OIX has analysed eight Digital ID trust frameworks: US, Canada, EU, UK, Singapore, Thailand, MOSIP and Bank ID Sweden. The goal was to see if their policies could be expressed in a consistent way to enable interoperability of IDs across these eco-systems. The analysis found they share 75 common policy rule characteristics with 283 possible values. This is the DNA of Digital ID: trust frameworks are the same species but address the policy issues using a varied characteristics to meet local approaches to privacy, risk, security, and identity assurance. Our conclusion is that convergence of frameworks to a common set of policy criteria is unlikely, as they are necessarily different. Therefore, we have created a tool to allow policy criteria to be expressed and exchanged between trust frameworks and other parties.
This session will share:
- An overview of our analysis of the eight trust frameworks
- The contents of the DNA of Digital ID open criteria exchange framework
- How the policy criteria will be used in a mixture of ‘static’ and ‘dynamic’ decision processes to enable roaming wallets
- How dynamic level of assurance assessments can be made.
- A demo of a wallet adapting as it roams from framework to framework.
