S1_2_3 Tom Van Den Bosh_OK to publish.pptx
•Download as PPTX, PDF•
0 likes•166 views
DFS23
Recommended
Recommended
More Related Content
Similar to S1_2_3 Tom Van Den Bosh_OK to publish.pptx
Similar to S1_2_3 Tom Van Den Bosh_OK to publish.pptx (20)
More from FinTech Belgium
More from FinTech Belgium (20)
Recently uploaded
Recently uploaded (20)
S1_2_3 Tom Van Den Bosh_OK to publish.pptx
- 1. An inclusive society needs a trusted ID The paradigm shift in data-sharing: solving the paradox for the citizen
- 2. The rise of the ‘Data Economy’ The economic activity that arises from the collection, storage, analysis, and commercialisation of data. Data = a valuable asset that can be leveraged to generate economic value.
- 3. own read participate Towards a context & consent based data exchange
- 4. 1/02/2014 Drivers license A Data without context is meaningless, data without trust is useless
- 5. 1/02/2014 Drivers license A Data without context is meaningless, data without trust is useless
- 7. But what about … eco-system dynamics & data authority? data duplication & life-cycle management? resilience?
- 8. My data My place My control A loosely linked eco-system with the citizen as data controller
- 9. The data-sharing paradox Security vs. convenience? Disclosure vs. privacy? Valid vs. invalid data? Citizen and data consumer could be overwhelmed and disconnect
- 10. We need to remove friction and build upon familiar and solid grounds
- 11. Need for a trust factor within an existing ecosystem Every citizen keeps overview and control while security is guaranteed
- 12. Getting access to your wallet(s), with
- 13. Share data from your wallet(s) with
- 14. Let’s solve the paradox for the citizen, together High level of security trust factor data attestations High user convenience use-case driven, central consent overview Respect for privacy no single party has a full profile Leverage the eco-system and existing connections
Editor's Notes
- I’ll kick off my presentation with something you already know: the birth of the internet 30 years ago created a context in which a new economy could emerge: the data economy. The data economy refers to the economic activity that arises from the collection, storage, analysis, and commercialization of data. Data was soon being referred to as the new gold, or the new oil, as it quickly became a critical raw material to drive growth and innovation. And the good news is, that data is abundant: the amount of data out there, is doubling every 2 years, and that will probably even accelerate in the future. However, we should not forget that a huge amount of all data out there, is related to our personal selves. And that the emergence of a data-economy imposes new challenges in terms of user privacy and security.
- So, we’ve seen an evolution. After a period where the internet was read-only, users fell in love with the accessibility and openness of search engines, social media websites and video channels. We trusted companies to store our information and got used to seamless online experiences. We shared and connected, without any reserve. But after a while, we started to understand how this also made us vulnerable. We’ve encountered election interference, data breaches, identity theft, and so much more. We have come to realize that our privacy is at risk. The era of sharing and connecting without thinking about the implications, is over. In a digital economy, we should of course be able to exchange those data in an easy and secure way. But citizens want to regain control, over which data are shared, and with whom. We will evolve to a world in which citizens will provide explicit consent to share specific data in a specific context. But how can we make that possible? How do we make sure citizens get visibility on their data, regain control over the exchanges and trust the eco-system? Well, this is where digital wallets come in – apps or tools that enable you to manage, store and exchange your data.
- For data being exchange to have value two key concepts are critical: context. + trust Let me illustrate both principles with a couple of concrete examples: 1/02/2014 – presented like this is a random date, maybe a date that for some of you has a special meaning. For me it was a very important milestone in my professional career, my first day at itsme. Though without this context it could lead to very different interpretations or even by completely meaningsless (Janet Yellen becomes Chair of the US Federal Reserve, succeeding Ben Bernanke) Drivers licences > validity is key Blood type > of which person
- For data being exchange to have value two key concepts are critical: context. + trust Let me illustrate both principles with a couple of concrete examples: 1/02/2014 – presented like this is a random date, maybe a date that for some of you has a special meaning. For me it was a very important milestone in my professional career, my first day at itsme. Though without this context it could lead to very different interpretations or even by completely meaningsless (Janet Yellen becomes Chair of the US Federal Reserve, succeeding Ben Bernanke) Drivers licences > validity is key Blood type > of which person
- But before diving into the details of that, let me first ask you a question: the amount of data that is available for each of us, is vast. You have a driver’s license, medical records, bank information, work attestations, … So who in this room thinks that, for you to regain control, gathering all your data in one place is the right solution? Reaction A: I see that many people don’t think that having one place to store all data is the right solution, and they are absolutely right. Reaction B: I see that many people think that having one place to store all data is the right solution. Let me prove you that that is probably not the right path to take. Over the past 3 years, many people have asked us: why don’t you transform itsme into some sort of ‘superwallet’? The app is already installed on nearly 7 million devices, you have a strong reputation on security and privacy, and as a user, I fully control what I share. So it would be helpful if I would have all my data there, not just my identity, wouldn’t it?
