1 / 23

Introduction to OIX: A Market Solution to Online Identity Trust

Introduction to OIX: A Market Solution to Online Identity Trust. Don Thibeau . Commerce Requires Trust. The Internet presents countless market opportunities limited only by the confidence to trust digital identity exchanges.

liluye
Download Presentation

Introduction to OIX: A Market Solution to Online Identity Trust

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript


  1. Introduction to OIX: A Market Solution to Online Identity Trust Don Thibeau

  2. Commerce Requires Trust • The Internet presents countless market opportunities limited only by the confidence to trust • digital identity exchanges.

  3. "Trusted identities and consumer control of personal information are essential to the effectiveness of transactions on the Internet. • Trusted frameworks that provide identity assurance are a critical factor in the success of the digital identity ecosystem." -- Andrew Nash, Senior Director of Identity Services for PayPal Inc OIX Founding Board Member .

  4. We live in a world of “trust frameworks” • Most are closed: • Visa, MasterCard, AMEX credit card networks • Phone networks • ATM networks • Some are open: • Political, social, religious organizations • Some are explicit: (legal agreements) • Some are implicit: (social contracts)

  5. The Basic “Trust Triangle” • The user has a direct trust relationship with both the identity service provider and the relying party • The problem is: How can the identity service provider and relying party trust each other?

  6. A Matter of Trust • Relying Parties (RP) must be able to trust that the Identity Provider can reliably provide accurate user data • Identity Providers (IDP) must be able to trust that the Relying Party is legitimate (i.e., not a hacker, phisher, etc.) • Direct RP-to-IDP agreements are a common solution, but are impossible to manage at Internet scale

  7. Builds Trust OIX is an Internet-scale solution to the problem of how digital identities can be trusted online

  8. Background • OIX was founded by leading identity providers and relying parties in the internet and telecommunications industries • Prompted by the US government’s need to accept identity credentials from certified providers at known levels of assurance • The US government did not want to become an identity provider for citizens • It wanted to consume credentials citizens already had from third-party identity providers

  9. The OIX Identity Trust Framework Model RelyingParty IdentityServiceProvider Open Identity Exchange (or Yahoo, PayPal and many others) Trust framework agreements user

  10. Technical & Policy Interoperability • OIX Trust Frameworks reduce friction of using the web through interoperability of digital identities • Interoperability increases market opportunities and converts more sales with easier user experiences • Interoperable digital identity eases user experience, increases user confidence and strengthens privacy

  11. "OIX is the organization where different parties across verticals such as federal, Telco, and healthcare, can come together to address policy challenges through the creation of vertical trust frameworks. • The immediate need is to tailor to each eco-system while providing a consistent approach that in the long run, will allow us to link all the identity networks together through infrastructure and policy interoperability." -- Nico Popp, VP Identity and Authentication Services, Symantec OIX Founding Board Member

  12. The US ICAM Trust Framework • First example of OIX Trust Frameworks developed in conjunction with the U.S. GSA on behalf of the Identity Credential, and Access Management (ICAM) subcommittee of the U.S. CIO Council.

  13. The US ICAM Trust Framework • Designed to meet the first of the four LOAs defined by the ICAM Trust Framework Provider Adoption Process (TFPAP), the OIX US ICAM LOA 1 trust framework was approved by ICAM on 15 February 2010 and went operational on 3 March 2010.

  14. The US ICAM Trust Framework • The US ICAM LOA 1 trust framework enables U.S. federal agency websites, such as the National Institute of Health (NIH), the National Library of Medicine (NLM), and the Library of Congress (LOC), to begin accepting OpenID and Information Card credentials from OIX certified private-industry providers. • Milestone of note: July 27, 2010, OIX announced formation of the US ICAM Trust Framework Working Group to extend the OIX US ICAM Trust Framework specification to LOA 2 and Non-PKI 3.

  15. Telco Data Trust Framework • The intent is to specify a consistent, provider-agnostic set of information exchange protocols and policies for the purpose of facilitating identity verification, digital identity management and fraud prevention. • These “rules and tools” would allow for access to necessary subscriber information without interfering in, risking, or devaluing the primary relationship between the subscriber and the Telecom Service Provider who is holding private subscriber data “in trust”.

  16. Market Expansion & Adoption Policy Interoperability (Trust Frameworks) InternetIdentityLayer Where trust frameworks fit Usability (User Experience Ceremonies) Technology Interoperability (Identity Protocols) Hardware Devices (Security Capabilities)

  17. OIX Drives Adoption Improving Market Efficiency Through Openness and Transparency By Ensuring Credibility and Accountability By Enabling Improved User Trust

  18. Who Should Join OIX? All organizations engaged in the digital identity market who want to become certified identity providers, relying parties, or assessors. Governments, professional associations, non-profit networks, and other communities who want to develop their own trust frameworks.

  19. Benefits of Joining OIX “OIX Certified” brand Access to a worldwide network of leading organizations and individuals in the identity assurance industry. Ability to lead in developing trust frameworks, advisory committees and working groups Achieve a level playing field with the global players in the market Influence the strategy, direction and policies of OIX

  20. Why do this together? • Cost efficiency • Lowers legal, design, and operations costs • Lowers overhead for assessors, IdPs, and RPs who need to be certified • Process efficiency • Single entity for negotiation of MOAs with trust communities • Will attract other trust communities • Effectiveness • 1+1=3

  21. OIX enables cross-industry certification that builds trust through technical and policy interoperability OIX is a neutral, non profit, technology agnostic, global internet utility. OIX reduces friction and expands market opportunities to Internet scale Learn more at http://openidentityexchange.org

  22. Learn more at http://openidentityexchange.org

  23. Are you interested in getting involved in the OIX community to help shape the future of digital identity? Go to the website to learn more: http://openidentityexchange.org

More Related