Presentation is loading. Please wait.

Presentation is loading. Please wait.

The privacy risks and rewards of distributed identity Conference Presentation (8 September 2003) Surveillance and Privacy 2003, University of New South.

Published byBrooke Holmes Modified over 8 years ago

Similar presentations

Presentation on theme: "The privacy risks and rewards of distributed identity Conference Presentation (8 September 2003) Surveillance and Privacy 2003, University of New South."— Presentation transcript:

1 The privacy risks and rewards of distributed identity Conference Presentation (8 September 2003) Surveillance and Privacy 2003, University of New South Wales Chris Connolly Galexia Consulting http://consult.galexia.com

2 Overview What is distributed identity? Case study – Reach Case study - Liberty Privacy issues and privacy management

3 Distributed identity “Distributed identity is any identity management system which acts as an alternative to a national ID regime or the consolidation of government or sectoral data sets.” Examples: »Standards »Federated identity »Identity broking »Gateway services Claimed benefits: »Security – ID fraud/theft and unauthorsied access »Convenience – single sign on or federated sign on »Validation – signing of key documents (eg qualifications) »Privacy? – setting privacy profiles, attribute broking and pseudonymity

4 Case study - Reach Reach is the Irish model for a single access system for related services (initially public sector) Users are given discretion over disclosure of personal information (via a Public Services Broker) to individual or multiple agencies The Public Services Broker is a trusted third party and maintains audit logs of access etc. Reach operates through the use of a smart card carrying a Personal Public Service Number (PPSN) protected by a PIN www.reach.ie

5 Case study - Liberty Liberty is a global standard for federated identity – personal information remains in the hands of the original collector and is shared amongst providers who comply with the standard Data does not have to be consolidated into a single database Additional Liberty services include: »Affiliation – the ability to federate with a particular group of affiliated sites »Anonymity – the ability to supply certain attributes without disclosing user identities Potential for use in discrete ‘communities’: »Financial services »Education »Health »Online government

6 ‘Whole of Sector’ identity management Australian initiatives: Education »Unique client identifier »Higher Education Identity Management System »Skills Passport Health »Electronic health identifier Government »State based digital certificate developments »National electronic authentication developments »Ellison proposals

7 Privacy management Design »Privacy Impact Assessments –Help to determine best options –Can also assist in design choices within each selected option –Must include consideration of rejecting the entire initiative Implementation »Privacy Management Strategies –Allocate tasks, responsibilities and timelines Ongoing »Privacy oversight, audits and review

Download ppt "The privacy risks and rewards of distributed identity Conference Presentation (8 September 2003) Surveillance and Privacy 2003, University of New South."

Similar presentations

KC-ROLO Project Kidderminster College Repository Of Learning Objects Graham Mason & Ed Beddows.

KC-ROLO Project Kidderminster College Repository Of Learning Objects Graham Mason & Ed Beddows.
The Need for Trusted Credentials Information Assurance in Cyberspace Mary Mitchell Deputy Associate Administrator Office of Electronic Government & Technology.

The Need for Trusted Credentials Information Assurance in Cyberspace Mary Mitchell Deputy Associate Administrator Office of Electronic Government & Technology.
Stephen Upton – 2 June 2005EURIM Personal Identity Working Group Secure identity – a personal view Stephen Upton Office: 020 8275 0102 Mobile: 07771 765789.

Stephen Upton – 2 June 2005EURIM Personal Identity Working Group Secure identity – a personal view Stephen Upton Office: Mobile:
EURIM Personal Identity Group Data Sharing Model for Public Services 13 th January 2005 Jim Lound © Experian Ltd 2005.

EURIM Personal Identity Group Data Sharing Model for Public Services 13 th January 2005 Jim Lound © Experian Ltd 2005.
1 The Challenges of Creating an Identity Management Infrastructure for the University of California David Walker Karl Heins Office of the President University.

1 The Challenges of Creating an Identity Management Infrastructure for the University of California David Walker Karl Heins Office of the President University.
EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.

EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.
Ms Joyce Tam, Principal Assistant Secretary for Information Technology and Broadcasting Presentation on Multi-application Smart ID Card to the Information.

Ms Joyce Tam, Principal Assistant Secretary for Information Technology and Broadcasting Presentation on Multi-application Smart ID Card to the Information.
Campus Based Authentication & The Project Presented By: Tim Cameron National Council of Higher Education Loan Programs.

Campus Based Authentication & The Project Presented By: Tim Cameron National Council of Higher Education Loan Programs.
Identity Assurance at Virginia Tech CSG January 13, 2010 Mary Dunker

Identity Assurance at Virginia Tech CSG January 13, 2010 Mary Dunker
29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL DATA PROTECTION AND PRIVACY COMMISSIONERS.

29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL DATA PROTECTION AND PRIVACY COMMISSIONERS.
Department of Labor HSPD-12

Department of Labor HSPD-12
ESign-Online Digital Signature Service February 2015 Controller of Certifying Authorities Department of Electronics and Information Technology Ministry.

ESign-Online Digital Signature Service February 2015 Controller of Certifying Authorities Department of Electronics and Information Technology Ministry.
Chief Information Officer Branch Gestion du dirigeant principal de l’information “We will have a world class public key infrastructure in place” Prime.

Chief Information Officer Branch Gestion du dirigeant principal de l’information “We will have a world class public key infrastructure in place” Prime.
1 Trust Framework Portable Identity Schemes Trust Framework Portable Identity Schemes NIH iTrust Forum December 10, 2009 Chris Louden.

1 Trust Framework Portable Identity Schemes Trust Framework Portable Identity Schemes NIH iTrust Forum December 10, 2009 Chris Louden.
T-110.5140 Network Application Frameworks and XML Service Federation 30.04.2007 Sasu Tarkoma.

T Network Application Frameworks and XML Service Federation Sasu Tarkoma.
EDUCAUSE Fed/Higher ED PKI Coordination Meeting

EDUCAUSE Fed/Higher ED PKI Coordination Meeting
 Key exchange o Kerberos o Digital certificates  Certificate authority structure o PGP, hierarchical model  Recovery from exposed keys o Revocation.

 Key exchange o Kerberos o Digital certificates  Certificate authority structure o PGP, hierarchical model  Recovery from exposed keys o Revocation.
GRANT MANAGEMENT SEMINAR

GRANT MANAGEMENT SEMINAR
Electronic Authentication for Flexible Learning Workshop Presentation (5 August 2003) Chris Connolly, CEO, Galexia Consulting.

Electronic Authentication for Flexible Learning Workshop Presentation (5 August 2003) Chris Connolly, CEO, Galexia Consulting.
Brooks Evans – CISSP-ISSEP, Security+ IT Security Officer Arkansas Department of Human Services.

Brooks Evans – CISSP-ISSEP, Security+ IT Security Officer Arkansas Department of Human Services.

Similar presentations

Ads by Google