Más contenido relacionado La actualidad más candente (10) Similar a THE CHALLENGES OF THIRD-PARTY IDENTITY CREDENTIALS & WHY A TRUSTED IDENTITY REGISTRY IS NEEDED (20) THE CHALLENGES OF THIRD-PARTY IDENTITY CREDENTIALS & WHY A TRUSTED IDENTITY REGISTRY IS NEEDED2. © by Open Identity Exchange, 2014
A Registry for Online Trust
Four Problems Plague
Trusted Transactions …
… “Four Horsemen of the Identity Apocalypse”
3. … “Four Horsemen of the Identity Apocalypse”
© by Open Identity Exchange, 2014
A Registry for Online Trust
• Governance systems that are transparent in the service of trusted
transactions in the “zero-trust” internet ecosystem
• Liability is the legal enforcement and assignment of the duties of
all actors in an identity system for the protection of all stakeholders
• Certification options that are responsive to the speed, scale and
dynamism of the internet
• Adoption of a community of interest’s business, legal and technical
interoperability requirements
4. © by Open Identity Exchange, 2014
A Registry for Online Trust
5. Markets grow when there is trust between stakeholders,
making transactions reliable and repeatable
7. How do we leverage trusted identity systems?
13. © by Open Identity Exchange, 2014
A Registry for Online Trust
There is no registry for trusted
identity systems.
14. © by Open Identity Exchange, 2014
A Registry for Online Trust
is building
15. © by Open Identity Exchange, 2014
A Registry for Online Trust
Registries build trust
16. © by Open Identity Exchange, 2014
A Registry for Online Trust
enable interoperability
17. © by Open Identity Exchange, 2014
A Registry for Online Trust
increase the volume and velocity of trusted transactions
18. © by Open Identity Exchange, 2014
A Registry for Online Trust
And accelerate market growth
19. © by Open Identity Exchange, 2014
A Registry for Online Trust
How does it work?
20. © by Open Identity Exchange, 2014
A Registry for Online Trust
21. Google, Microsoft, Ping Identity and salesforce to be the
first to self-certify to the OpenID Connect standard and to
be registered at the OIXnet pilot
© by Open Identity Exchange, 2014
A Registry for Online Trust
OIXnet Pilot
Symantec providing a secure, trusted, scalable platform
for conformance testing, self-certification and
registration.
OIX announces the pilot of the OIXnet registry and the
the first self-certifications of OpenID Connect.
22. Registration
Approval Package YES
© by Open Identity Exchange, 2014
A Registry for Online Trust
Pilot Registration Flow
Registration
Requirements FAQ
&
Terms of Service
Approve
?
Registration
Denial
NO
23. Information Needed “To Be Trusted”
COI’s are solely responsible for business, legal and technical
requirements
Information Needed “To Be Registered”
OIX is solely responsible for business, legal and technical requirements
GOVERNANCE
LAYER
ACCESS
LAYER
Manual/Automated Discovery
Pilot Phase: Listing Service -- Future: Automated Discovery
24. © by Open Identity Exchange, 2014
A Registry for Online Trust
Building OIXnet
Testing Self-Certification and Registration
Focusing on near-term, low cost, agile use-cases e.g. OpenID Connect
Investing in legal research focused on liability in the OIXnet registry model
Adapting Registry Models for OIXnet
CA Browser Forum
Cloud Security Alliance Star Registry
U.S.-EU Safe Harbor
IDESG Trust Framework and Trustmark Committee
Liberty Alliance Project
Piloting Registry Business, Legal and Technical Mechanisms
Partnering with COI’s and e.g. OpenID Foundation and others
Partnering with industry, government and academic leaders
25. … “Four Horsemen of the Identity Apocalypse”
© by Open Identity Exchange, 2014
A Registry for Online Trust
…“Four Horsemen of the Identity Apocalypse”
• Governance: the full transparency of all COI and OIX business,
legal and technical requirements builds trust
• Liability: COI + OIXnet TOS agreements clearly assign and
enforce all duties of all actors in an identity system
• Certification: self certification + registration responds to the
speed, scale and dynamism of internet identity
• Adoption: OIXnet removes friction and speeds the discovery of a
COI’s business, legal and technical requirements
26. © by Open Identity Exchange, 2014
A Registry for Online Trust
Why OIX?
27. © by Open Identity Exchange, 2014
A Registry for Online Trust
Global Cross-Sector Leadership
Enterprise
Data Aggregators
Technology
Consulting Services
Banking
Government
Telcos
28. © by Open Identity Exchange, 2014
A Registry for Online Trust
Join OIX’s work to build trust in internet identity.
Shape the future of trusted transactions online.
Don Thibeau
Chairman| Open Identity Exchange
don.thibeau@openidentityexchange.org
Notas del editor We are here to solve four problems and to solve four problems
The first step is demystifying or deconstructing the problems
OIX does this through white papers, pilots and workshops.
Others help solve these problems like OpendID Foundation, IETF, etc. solve in working groups in a SDO
Use faded graghic from four horseman of the identity apo
Certification + registration answers the question “who do I trust?”
COIs: “We’ll trust OIXnet registrants”
Investing in legal research focused on liability in the OIXnet registry model
1st clear and compelling (part of) solution overcoming two biggest roadblocks: certification and liability
Self-certification will now be a legitimate global certification solution
Self-certification doesn’t replace 3rd party certification but rather complements them and offers an alternative
Simplest way of trusting: low cost + low overhead
NO contract(s)
NO meeting(s)
OIX IPR Agreement is effective: rivals + rival sectors
New sectors: banking + retail