More than Just Lines on a Map: Best Practices for U.S Bike Routes
Eema estonia matthew_gardiner
1. when title IS NOT a question there is NO ‘WE CAN’in the box The European e-Identity Management Conference Which One is Not Like the Others A Comparison of Open Identity Initiatives from Governments Around the World Matthew Gardiner, CA Technologies June 8th, 2011
3. Joe’s Fish Market.Com Tropical, Fresh Water, Shell Fish, Lobster,Frogs, Whales, Seals, Clams Simple reminder why we are hereIdentity was never designed into the Internet 3
4. All Governments Face This Challenge As WellOne Citizen & Many eGov. Applications Law Enforcement Student Loans Health Care Pensions Social Welfare Courts Tax Military
7. These Programs Raise Fundamental Questions Centralized .vs. decentralized solutions Internet is global, sovereign boundaries are not Proper role of government Compulsory .vs. optional participation Online crime Prevention .vs. Enforcement Scope of the solution Government use only or enabling private online commerce as well? Trust in government Who should pay for the solution & how much? Role & level of control for the user
9. Quick Facts 5 Million delivered & 80+SPs certified (30 in production) 30%-40% are “switched-on” for online identification Advantages Dual use – physical + virtual – aides value proposition Explicit user consent during online usage increases confidence Compulsory possession increases ubiquity (ultimately) at least in Germany Disadvantage Tight application (SP) controls will reduce SP uptake Card reader dependence is challenging for users Current online experience is clunky Government involvement in private commerce Takeway Effective to facilitate large scale German & European eGov. transactions, but hard to envision operating at Internet scale for private commerce GermanyNeuePersonalausweis
10. New Zealandigovt Service Quick Facts igovt verification & igovt logon are complementary, but separate services Logon support uid/password & OTP via text or hard tokens 220K accounts, 1.25M logons to date, 23 agencies connected Advantages Simple for user - Single service for all government access No cost to the user Agencies reduce identity management costs Has verified attributes – name, date of birth, place of birth, sex Disadvantage Doesn’t address commercial application access Is there a killer application from the user’s point of view to increase usage? Takeaway Valuable service to ease access to eGov applications, with prospect of bridging into commercial applications
11. USAFICAM/NSTIC Quick Facts FICAM – Government wide initiative to improve identity management Policies support the use of 3rd-party identity providers NSTIC - Presidential initiative to make online transactions more secure for businesses & consumers by catalyzing an identity ecosystem Advantages Leverage the reduced cost & increased convenience of 3rd-party identity providers Lots of choices for users, participation totally optional for all Flexible on security, usability, & cost Disadvantage Trying to take on the whole Internet identity problem all at once - complex Not clear that a real marketplace will be catalyzed Will agencies be innovative enough (Invest $) to move this forward? Takeaway Very big vision, impact could be profound or non-existent
12. How to get this to Internet Scale?People will need multiple authentication providers For Different contexts & Different levels of assurance Social Networks Educational Institutions Financial Institutions Governments Industry Consortia Employers Credit Bureaus Professional Associations
13. Government’s should focus on enabling access to their eGov applications Spillover to commercial transactions can come as the marketplace matures Role of government online should remain consistent with role of government offline Users will not have a single online identity provider Not practical for Internet scale usage User’s key attributes are not held by a single organization Watch for the use of Trust frameworks to help catalyze this market by making trust establishment more real-time http://kantarainitiative.org/wordpress/programs/assurance-certification/ Takeaways
15. For Everyone Critical mass of high-demand online services Use of standards & interoperability, Trust frameworks & certified identities to automate trust establishment For IdPs Money for their services Limitation on liability Confidence of good behavior by RPs For RPs Competitive choice of IdPs, Understanding that identity verification costs real money & can be outsourced For user Choice, Privacy respecting, Portability of identities between communities What is needed for this market to takeoff?
