Presentation is loading. Please wait.

Presentation is loading. Please wait.

The Open Identity Framework Don Thibeau, Executive Director, OpenID Foundation (OIDF) Drummond Reed, Executive Director, Information Card Foundation (ICF)

Published byShon Barker Modified over 9 years ago

Similar presentations

Presentation on theme: "The Open Identity Framework Don Thibeau, Executive Director, OpenID Foundation (OIDF) Drummond Reed, Executive Director, Information Card Foundation (ICF)"— Presentation transcript:

1 The Open Identity Framework Don Thibeau, Executive Director, OpenID Foundation (OIDF) Drummond Reed, Executive Director, Information Card Foundation (ICF) V2 2009-12-06

2 2 OverviewOverview This presentation introduces the Open Identity Framework, a new open source model for trust frameworks created by the OIDF & ICF It covers: –Why such a model is needed –What principles underlie its design –How the model works –How it will drive adoption of open identity –What next steps the foundations are taking

3 Third-party identity management Both OpenID and Information Cards address the need for Internet-scale digital identity management Both solve the problem using a third party to assist end- users in identity transactions –Called an “identity service provider” (also “identity provider”, “IdP”, “IP”, “OP”) This sets up the following “trust triangle” for Internet identity transactions 3

4 4 identity service provider relying party user Terms of Service (TOS) agreement Optional direct trust agreement The “trust triangle”

5 5 The trust problem The user has a direct trust relationship with both the identity service provider and the relying party The problem is: how can the identity service provider and relying party trust each other? This problem is especially acute: –At Internet scale, where identity service providers and relying parties may not have any pre-existing relationship –With high-value data –With high-assurance transactions

6 Direct trust agreements do not scale Direct trust agreements are common when an identity service provider and a relying party are close business partners –Airlines and rental car companies They do not scale to large networks, e.g., credit card networks, ATM networks –Requires n 2 trust agreements The solution is often a trust framework –A shared set of policies and agreements 6

7 7 A trust framework “umbrella” Trust Framework Trust Community identity service provider relying party user

8 8 Trust framework providers Other industries (credit cards, ATMs) have created global trust frameworks They each use a shared trust framework provider –Visa, Mastercard, AMEX –Cirrus, PLUS The same model can be used for identity

9 A trust framework for identity 9 Trust framework agreements TOS agreements Trust Framework Provider (TFP) Trust Community (source of a trust framework) assessors & auditors dispute resolvers identity service provider relying party user

10 Example #1: the US ICAM trust framework 10 Trust Framework Provider US GSA Private-sector identity providers US government websites assessors & auditors dispute resolvers user

11 US GSA Example #2: the OpenID Society trust framework 11 Trust Framework Provider ? ? user Professional associations Academic publishers assessors & auditors dispute resolvers

12 12 Websites for PBS shows Example #3: the PBS trust framework Trust Framework Provider US GSA user PBS affiliate stations assessors & auditors dispute resolvers

13 13 The Open Identity Framework This model is an Internet-scale, open source trust framework model for identity It is a meta-framework where each trust community can specify the requirements of their own trust framework This approach leverages market forces to: –Drive adoption –Drive convergence of specifications for LOA –Introduce specifications for LOP (Levels of Protection) –Engage market pricing for services from assessors, auditors, and dispute resolution service providers

14 The Open Identity Framework Model 14 Trust framework agreements TOS agreements OIF Trust Framework Provider Identity service providers relying parties Trust Community 3 3 2 2 assessors & auditors 4 4 dispute resolvers 5 5 Trust Community user 1 1 1 1 1 1

15 15 Range of OIF certification options Self- certification Third-party certification Policy matching  Technical interoperability 

16 OIF technical interoperability 16 Third-party certification Self-certification identity service providers Technical Certification Listings OIF Trust Framework Provider trust communities relying parties assessors & auditors Technical Interop Requirements

17 OIF policy matching 17 identity service providers Technical Certification Listings OIF Trust Framework Provider Policy Certification Listings relying parties assessors & auditors trust communities Policy Matching Requirements Third-party certification Self-certification

18 18 Why will the OIF drive adoption? 1.Efficiency 2.Openness/Transparency 3.Credibility/Accountability 4.Improved user experience

19 19 Efficiency The OIF makes it easy for anyone of any size to ensure technical interop or policy matching with their choice of profiles Eliminates the n-squared problem of multi-lateral interop or trust agreements Grows the market for everyone –The “network effect for trust”

20 20 Openness/Transparency Properly implemented, the OIF provides an open, transparent process for trusted identity transactions –Both within and between trust communities Helps protect participants from collusion or anti-trust concerns Anticipates cross-border data protection issues

21 21 Credibility/Accountability Each participant (trust community, identity service provider, relying party, assessor, auditor, dispute resolver) reinforces the credibility of the entire ecosystem Mutual accountability of all participants Enhanced by government participation –Governments serve as the initial “trust anchors”

22 22 User experience improvements Increased interoperability of Internet identity across websites More consistent ceremony leads to lower login or transaction abandonment at relying parties Consistent trust mark raises user confidence

23 Thank you We look forward to working with you –don@oidf.orgdon@oidf.org –director@informationcard.netdirector@informationcard.net 23

Download ppt "The Open Identity Framework Don Thibeau, Executive Director, OpenID Foundation (OIDF) Drummond Reed, Executive Director, Information Card Foundation (ICF)"

Similar presentations

Copyright © 2005 – Clickshare Service Corp. All rights reserved. Payment Aggregation & Affinity Management Clickshare for the Media Industry For more information.

