Versions Compared

Old Version 31

changes.mady.by.user Mark Lizar

Saved on

compared with

New Version 32

changes.mady.by.user Mark Lizar

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • the default presented to the controller - using the controller credential 
  • a notice request is the provided aka - a request to track - to  update the understanding 

Scenario of Use 

  • In SSI the individual can create their own relationship record, proof of notice, and rights request receipt to demonstrate evidence of consent  

References

  • ISO/IEC 29100
  • CoE 108+
  • W3C Data Privacy Vocabulary 
  • Kantara ANCR

Terms & Definitions

  • For decentralized digital identity, utilizing decentralized data governance to...

Governance Reference Architecture 

This controller credential utilizes a reference architecture that began with 1980 OECD Guidelines, and has been worked on for international /internet scalable data governance.  This work has driven regulatory reform and convergence internationally. GDPR refer framework for digital. 

This controller credential specification extends this international governance standard to the Trust over IP Governance Framework and is used to generate purpose specific micro-credentials for the governance of digital information with SSI's.   This enables the use of this reference architecture to scale analogue notice and consent to electronic eNotice and eConsent for digital exchanges and interoperability.  

  • ISO/IEC 29100
    • ISO/IEC 29100:2011 provides a privacy framework which. specifies a common privacy terminology; defines the actors and their roles in processing personally identifiable information (PII); describes privacy safeguarding considerations; and. provides references to known privacy principles for information technology.
    • ISO/IEC 29184 Online Privacy Notice & Consent 
    • ISO/IEC 29184 WD 5 Consent record information structure 
  • ISO 27002 Series : WG 5 SC27
    • ISO 27001 sets forth the compliance requirements needed to become certified. In contrast, ISO 27002 is a set of guidelines that are designed to help you introduce and implement ISMS best practices.
  • CoE 108+
    • International GDPR - 
      • data governance framework which provides the international enforcement policy baseline suitable for internet scale data control, identity transparency governance and consent
  • W3C Data Privacy Vocabulary 
    • V.5
  • Kantara
    • ANCR WG: eNotice and eConsent identity governance information structure  
    • ANCR Notice Record


Addressing The Challenge: Security Risk, Vulnerability  and Governance  Transparency Gap for SSI, as decentralized identifiers need a framework for transparency and control that can demonstrate international legal adequacy.  

The controller credential can be generated by any stakeholder, and is use to generate eNotice and eConsent records and receipts, that are defined here as micro-credentials.


 be verified and validated for legal proof and evidence. 

Terms & Definitions

The terms and definitions presented here and defined here are in addition to the references, this cover the field names specified for the controller. 

  • specific to this spec, (specific to this spec, in the annex - mapping semantics between frameworks ..
  •   

Security , Transparency & Governance Gap

At this time people can't verify the services that  are processing their personal information, or control the source of information that is processed. 

There are 3 vectors of governance that this specification is designed to cater for which affect the privacy and security risks

...

  • )
  •   


Transparency Governance Framework - For Transparency Trust 

...