...
15.00 UTC = 8:00 PT = 11.00 ET = 17:00 CET = 20:30 IST Zoom Meeting Link https://zoom.us/j/97159895478?pwd=emFjbU8xdWs0dE5iaE0zeDVZREFYQT09
Recording:
Attendees: Phil Wolff, Nicky Hickman, Oskar van Deventer
Agenda
Time | Item | Lead | Notes | ||||
5 min |
| Darrell |
| ||||
5 mins | Intro's new members & Updates | All
| |||||
5 mins | Update on Actions from Previous Meetings | All |
| ||||
Phil Wolff - individual contributor at DIF and ToIP and sometimes Sovrin IoT, IEEE identity work also.- led several sessions on threat vectors and harms associated with digital ID. Oskar van Deventerleader at TNO and eSSIF lab (>50 sub-grantees). Leader on interop, also European Blockchain Service Infrastructure representing NL. Have developed prototype. At TNO ~20 people working on SSI, 4 working on standardization at DIF. Techruption project with banks, land registry, notaries, similar scope looking at harms. Coordinating
| |||||||
5 mins | Update on Actions from Previous Meetings | All |
| ||||
10 mins | Oskar Insights | Oskar | Overview of insights from Oskar's work and blogs - where are the key gaps/issues | 10 mins | Oskar Insights | Oskar | Overview of insights from Oskar's work and blogs - where are the key gaps/issues ? - perspectives on key deliverables / scope and direction for the group? Rushing with eIDAS - on SSI - Danger is we all become 'vulnerable' people - we are not empowered, controlling your digital ID can sometimes undermine my rights. EG hotels that make me break the law by asking to copy my passport. Harms relate to many harms that can arise e.g. https://blockchain.tno.nl/blog/verify-the-verifier-anti-coercion-by-design/ Protections - e.g. chip in passport - but fingerprint data can only be accessed by authorised verifiers. - these protections are missing from SSI. Wants to see implementations: e.g. authorised verifier 5-6 items that all need implementation, standardisation and interop testing Does this change our deliverables? Supplier authentication, call centre use case especially outbound calling e.g. Bloqzone Gorilla use-case, I know who you are exclusion or discrimination if you don't accept data sharing - problem Knotty Problem: Privacy vs Access to food / services Rieks - one step back ie WHY do you need this data - data minimization tool, often not needed for business decision, also issuing information to be consumed by other gorillas (bring in Amos' work) KNOTTY Biz Problem conflicting regulatory requirements. Risk with SSI that we are going in a different direction because SSI gives higher assurances, now not only do you have to fill in the forms, now you can't lie about it and get it from an authorized source. Old LoA argument - economic resources and politics. Advise not focusing on excluded communities then risk that we ignore the issue that we all become vulnerable:
Different uses of persona, nature of harm and context - user research - better to talk to actual people rather than using persona, ethnography, interview people, e.g. those who have lived with harm. EG a black person obliged to add a photo indicating race, would harm professional career. Storytelling use of persona to make harms relatable - EG not defining gender, use of they, them pronouns in the group and research Remember SSI is transactions between two parties - relevance between the transactions that the two parties want to engage with. Assertion of our social norms considering what is harm? Harms only steming from those things which SSI is supposed to relate to. Could we simplify by focusing on Highlights any new DRiPHT introduced by use of decentralized architectures and SSI, and how they could be mitigated Over-identification problem - making it easy to add LoA3/4 creates new exceptional harms. END____ |
20 mins | Discussion - Root Cause Analysis & Frameworks | Nicky | Root Cause Analysis?
Possible Frameworks:
4. SECTOR-BASED - prioritizing the primary sectors of uptake that ToIP members want us to look at and which impact against sustainable livelihood outcomes Healthcare Public Sector National Identity & Legal Identification Financial Services & Fintech 5. OUTCOMES-BASED Sustainable Livelihoods framework . Based on the principle that your digital data is a livelihood asset, a new form of capital? Or a digital representation of other types of capital? Harms arise when the outcomes or consequences negatively impact positive livelihood outcomes
More likely a combination of a couple of these? | ||||
10 mins | Storyboard | Darrell | |||||
5 mins | Close & AOB | Nicky |
...
6.00 UTC = 22:00 PT = 7:00 CET = 10:30 IST = 17:00 Melbourne = 13:00 Thailand Zoom Meeting Link https://zoom.us/j/95121109567?pwd=UFBrWU5PcC9RZS9UaFg1UG81WGZZdz09 Meeting ID: 951 2110 9567 Passcode: 082179
Attendees: Nicky HickmanEric Welton, John Phillips Jo Spencer
...