2. Emergence of identity and claim platforms Emergence of identity and claim platforms  Minimal disclosure claims vs identity citizen-centric eIdentity in their relations to administration  Already some interesting applications and trials in pipeline (STORK, Austria, …)  other forms of identity/claim provisioning by and for other id providers  Enrich and enhance secure protocols  coexistence of the platforms and how to reconcile? Concept of "object-oriented" identity Concept of "object-oriented" identity  Context-dependent accountability (e.g. to get redress) Governance Governance  Who/what is in control?

3. Rich mechanisms increasing trustworthiness start to be available Rich mechanisms increasing trustworthiness start to be available  dynamic service security based on rich context information  usage control (client-side & server-side models)  self-cleaning ID management  trust indicators: metrics and measurements!  Interoperability! User empowerment is essential User empowerment is essential  need for usable abstractions in order to manage complexity of policies  balancing protection of roles: service consumers vs. service providers (taking into account the “prosumer” role)  the user does not see all processes running in the back (SoS)

4. Regulatory aspects Regulatory aspects  need for accountability across national borders  provision of evidence : user to prove a wrong vs service provisioning to prove a right Economic aspects Economic aspects  where would the compensation for trusted / trust infrastructures come from?

5. Analyse and Measure Analyse and Measure  understand how trustworthy future internet is. Build and Experiment Build and Experiment  provide trust/identity services as enablers in domains of interest Trial and Pilot Trial and Pilot  Engage lead users (citizens, business) services in application areas of real significance

6. Analyse and Measure Analyse and Measure  How to use the real internet as our testbed?  Do real users behave as we expect? Build and Experiment Build and Experiment  What enabling capabilities and tools need to be provisioned on which others can build? Trial and Pilot Trial and Pilot  How to engage real users in pilots?  Which areas to focus?

7. Special Thanks to keynote speakers & panelists Session 1. ID Provisioning in service platforms in FI Session 1. ID Provisioning in service platforms in FI  Service perspective on FI trust and identity issues, Jose Maria Cavanillas, Atos Origin, SPAIN  Sustaining Identity and Governance, Reinhard Posch, Federal Chancellery AUSTRIA  Validation methodologies, Luca Vigano, University of Verona, ITALY  Federated Identities, Amardeo Sarma, NEC Labs Europe, GERMANY Session 2. Trust Platforms Session 2. Trust Platforms  Dynamic (stateful) service security, Mike Surridge, IT Innovation, University of Southampton, UK  Responsibility, accountability and legal aspects, Hermann de Meer, Universitaet Passau, GERMANY  Usage control: From distributed systems and information to Clouds, Fabio Martinelli, CNR Pisa, ITALY Session 3. Experimental and Empirical Approaches Session 3. Experimental and Empirical Approaches  Perspective from PICOS, Pedro Soria-Rodriguez, ATOS Origin, SPAIN  Perspective from Wombat, Corrado Leita, Symantec, FRANCE  Experimental and empirical approaches, Bernhard Plattner, ETH Zürich, SWITZERLAND  Experimental and empirical approaches, Heikki Huomo, Center of Internet Excellence, FINLAND  Perspective from FIREWORKS, Susanna Avéssta, BELGIUM

8. Workshop late summer to focus on the areas highlighted for future work Stay tuned on http://security.future-internet.eu