Presentation is loading. Please wait.

Presentation is loading. Please wait.

Building Trusted Transactions Identity Authentication & Attribute Exchange In Public and Private Federations OASIS Conference September 2010 Joni Brennan,

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Building Trusted Transactions Identity Authentication & Attribute Exchange In Public and Private Federations OASIS Conference September 2010 Joni Brennan,"— Presentation transcript:

1 Building Trusted Transactions Identity Authentication & Attribute Exchange In Public and Private Federations OASIS Conference September 2010 Joni Brennan, Kantara Initiative Don Thibeau, OpenID Foundation Open Identity Exchange

2 Overview What’s all this fuss about Trust Frameworks?

3

4 The Trust Community Four main roles involved in making online exchanges trustworthy: 1. End-Entities who are the subjects of identity credentials 2. Credential Service Providers (CSPs) 3. Auditors 4. Entities that rely upon the credentials issued by CSPs, referred to as “relying parties.” Our Identity Assurance Framework is targeted to address each of these community roles…

5

6

7 Kantara Initiative approach to Federated Identity Identity Assurance Framework – one stop policy shop…

8 Identity Assurance Framework Components

9

10

11 Kantara Initiative Accreditation and Certification Who should apply and how? Assessors / Auditors Credential Service Providers, Identity Providers For More Information Visit our Assurance Certification Center: http://bit.ly/assurance_certification http://bit.ly/assurance_certification Connect with me: joni@ieee-isto.orgjoni@ieee-isto.org

12 What’s Next? Profiles, profiles and more profiles Jurisdictional (governments), HealthCare, Financial, Telecommunications, etc Federation Interoperability Work Group (FIWG) With input from international stakeholders FIWG developing tools for Federations to use for Interoperation. Enabling communication of Meta-Data between Federations Open for adoption by communities world-wide via Creative Commons IPR

13 Benefits of Adoption US Government ICAM Adopted Level 1, 2, 3 non-crypto Identity Assurance Framework (IAF) is technology Agnostic Can be adopted as organizational policy framework regardless of the technology protocol in place. Lowers cost to jurisdictions and entities enabling eased transition in to Trust Framework Model Has Kantara Initiative international community input Austria, Canada, Denmark, France, Japan, New Zealand, Sweden, United Kingdom, United States – the list keeps growing Enables Inter-federation through trusted and certified credentials Could be applied across jurisdictional federations like the European Union. Enables Government entities to leverage private-sector activities

14 Working Together Building Trust…

15 Collaboration

16 Kantara Initiative Work Groups Kantara Initiative – Identity Assurance (IAWG) http://kantarainitiative.org/confluence/display/idassurance/ eGovernment (eGovWG) http://kantarainitiative.org/confluence/display/eGov/ Federation Interoperability http://kantarainitiative.org/confluence/display/fiwg/ Privacy and Public Policy (P3WG) http://kantarainitiative.org/confluence/display/p3wg/

17 Open Identity Exchange (OIX) Work Groups Telco Data Work Group Verizon, AT&T, TNS, Pacific East, etc. Public Media National Public Radio, Public Broadcasting Service, etc. Librarians, Authors, Publishers National Institute of Health, National Library of Medicine, ORCID, APA, etc Identity Attributes Trust Framework Google, Yahoo!, AOL, Hot Mail, etc.

18 OIX/Kantara Collaborative Work Groups US ICAM Higher Levels of Assurance OIX, KI, US GSA, US NIH, etc. A public private partnership to define new technical /policy profiles for higher levels of assurance (NIST LoA 2 and 3) A forum and forcing function to map policy and legal issues to government and citizen interaction over the web A collaboration among leading industry organizations to break new ground in trust framework development

19 Introduction to OIX A Market Solution to Online Identity Trust…

20 A Matter of Trust Relying Parties must be able to trust that the Identity Provider is providing accurate customer data Identity Providers must be able to trust that the Relying Party is legitimate (i.e., not a hacker, phisher, etc) Direct RP-to-IDP trust agreements are a common solution, but are impossible to manage at Internet scale

21 OIX Trust Framework Trust Community The Trust Framework Solution Identity Service Provider Relying Party user

22 Credit Card Trust Framework Trust Community Proven Trust Frameworks Exist!

23 The OIX Identity Trust Framework Model Open Identity Exchange Trust framework agreements Identity Service Provider Relying Party user

24 What OIX Provides Referee Neutral, technology agnostic provider of trust frameworks Certification Listing Service Machine-readable information about trust framework participants and certifications

25 OIX Drives Adoption By improving market efficiency By providing openness and transparency By ensuring credibility and accountability in the system By enabling improved user experience

26 Real World Examples OIX U.S. ICAM (Identity, Credential, and Access Management) Trust framework For U.S. federal government agencies OIX Telecom Data Trust Framework For Telco Data Services providers For Data Aggregators

27 Summary OIX and KI work together to provide an Internet-scale solution to enable trusted online digital identities

28 Thank You! Get in touch with us… Joni@kantarainitiative.org Don@openidentityexchange.org

Download ppt "Building Trusted Transactions Identity Authentication & Attribute Exchange In Public and Private Federations OASIS Conference September 2010 Joni Brennan,"

Similar presentations

ITU Regional Seminar on E-commerce Bucharest, Romania 14-17 May 2002 National E-commerce Strategies for Development Dr. Susanne Teltscher United Nations.

