Keynote presentation slides from Ubisecure's IAMwithUBI Nordic IAM event May 2018. The Global Growth of Digital Identity - cases studies on Digital Identity in the UK, Open Banking and The Passenger Journey.
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Open Identity Exchange - the Global Growth of Digital Identity
1. O P E N I D E N T I T Y E XC H A N G E
N O R D I C I A M C O N F E R E N C E 2 0 1 8
2. IdentitySystems at Scale:
The International Identity PictureTHE GLOBAL GROWTH OF DIGITAL IDENTITY THROUGH OIX USE-
CASES:
Digital Identity in the UK, Open Banking and The Passenger Journey
3. Open Identity Exchange
• Members advance their market position through jointly funded research and
pilot projects to test real world digital identity use casesCollaborate
• Research and pilots test business, legal an/or technical concepts with the
results published via OIX white papers and shared publically at OIX
Workshops.
Results
• Industry sustaining leadership by Barclays, CA Technologies, UK Cabinet
Office, Experian, Google, HSBC, IAG, LexisNexis, Microsoft, Ping Identity,
Symantec, Timpson, Verizon and more…
Leadership
The Open Identity Exchange is a non-profit, technology agnostic, collaborative cross sector
membership organisation with the purpose of accelerating the adoption of digital identity
services based on open standards
4. History
The Obama White
House invites industry
leaders & OIX Board
Members to meet
Administration leaders to
develop an interface to
identity industry leaders
Industry response to the
White House request led
to the formation of OIX
within 60 days of the
initial meeting.
High level White House
meetings with industry
& Administration leaders
Solid financial foundation with
growing US membership base
Executive Director funded
Increased funding for technical
& marketing programs
NSTIC Pilots – growing proof of
traction & increased awareness
& attention
OIX UK formed - UK
Government Cabinet Office
joins OIX Board
Meetings at
#10 Downing
Street with
OIX Board
members
Listed Japan University trust
framework program
High level White House
meetings with industry &
Administration leaders
OIX publically launched
at RSA 2010
The first trust framework
provided authorized by
the US FICAM
First ICAM LOA1 Listings
Posted
Founding members:
Google, PayPal, Verisign,
Equifax, Verizon & CA
Published first OIX white
paper
High level White House
meetings with industry
& Administration leaders
Board & membership
expansion
Awareness in media,
industry & government
Test-Build-Grow trust
frameworks
Significant OIX
investment in US
Government ICAM
Telecom Data Working
Group
“Meta Data Listing
Service” envisioned for
global technical
interoperability
High level White House
meetings with industry
& Administration leaders
2009 2010 2011 2012
Growth through international
expansion & transition from
US early adopters to global
sectors
Initial UK Cabinet Office
IDAP pilots launched & white
papers published
Attribute Exchange trust
framework published
NSTIC Steering Committee
seat at the table
Member cross sectors
represented include internet,
data aggregation,
telecommunications &
government sectors
2013
5. History
Series of
OpenBanking/OpenID
workshops to educate,
inform and gain feedback
from UK Market.
Series of BITGov
(Blockchain, Identity, Trust
and Governance) workhops
for laywers, and policy
makers planned globally
throughout 2018.
More Trust Framework
White Papers planned for
release including ‘how to
define’ template.
OIXnet registry announced
& back-end development
funded
Self-certification program
announced
OIDF plans to list the first
set of companies meeting
OpenID Connect
certification requirements
on OIXnet
Economics of Identity
Workshops launched in
Seattle and London
Cross sector expansion into
mobile, banking &
healthcare sectors
20182014 2015 2016
OIX International Identity
Law & Policy Workshop at
World Bank
2nd International Law &
Policy Workshop in
Amsterdam at Verizon
OIX UK Europe chapter
approved by OIX board
and launches
OIX UK Europe Chapter
adopts OpenID policy of a
General Membership
representative on the
Board.
International Airlines
Group joins the OIX Board
The EU funded three year
project LIGHTest begins
2017
3rd OIX International Identity
Law & Policy Workshop at World
Bank
HSBC Joins the OIX Board
The EU funded Cross-Border
banking project begins. This one
year project inspires similar
global projects to be formulated.
Open Banking forms
collaboration with OpenID
Foundation’s Financial API
Working Group. OIX supports
the development of the required
Trust Framework.
