B
INPUT/OUTPUT
DATA DICTIONARY
DATA FORMAT
PROTOCOL
Driven by use cases of Civil Identity Systems
OSIA universal interoperability framework
as set of open standards interfaces (APIs)
11. a Secure Identity Alliance initiative
11
GUIDELINES
API: Biometrics
List of services
Verify (1:1)
Identify (1:N)
Create
Read
…
Select and deploy
DC
B
INPUT/OUTPUT
DATA DICTIONARY
DATA FORMAT
PROTOCOL
ABIS
OSIA universal interoperability framework
as set of open standards interfaces (APIs)
12. a Secure Identity Alliance initiative
List of services
12
List of APIs
Complete list of services
Enrollment Services
UIN Management
Data Access
Population Registry Services
Biometrics
Notification
Credential Services
ID Usage
SERVICES Enroll Client Enroll Server PR UIN gen. ABIS CR DMS 3rd Party serv.
Subscribe U U U U
Unsubscribe U U U U
Confirm
Publish I I I I
Read Person Attributes U IU U IU U
Match Person Attributes U IU IU U
Verify Person Attributes U IU IU U
Query Person UIN U IU IU
Query Person List
Read document U IU IU
Generate UIN U I U
Create Person U I
Read Person U I
Update Person U I
Delete Person U I
Find People U I
Create Person
Read Person
Update Person
Delete Person
Create Identity
Read Identity
Update Identity
Partial Update Identity
Delete Identity
Set Identity Status
Define Reference
Read Reference
Read Galleries
Read Gallery Content
Create U U I
Read U U I U
Update U U I
Delete U U I
Read Template U U I
Read Galleries
Read Gallery content U U I
Identify U I U
Verify U I U
Create Credential
Read Credential Issuance
Update Credential
Delete Credential
Read Credential
Suspend Credential
Unsuspend Credential
Cancel Credential
Verify ID I
Identify I
Read Attributes I
Read Attributes set I
ID Usage
Population Registry Services
Enrollment Services
Credential Services
Notification
UIN Management
Data Access
Biometrics
ID ECOSYSTEM COMPONENTS
13. IDEMIA RESTRICTED
a Secure Identity Alliance initiative
OSIA Open Standards interfaces matched with
high-level modules of the identity ecosystem
13
PRIVATE SECTOR
(ex. banks, telcos)
GOVERNMENT
(ex. social security,
tax agency)
ENROLLMENT THIRD PARTY
SERVICES
(ex. data access,
authentication)
Civil
Registry
Population
Registry
UIN
Generator
Biometric
System
Enr.
Client
Enr.
Server
Document
Management
System
ID PROVIDER(s)
14. IDEMIA RESTRICTED
a Secure Identity Alliance initiative
OSIA in a nutshell
14
Choose your components from the market1
Easily connect them to build your solution2
15. IDEMIA RESTRICTED
a Secure Identity Alliance initiative
OSIA Guiding Principles
15
Sovereignty
Technology
Neutrality
Privacy by
Design
16. IDEMIA RESTRICTED
a Secure Identity Alliance initiative
What we have achieved
16
List of APIs
Complete list of services
Enrollment Services
UIN Management
Data Access
Population Registry Services
Biometrics
Notification
Credential Services
ID Usage
SERVICES Enroll Client Enroll Server PR UIN gen. ABIS CR DMS 3rd Party serv.
Subscribe U U U U
Unsubscribe U U U U
Confirm
Publish I I I I
Read Person Attributes U IU U IU U
Match Person Attributes U IU IU U
Verify Person Attributes U IU IU U
Query Person UIN U IU IU
Query Person List
Read document U IU IU
Generate UIN U I U
Create Person U I
Read Person U I
Update Person U I
Delete Person U I
Find People U I
Create Person
Read Person
Update Person
Delete Person
Create Identity
Read Identity
Update Identity
Partial Update Identity
Delete Identity
Set Identity Status
Define Reference
Read Reference
Read Galleries
Read Gallery Content
Create U U I
Read U U I U
Update U U I
Delete U U I
Read Template U U I
Read Galleries
Read Gallery content U U I
Identify U I U
Verify U I U
Create Credential
Read Credential Issuance
Update Credential
Delete Credential
Read Credential
Suspend Credential
Unsuspend Credential
Cancel Credential
Verify ID I
Identify I
Read Attributes I
Read Attributes set I
ID Usage
Population Registry Services
Enrollment Services
Credential Services
Notification
UIN Management
Data Access
Biometrics
ID ECOSYSTEM COMPONENTS
Nov 2019
Nov 2019
Dec 2019
17. IDEMIA RESTRICTED
OSIA Project Plan
17
June ‘18 Sept ‘18 Dec ‘18 Mar ‘19 June ‘19 Sept ‘19 Dec ‘19 Mar ‘20 June ‘20 Sept ‘20 Dec ‘20
Initiative pres @ SIA Board
Positioning/content
OSIA Branding
Marketing material
APIs dev: functional
APIs dev: technical
OSIA public launch @ ID4A
Certification scheme design
Certification public launch @ ID4A
PR/comm
Year I Year II
18. IDEMIA RESTRICTED
a Secure Identity Alliance initiative
Where to find OSIA specs?
18
OSIA GITHUB PAGE
https://github.com/SecureIdentityAlliance/osia
www.OSIA.io
19. IDEMIA RESTRICTED
a Secure Identity Alliance initiative
How to reference OSIA in tenders?
19
OSIA - [API name] v. [version number]
Ex.
OSIA - Notifications - v. 1.0.0
OSIA - UIN Management - v. 1.0.0
OSIA - Data Access - v. 1.0.0
OSIA - Biometrics - v. 1.0.0
20. IDEMIA RESTRICTED
a Secure Identity Alliance initiative
OSIA implementation
Democratic Republic of Congo - Kinshasa