Caspar Bowden … U-Prove Vorstellung auf dem Identitycamp Bremen

U-Prove An brief introduction

Session by Caspar Bowden – Nur ein paar Notizen

* Identity Access Group

* Laws of identity
user control
minimal disclosure
justifiable parties
directional identity
pluralism of ops and technology
human integration
consists experience across contexts

–>join http://www.identityblog.com

* Self issued vs. Managed Information Cards

–Self issued
containing self-asserted claims „about me“
stored locally
effective replacement for username/passwd
eliminates shared secrets
easier than passwords

–Managed
Provided by banks, stores, government
Card contains meta data only
Claims stored at identity
-audited or non-auditting

* Protocol drill down (see photo)

*identity „history“
identity 1.0 -> centralized (MS Passport)
-central party sees all attributes/account data
-central party is all powerful

identity 2.0 (browser-only = SAML, OpenID)

identity 3.0 get ready for identity 3.0
-Multi clientside crypto security / privacy

= siehe securecomputing

* authentification vs identification

authentificate

name: XXXXXXX
adress: XXXXXXX
status: Goldcustomer

identificate

name: mark a.
adress: read
status XXXXXXXXX

——-
* Metasysteme

* privacy-friendly revocation
(„valid transactions provider“)

* censorable audit transcripts (? – not really noted)

*and some other points and issues

–Coming up in/with
integration into MS Windows (windows cardspace)
Windows communication foundation = .net
(patented – looks like braking innovation)
interoperability …. abstractional layer

announcements in coming time…

Recommended reads:
http://www.credentica.com
stefan brands http://www.idcorner.org
kim cameron http://www.identityblog.com

Ausserdem hat Mr.Topf auch über die Session geblogged, da kann man seine Sicht nachlesen!

~ von unintendedpurpose - Juni 8, 2008.