Copyright © 2005 – Clickshare Service Corp. All rights reserved. Payment Aggregation & Affinity Management Clickshare for the Media Industry For more information.
ITU Regional Seminar on E-commerce Bucharest, Romania 14-17 May 2002 National E-commerce Strategies for Development Dr. Susanne Teltscher United Nations.

ITU Regional Seminar on E-commerce Bucharest, Romania May 2002 National E-commerce Strategies for Development Dr. Susanne Teltscher United Nations.
Yukiko Ko yko@transunion.com Binding Corporate Rules – Global Implications Conference on Cross Border Data Flows and Privacy October 16, 2007.

Yukiko Ko Binding Corporate Rules – Global Implications Conference on Cross Border Data Flows and Privacy October 16, 2007.
Digital Identity Group May 2012. GIXEL  GIXEL is the professional association of electronic component and system industries in France. It brings together.

Digital Identity Group May GIXEL  GIXEL is the professional association of electronic component and system industries in France. It brings together.
The Internet2 NET+ Services Program Jerry Grochow Interim Vice President CSG January, 2012.

The Internet2 NET+ Services Program Jerry Grochow Interim Vice President CSG January, 2012.
The GSMA July 2014 Restricted - Confidential Information

The GSMA July 2014 Restricted - Confidential Information
This work was performed under the following financial assistance award 70NANB13H189 from the U.S. Department of Commerce, National Institute of Standards.

This work was performed under the following financial assistance award 70NANB13H189 from the U.S. Department of Commerce, National Institute of Standards.
Your Technology Is Connected. Are You? Your technology doesn’t exist in a vacuum. Welcome to the networked and interconnected technology ecosystem where.

Your Technology Is Connected. Are You? Your technology doesn’t exist in a vacuum. Welcome to the networked and interconnected technology ecosystem where.
Open Identity for Open Government and the Open Identity Exchange (OIX): A Market Solution to Online Trust June 2010.

Open Identity for Open Government and the Open Identity Exchange (OIX): A Market Solution to Online Trust June 2010.
Kantara Initiative Identity Assurance Framework Overview and Value Proposition March 8, 2011.

Kantara Initiative Identity Assurance Framework Overview and Value Proposition March 8, 2011.
IDESG Goals & Work-plans for 2013 and beyond Brett McDowell IDESG Management Council Chair

IDESG Goals & Work-plans for 2013 and beyond Brett McDowell IDESG Management Council Chair
OpenStand and Collaborative Communities For innovation, solutions and market growth Kantara Initiative 3 June 2014 Summit Karen McCabe Senior Director,

OpenStand and Collaborative Communities For innovation, solutions and market growth Kantara Initiative 3 June 2014 Summit Karen McCabe Senior Director,
Strategy 2022: A Holistic View Tony Hayes International President ISACA 2013-2014 © 2012, ISACA. All rights reserved.

Strategy 2022: A Holistic View Tony Hayes International President ISACA © 2012, ISACA. All rights reserved.
1 Enabling Open Government Using the OIDF/ICF Open Trust Framework OASIS Identity Management 2009 September 29, 2009 Don Thibeau, ED, OpenID Foundation.

1 Enabling Open Government Using the OIDF/ICF Open Trust Framework OASIS Identity Management 2009 September 29, 2009 Don Thibeau, ED, OpenID Foundation.
2008/04/01The Digital Media in Italia (dmin.it) proposal 1 The creation of a competitive and innovative environment for digital content in Europe A proposal.

2008/04/01The Digital Media in Italia (dmin.it) proposal 1 The creation of a competitive and innovative environment for digital content in Europe A proposal.
1 Trust Framework Portable Identity Schemes Trust Framework Portable Identity Schemes NIH iTrust Forum December 10, 2009 Chris Louden.

1 Trust Framework Portable Identity Schemes Trust Framework Portable Identity Schemes NIH iTrust Forum December 10, 2009 Chris Louden.
Handle with care : Digital marketing and online behavioural advertising Global guidance to help improve consumer trust in practice, techniques and messages.

Handle with care : Digital marketing and online behavioural advertising Global guidance to help improve consumer trust in practice, techniques and messages.
Building Trusted Transactions Identity Authentication & Attribute Exchange In Public and Private Federations OASIS Conference September 2010 Joni Brennan,

Building Trusted Transactions Identity Authentication & Attribute Exchange In Public and Private Federations OASIS Conference September 2010 Joni Brennan,
What SMS means for an Operator’s relationship with the CAA

What SMS means for an Operator’s relationship with the CAA
Competency Models Impact on Talent Management

Competency Models Impact on Talent Management

Similar presentations

Ads by Google