ITU Regional Seminar on E-commerce Bucharest, Romania May 2002 National E-commerce Strategies for Development Dr. Susanne Teltscher United Nations.
Single Sign-On and Federated Authentication at NIH and Beyond

Single Sign-On and Federated Authentication at NIH and Beyond
Overview of US Federal Identity Management Initiatives Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority and Asst. CIO E-Authentication, NIH.

Overview of US Federal Identity Management Initiatives Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority and Asst. CIO E-Authentication, NIH.
Near East Plant Protection Network for Regional Cooperation & Knowledge Sharing Food and Agriculture Organization of the United Nations An Overview on.

Near East Plant Protection Network for Regional Cooperation & Knowledge Sharing Food and Agriculture Organization of the United Nations An Overview on.
Electronic commerce EDI (8 decade) – base of EC. 1994 – “Netscape” – propose SSL (Secure Sockets Layer) 1995 – “Amazon.com” “eBay.com” 1998 – DSL (Digital.

Electronic commerce EDI (8 decade) – base of EC – “Netscape” – propose SSL (Secure Sockets Layer) 1995 – “Amazon.com” “eBay.com” 1998 – DSL (Digital.
Digital Identity Group May 2012. GIXEL  GIXEL is the professional association of electronic component and system industries in France. It brings together.

Digital Identity Group May GIXEL  GIXEL is the professional association of electronic component and system industries in France. It brings together.
The Internet2 NET+ Services Program Jerry Grochow Interim Vice President CSG January, 2012.

The Internet2 NET+ Services Program Jerry Grochow Interim Vice President CSG January, 2012.
TFTM 01-06 Interim Trust Mark/Listing Approach Paper Discussion Deck TFTM Committee IDESG Plenary Meeting January 14, 2014 1-14-2014IDESG TFTM Committee1.

TFTM Interim Trust Mark/Listing Approach Paper Discussion Deck TFTM Committee IDESG Plenary Meeting January 14, IDESG TFTM Committee1.
Open Identity for Open Government and the Open Identity Exchange (OIX): A Market Solution to Online Trust June 2010.

Open Identity for Open Government and the Open Identity Exchange (OIX): A Market Solution to Online Trust June 2010.
Kantara Initiative Identity Assurance Framework Overview and Value Proposition March 8, 2011.

Kantara Initiative Identity Assurance Framework Overview and Value Proposition March 8, 2011.
IDESG Goals & Work-plans for 2013 and beyond Brett McDowell IDESG Management Council Chair

IDESG Goals & Work-plans for 2013 and beyond Brett McDowell IDESG Management Council Chair
Helena Sims NACHA – The Electronic Payments Association Overview of The Electronic Authentication Partnership Tenth Federal & Higher Education PKI Coordination.

Helena Sims NACHA – The Electronic Payments Association Overview of The Electronic Authentication Partnership Tenth Federal & Higher Education PKI Coordination.
1. Guiding Principles 3. Critical Success Factors 2. Delivery Processes 4. Benefits Realisation Strategy Business Management Technology Management Roadmap.

1. Guiding Principles 3. Critical Success Factors 2. Delivery Processes 4. Benefits Realisation Strategy Business Management Technology Management Roadmap.
1 Enabling Open Government Using the OIDF/ICF Open Trust Framework OASIS Identity Management 2009 September 29, 2009 Don Thibeau, ED, OpenID Foundation.

1 Enabling Open Government Using the OIDF/ICF Open Trust Framework OASIS Identity Management 2009 September 29, 2009 Don Thibeau, ED, OpenID Foundation.
1 Trust Framework Portable Identity Schemes Trust Framework Portable Identity Schemes NIH iTrust Forum December 10, 2009 Chris Louden.

1 Trust Framework Portable Identity Schemes Trust Framework Portable Identity Schemes NIH iTrust Forum December 10, 2009 Chris Louden.
Copyright 2008, Near-Time, Inc. All other trademarks are property of their respective owners 1 Enabling the Interactive Enterprise.

Copyright 2008, Near-Time, Inc. All other trademarks are property of their respective owners 1 Enabling the Interactive Enterprise.
The 4BF The Four Bridges Forum Higher Education Bridge Certificate Authority.

The 4BF The Four Bridges Forum Higher Education Bridge Certificate Authority.
1 eAuthentication in Higher Education Tim Bornholtz Session #47.

1 eAuthentication in Higher Education Tim Bornholtz Session #47.
NIH iTrust Peter Alterman/Debbie Bucci National Institutes of Health October 2010.

NIH iTrust Peter Alterman/Debbie Bucci National Institutes of Health October 2010.
Single Sign-On, Federated Authentication and Beyond at NIH Dr. Peter Alterman National Institutes of Health.

Single Sign-On, Federated Authentication and Beyond at NIH Dr. Peter Alterman National Institutes of Health.

Similar presentations

Ads by Google