Why is online identity such a hot subject? Thoughts on current trends.

November 29, 2014November 29, 2014 ~ Andrew Hughes ~ Leave a comment

Interesting trends are emerging in the Online Identity circles I travel. One trend is the shift away from formalized, enterprise, centrally-regulated Federations towards ad-hoc, consumption-driven, transaction-oriented architectures and policies. On one hand, I see advancement in 'formal Federation', which I will loosely define as a pre-evaluated structuring of centrally defined requirements and criteria, realized as … Continue reading Why is online identity such a hot subject? Thoughts on current trends.

Portable Identity Information and Interoperable Credentials: How will we shift the burden of complexity away from your mom’s keyboard?

November 20, 2013November 20, 2013 ~ Andrew Hughes ~ Leave a comment

Often-cited target states for federated identity and credential solutions include statements like: "Credentials must be interoperable"; "Identity Information must be portable"; "Users must have choice in number, type and source of credential"; "User must have control over disclosure and use of identifying information"; "Usage of credential must not be traceable back to the user, if … Continue reading Portable Identity Information and Interoperable Credentials: How will we shift the burden of complexity away from your mom’s keyboard?

Evolution of a Trusted Identity Model

April 10, 2013June 12, 2013 ~ Andrew Hughes ~ 1 Comment

In the Fall of 2012, I led the development and publication of a discussion paper for the Kantara Initiative Identity Assurance Working Group. The paper explored the concept of a general model for the Credential Provider - Identity Provider - Online Service Provider architecture. I identified several abstract Roles, Actors, Functions and Relationships that appeared … Continue reading Evolution of a Trusted Identity Model