- Well, I will have to disappoint you. You probably did not expect to hear this, but at itsme, we will not enable you to store other data than your identity data. We have debated long about this, and we decided not to take that route, for a couple of reasons: Eco-system dynamics & data authority: many actors in the field have ‘authoritative power’ on specific data sets. Banking players are best placed to confirm your bank account number, the notary federation has launched its ‘Izimi’ vault to provide access to notary deeds, your covid safe app was a wallet ‘avant la lettre’ for your covid attestation, and the government will launch a wallet containing all egov data. The concept of a data wallet is not new. Whether we like it or not, there are many wallets out there already that act as legitimate and authoritative data source. Adding another wallet to that eco-system would not make sense – we rather prefer to collaborate with the existing authoritative wallets and data sources (that form the origin of the data) than to provide a wallet ourselves. (By the way, it’s an illusion that citizens will dedicate time to aggregating all their data in one single wallet). Data duplication & lifecycle mgmt.: if you start duplicating data across multiple wallets, you do not only increase the environmental burden in terms of data storage – you also make abstraction of the lifecycle management issue. Data have a specific lifecycle. A driver’s license can be valid today but can be revoked tomorrow. Duplicating these data across wallets will, if they are not permanently connected, result in a nightmare. In an ideal world, all data are stored only once, in their original, authoritative source, and are ‘consultable’ when needed. Resilience: let’s look at two extremes here. if you keep all data in one central application or wallet infrastructure, it will significantly reduce the resilience of the eco-system. An availability issue would immediately affect the entire data sharing eco-system. Alternatively, a fully decentralized system with all personal data stored on the phone of each individual user or on the blockchain is not ideal either. If the citizen would lose his phone, he would lose everything, and no single party would be able to help him out. We’ve all seen examples of crypto investors losing the keys to their wallet, not being able to recover their investments.
- Therefore, the ideal (and the only feasible) data-sharing system is a loosely coupled and flexible network of data sources and data wallets where I, as a citizen, keep control over where my data are stored and with whom it is exchanged. Let’s now look at a concrete example: suppose I have my government wallet containing all government-related data, my notary wallet for my notary deeds, and the platform of my HR provider for my work attestations. In this way, we would adhere to all principles laid out before: every legitimate data source would provide me access to my data, these data would not be duplicated, and I would be able to control what I want to exchange and with whom.
- This sounds great, but this raises a new set of questions. If a citizen has multiple wallets and data sources, how can we make sure this remains manageable? How can we guarantee a secure data exchange without compromising on user friendliness? How can we facilitate data exchanges without disclosing too much information? And as a receiver of the data, how can I be sure that the data is valid? Important – emphasize on both citizen and partner (technical complexity)
- Well, to solve that paradox for the citizen, we need to remove friction and build upon familiar and solid grounds.
- In other words, we need a trust factor to connect the dots. And this is exactly where digital identities, such as itsme, come in. In the future, we will focus on what we’re good at: connecting the eco-system. More specifically, we will take up two roles in the emerging data-sharing eco-system:
- First of all, we will make sure citizens can get a view on their data, by acting as an authentication mechanism to the different data sources and wallets. In other words, if I log in to my Izimi vault, I want to see my notary deeds, and not the deeds of someone else. That authentication role is a role we already fulfill today.
- Secondly, we will make sure citizens can share data from their wallets with itsme. (Example driving license).