Difference between revisions of "Bootstrapping Identity and Consent"

From MgmtWiki
Jump to: navigation, search
(Solutions)
(User Identifier Provider in Cloud)
Line 15: Line 15:
 
===User Identifier Provider in Cloud===
 
===User Identifier Provider in Cloud===
  
Where the user is on a device and the user's identifier provider is in the cloud, that provider will also have, at a minimum, user contact information to enable user [[Recovery]] and [[Redress]].
+
* Where the user is on a device and the user's [[Identifier or Attribute Provider]] (IAP) is in the cloud, that provider will also have, at a minimum, user contact information to enable user [[Recovery]] and [[Redress]].
 +
* No restriction is placed on whether the user has ownership of the provider, or of their own information on the provider, for this solution to function as required.
 +
* The user navigates to the Resource service on the web, here called a [[Relying Party]] because it relies on information from the IAP.
  
 
==References==
 
==References==

Revision as of 11:35, 7 July 2018

Full Title or Meme

A ceremony must be performed to establish identifiers and contact information among communicating parties before any other interactions can commence.

Context

  • Given the greatly increased legislation that enforces the privacy rights of users of digital communications, some means is needed to identify and contact the parties to a covered interchange.

Problems

  • Any identifying information about a user must not be released without that user's or a guardian's consent.
  • At the end of the ceremony all parties have agreed and consented to their respective identifiers, contact methods and a trust relationship among them.

Solutions

User Identifier Provider in Cloud

  • Where the user is on a device and the user's Identifier or Attribute Provider (IAP) is in the cloud, that provider will also have, at a minimum, user contact information to enable user Recovery and Redress.
  • No restriction is placed on whether the user has ownership of the provider, or of their own information on the provider, for this solution to function as required.
  • The user navigates to the Resource service on the web, here called a Relying Party because it relies on information from the IAP.

References