This document discusses open identity for open government initiatives that aim to make government more transparent and easier for citizens to access information. It involves a public-private partnership between government agencies, non-profits, and for-profit companies. The goals are to avoid application-specific credentials, leverage industry credentials for government use, and use open standards and Web 2.0 technologies. Open identity is based on portable internet identities issued by multiple providers to users, along with multiple levels of identity assurance. It involves third-party identity management and a "trust triangle" model. Challenges include developing more high assurance certifiers and credentials, metadata interoperability, and piloting the initiatives.

1. Open Identity for Open Government September 9, 2010 Mary Ruddy Mary Ruddy

2. Open Identity For Open Government Initiative Public Private Partnership Various Agencies Non-Profits For Profit Companies

3. US GSA Initiative “The government believes that there is a win-win for all of us in collaborating with industry to provide good identity solutions for electronic interactions with the American public.” Judy Spencer of GSA

4. Goals (With full credit to Chris Louden Protiviti Gov Services) Make Government more transparent to citizenry Make it easier for citizenry to access government information Avoid issuance of application-specific credentials Leverage Industry credentials for Government use Leverage Web 2.0 technologies

5. What is Open Identity ? Portable Internet identities Identities issued by industry – multiple providers Some call it federated identity…. Based on open standards User driven (user controls what data is released) OpenID and Information Card protocols… Identities certified by independent organizations

6. Multiple Levels of Assurance (LOA) Pseudonomity - MickyMouse123 Verified identities - John D. Smyth Verified claims - City or state of residence, age, etc.

7. Third-party identity Mgmt. Address the need for Internet-scale digital identity management Solves the problem by using a third party to assist end-users in identity transactions Called an “identity service provider” (also “identity provider”, “IdP”, “IP”) This sets up a “trust triangle” for Internet identity transactions 7

8. 8 relyingparty identityserviceprovider Optional direct trust agreement Terms of Service (TOS) agreement Terms of Service (TOS) agreement user The “trust triangle”

9. Open Identity Framework Model 9 Trust Community Trust Community Trust Community 1 1 1 relyingparties Identityserviceproviders Trust Framework Provider 3 2 4 5 assessors& auditors disputeresolvers Trust framework agreements TOS agreements user

10. Initiatives Gov standards Certifying process for gov standards Market for certifying to gov standards IdP market Enabling infrastructure technology Meta Data for Federated Interoperability RP adoption Privacy

12. Open Identity Exchange (OIX) formed

13. Kantara and OIX certified to certify IdPs to GSA schemas

14. IdP’s certified (Google, Yahoo, PayPal, Equifax VeriSign)

15. NIH in production at NLM with PubMed site

16. More Pilots in process

17. Various interops at RSA and Catalyst

18. FI-WG for meta data automation

20. PubMedhttp://www.ncbi.nlm.nih.gov/pubmed

22. Azigo Selector

24. Thank You mary@meristic.com