OIX Economics of Identity III
December, hosted by Barclays
OIX publishes the first white
paper in the “Trust Framework
Series” o paper focused on the
business, legal and technical
aspects of trust frameworks
OIXnet launched at RSA 2015
OpenID Foundation the first to
register at OIXnet by registering
OpenID Connect certifications
Google, ForgeRock, Microsoft,
NRI, PayPal, Ping Identity and
salesforce the first to certify
conformance to OpenID Connect
and register at OIXnet
Mydex, Respect Network, SAFE-
BioPharma, Securekey registered
Barclays, ForgeRock, KPMG and
Timpson join the OIX board
OIX Chapters Policy approved –
local OIX Chapters can be
formed. OIX UK Europe Chapter
proposed
6. OIX UK Europe Chapter
WHAT IT DOESN’T DO
Conference
producer/organiser
Think tank/research firm
Lobbyist
Consultancy
Government
Retail
Banking
Telecom
Data Aggregators
Travel
Enterprise
7. OIX UK Europe Business Model
Government
Retail
Banking
Telecom
Data Aggregators
Travel
Enterprise
11. 2012/14:
• Internet Living Verification
• Warwickshire County Council
(connectivity)
• Mobile Network Operators
• Warwickshire County Council
(Blue Badge / Attribute Ex)
• South Yorkshire
• Shared Signals White Paper
• Economics of Identity Paper
• Trust Marks White Paper
• Land Registry
• Dutch Scheme Rules
2014/15:
• Shared Signals Discovery
• Digital Sources of Trust 1 & 2
• Pensions Finder
• Digital Photo ID Sending Service
• Private Sector Needs for Identity
Assurance
• Opening a bank account with a
Norwegian digital identity
• Use of Bank Data for Identity
Verification
• Walk In Assisted Digital on the High
Street
• Opening & Transferring a Savings
Product
• Lift Sharing
• Charity Data
2016/17:
• Creating a Pensions Dashboard
• Micro Sources of Data
• Internet Living
• Pensions Finder
• Just Giving Data
• Opening a Bank Account in another
EU Country
• Identity Repair in the GOV.UK Verify
Federation
• Achieving Frictionless Onboarding
• Opening a bank account with a
Norwegian digital identity
• Face to Face Identity Proofing
• Use of Digital Identity in Peer-to-Peer
Economy
• Enhancing Medical Student
Registration Process
• Exploring the value of Mobile Phone
Activity History
• Creating a Digital Identity in Jersey
• Transforming the Airline Passenger
Journey
2018:
• Sharing Economy
• CEF funded : Opening a Bank account across Borders with
an EU National Digital Identity (12
• Horizon2020 funded: LIGHTest (3 year project)
12. OIX White Papers are always pragmatic and take one of two perspectives: a
retrospective report on the outcome of a project or pilot or a prospective
discussion on a current issue or opportunity.
13. OIX Trust Framework Series
What is a trust framework?
How is a trust framework
structured?
How is liability addressed in trust
frameworks?
Trust framework use-cases
14. The Cost of Doing Nothing
The aim of this white paper is to give senior
stakeholders and decision makers - and those
that brief and advise them - the insight and
tools needed to engage in a more informed
digital identity conversation.
Identifies the drivers behind growing demand
for digital identity solutions
To draw on existing research and international
experience, to attempt to identify the potential
cost of inaction
Recommends actions to catalyze future
identity developments, and to develop a digital
identity market in the UK.
15. The Identity Challenge
The challenge of establishing identities with confidence, particularly
online, is felt across a wide range of sectors
Financial Services
Airlines and Travel
Public Services
Health
Gambling
Age Restricted Activities
Sharing Economy
16. Barriers to Digital Identity
Trusted attributes are not being shared
Regulatory barriers
Liability questions
Little public understanding of personal data issues
Public ID concerns
No clarity on costs and savings
Lack of transparent standards or guidance
17. Learning from International Experience
Estonia is successfully leveraging its existing ID card / mobile ID scheme to provide
access to over 600 digital government services including electronic voting.
The Singapore government is incorporating biometric security and open API
interfaces enabling private companies to utilise the digital identity scheme it is
developing.
In India, the Government’s Aadhaar scheme has scaled very rapidly, with over a
billion identities created.
In Finland, a heavily government-led digital identity scheme built on the existing
national identity register featured poor market penetration, relatively few use cases,
and those predominantly in the public sector.
18. Do Banks Hold the Key to Success?
Norway -- BankID is an
electronic identity scheme used
by banks across both the public
and private sectors
Denmark -- NemID scheme has
been in operation since 2010
and allows access to a range of
services such as online banking
and government services.
Sweden -- A range of innovative
private sector solutions continue
to emerge with Bank ID as the
leading identity scheme.
Holland -- The DigiID scheme
was initially created to allow
digital access to government
services.
Germany -- The Verimi scheme
is being developed by a
consortia of private sector
companies, from the banking,
insurance, automotive, aviation,
technology and media sectors.
Canada -- There are now both
public and private-led schemes
in place, led by a consortia of
leading banking and telecoms
companies in the private sector.
19.
20. 1 Engage widely
2 Explore the economics and trust arrangements
3 Agree a range of use cases and their requirements
4 Banks to engage fully in the discussions
5 Government and regulators to facilitate, not lead
6 If all else fails, consider a regulatory stimulus
Recommendations
22. OpenID Foundation
• Authors of OAuth, JWT, JWS, OpenID Connect, trust
frameworks, and certification methods and marks.Expertise
• Intellectual Property Rights regime ensures royalty free, mutual
non-assertion covenant of use by everyone.Open
• Industry sustaining sponsorship by Google, KDDI, Microsoft, NRI,
Oracle, PayPal, PingIdentity, Symantec, Verizon and more…Ecosystem
The OpenID Foundation is a non-profit international standard organization of individuals and
companies committed to enabling, promoting, and protecting OpenID technologies. Since 2007,
the foundation serves as a public trust in representing the open community of developers,
vendors, and users.
23. OpenID Connect: Scalable & Extensible
OpenID Connect
Financial API (FAPI)
Health Relationship Trust (HEART)
Intl. Govt. Assurance Profile (iGov)
Mobile Operator (MODRNA)
24. What is Open Banking?
Operating a platform with a
business model that connects
people and processes with assets
and a technology infrastructure to
manage users’ interactions.
Enabling the use of APIs to open up
data, processes and business
functions to an ecosystem of
customers, employees, third-party
developers, vendors and partners.
25. Why Open Banking?
Companies are offering consumers simple ,yet
secure digital experiences and payment
services by integrating multiple ecosystems.
Consumers are rejecting traditional, rigid
command-and-control structures held by long-
standing financial institutions and banks.
Governments and industry are driving
directives and standards to open the digital
economy of financial data sharing and
payment initiation.
Banks are not immune to the demands for
new technology experiences and changing
consumer expectations.
BANKING
28. International Air Transport Association
One Identity Project
A friction-free process enabling an
individual to assert their identity,
online or in person, to the required
level, keeps personal data private
and enables improvements to
operational efficiency and security
International Air Transport Association
29. • Exploration project: focused on UK passengers and the
Advance Passenger Information (API) process
• Around 50% of passengers make errors when submitting
passenger information before their flight. Manual correction at
the airport impacts airlines and government
• IATA Research: airlines incur operational overheads and fines
equating to an average of USD$0.50 per passenger
• Airlines try to mitigate the risk, storing API data on behalf of the
passenger in an account – this increases airlines data security
and infrastructure need.
Transforming the Airline
Passenger Journey
Explore two methods which could
result in an improvement in the API
process:
Method 1 - Using an automated service to
validate the API data from the passport
information provided. Validation means to
check the information being provided by
the passenger is consistent with another
source. In this method, the source for UK
passengers is Her Majesty’s Passport
Office (HMPO) who are the authoritative
source of the data.
Method 2 - Using verified digital identity to
provision the API data from source.
Verification goes beyond validation.
Verification aims to ensure that the identity
requesting the information is the person to
whom that information belongs. In this
instance, a GOV.UK Verify digital identity
was synthesized, this assures the identity
to a Level 2 assurance (LoA2)7 as set out
in the Good Practice Guides.
30. • There are ways to improve the current API process. The
methods investigated indicate there could be benefits for
government including reduced cost and risk.
• First step to addressing some of the additional
operational overheads and potential fines incurred -
savings could be significant.
• Passengers felt that digital identity would provide a more
streamlined and convenient process versus the API
process today:
There was a perceived additional level of security
when using the digital identity in the process.
Users would be happy to reuse an existing digital
identity if they had one
• For digital identity, the liability and commercial models
need definition and for the passport validation service
user testing is required.
Transforming the Airline Passenger Journey - Conclusions
31. • Evolving global standards, increasing coordination of
stakeholders, trust frameworks and the ever-increasing
speed of technology change in identity, could provide the
building blocks for improvements in future airline travel.
• Increasing alignment and interoperability of global identity
standards could mean the method proposed in this
project may define a new way for global digital identities
to be leveraged, to satisfy the airline travel use case.
• The development of a trust framework between airlines
could mean reduced cost and risk across the industry
with wider benefits for all stakeholders.
Transforming the Airline Passenger Journey - Future
32.
33. • Small start up
• Want to streamline the notification
processes after death
• Commercial with a strong social purpose
36. Join and help shape the
markets you intend to lead.
Sue Dawes
Executive Director
Open Identity Exchange Europe
sue.dawes@openidentityexchange.org
Twitter: @oixuk
@openid
OIX Leadership
11th June, OIX Workshop – open to all
http://oixuk.org/events/oix-workshop-2/
OpenID Foundation Leadership