Mission: "towards a public utility for human usable centric transparency and data control as a public utility "
Summary
- SSI - this specification is used to extend the ANCR Record Specification into a Controller Credential for Know Your Business (KYB) interactions and governance control flows.
- the specification addresses inherent risks due to a vulnerability, with technical identifier based systems.
- the more powerful the technology, , the higher the sensitivity, the
- this risk is mitigated with a controller credential for proof of transparency and by the performance of data control.
- Announcement June 9: This work group calls for interest in ToiP community to support the development and extension of decentralized data governance for decentralized digital identity management. This specification, specifies how to generate a controller credential by creating an ANCR's eNotice Record, and then using this record to generate an electronic eConsent Receipt.using DiD for the generation of verifiable credentials, micro-credentials and micro-consent tokens.
- this specification has 3 key objectives
- Addressing a Critical digital trust security flaw - digital security defaults for iDm systems (common baseline)
- Address Key Cyber Security and Data gov Liability Issues
- Who control’s, how much control,
- Who benefits, how they benefit
- Who’s in controls cred
- Adding x Fields
- Address Key Cyber Security and Data gov Liability Issues
- Utilizes did’s and VC for controller credential identifier’s
- Adding did field
- Blinding identity
- Scale International data gov framework for consent online to SSI /ToiP with eConsent
- mapping authoritative data governance roles and human control semantics to the functional roles and semantics of the ToiP governance framework.
- Addressing a Critical digital trust security flaw - digital security defaults for iDm systems (common baseline)
DeCon for SSI:
- This document aims to bridge the ISO/IEC 29100 (formalized international security and privacy framework standard that is free) with ISO/IEC 27002 (formalized information security controls) to the trust over IP governance framework.
- The method is
- to specify the extension of notice records and consent receipts into micro-credentials with DiD's to generate electronic eNotice and eConsent receipts utilizing ToiP Governance Framework ecosystem.
- The controller credential is an extension of the Kantara Initiative, ANCR Notice Record specification, and apart of the eNotice record and eConsent receipt information structure used for the AuthC (authorization default) Protocol.
- to get access to the current draft - please join a work group call and request it.
Implementing true SSI with electronic notice and consent - using international governance frameworks for hyperlocal transparency and data control
Process in progress:
| Notice & Consent Task ForceProject owner: Editors Surveillance Controller EditorSalvatore DAgostino OCA Schema Editor: | StatusACTIVE |
Notice Controller Credential add's additional fields to an existing consent record formant for notice and consent |
Introduction
In privacy regulations globally transparency is a key requirement. transparency is most often represented by the requirements for notice and specifying a legal justification and purpose for processing.
...
- For decentralized digital identity, utilizing decentralized data governance to...
Governance Reference Architecture
This controller credential utilizes a reference architecture that began with 1980 OECD Guidelines, and has been worked on for international /internet scalable data governance. This work has driven regulatory reform and convergence internationally. GDPR refer framework for digital.
...
be verified and validated for legal proof and evidence.
Terms & Definitions
The terms and definitions presented here and defined here are in addition to the references, this cover the field names specified for the controller.
- specific to this spec, (in the annex - mapping semantics between frameworks )
Auth-C: Notice Alert Protocol
3 Vectors of Governance
- Personal Data Control (Gov) - (lower risk) uses micro-credentials
- the individual controls the source of data and verification
- attribute by attribute control
- Logging the access to the attribute for processing
- Co-Regulation : multi-party governed -
- Data trusts, where the individual + regulator and service co-regulate
- Logging the access to the processing
- Data Protection : Self-Regulated -
- the service provider regulates the processing of personal data
- Signed, verified and open code, with shared logging
3 Tiers of Controller Assurance
0 - Self Asserted Identifier
- Public verifiable
- Digitally verifiable & Legal (service delegation)
- Operator Controller - Certified and legal
Specification Overview
This specification builds upon the Kantara ANCR Record specification (and Consent Reciept)(ref) to build a notice controller credential for recording the controller and contract information in a notice.
...
The field data for the records and receipts are specified from numerous sources, in particular the W3C Data Privacy Vocabulary, for
Fields Added to ANCR Record to Create Verifiable Credential
ANCR Record spec - is here (enter link)
...
- Controller Type[Ctype]:
- Notice Controller,
- PII notice controller,
- PII controller,
- PII surveillance controller , (info not provided by PII Principle)
- [Ctype] controller operator,
- Accountable Person Type
Security Considerations
how to specify the
To address the security gap, the controller credential is presented in a privacy or security notice, prior to surveillance.
...
Human security, discovers or generates a controller credential to create human trust anchor record and credential (dial tone)independent of the Controller/Service provider.
Type 2: Technical Trust
Mitigation Risk
Using standard framework for transparency of control with data control defaults
Micro-Credential
defined as a credential specified to a specific purpose.
...
Assessment of transparency and performance of a micro-credential to mitigate risks with SSI
Examples
- Security,
- evidence
- fraud, traceabilty
- permission and access control transparency.
- Security of Security
- schema struture and use of object identifiers
- NIST - Privacy and Security Control framework
- NIST Language -
- evidence
- Auditing a ToiP implementation
Glossary
Controller Credential
Micro Credential
Privacy Stakeholders - ISO 29100
Privacy Stakeholders | ISO Definition | |
---|---|---|
Regulator / | Privacy Regulator for individuals | |
PII Principal | ||
PII Controller | ||
Joint PII Controller | ||
PII Processor | ||
3rd Party | another person, or police, |
Annex: Privacy Stakeholder Mapping to Functional ToiP Roles
Continuing of the ANCR Record Assessment to identify the controller credential,
...
Delegated | |||
---|---|---|---|
Regulator | Ombudsman | ||
PII Principal | Guardian/Parent/School | ||
PII Controller | Joint-Controller | ||
PII Processor | Sub-Processor | ||
3rd Party | turtles |
References for Controller Credential, Infrastructure and Legal Framework
Standard/Specifications | Title | Description | Resource Status |
---|---|---|---|
ISO 29100 | Information technology — Security techniques — Privacy framework | ISO/IEC 29100:2011 provides a privacy framework which
| Status - Is publicly available - https://www.freestandardsdownload.com/iso-iec-29100-2011.html |
ISO/IEC 29184:2020 | Online privacy notice and consent | (just published - not available to public - we are working on publishing a report/appendix for use with this group ) | |
W3C DPV 0.01 | Data Privacy Vocabulary |
|
|
Reference: OPN: Open Notice (+ Consent) Receipt Schema: Starters Guide to Unified Data Control Schema
Lizar, M. & Pandit, H.J., OPN: Open Notice Receipt Schema, 14th International Conference on Semantic Systems (SEMANTiCS 2019), Karlsruhe, Germany, 2019 [Published http://www.tara.tcd.ie/handle/2262/91576 [accessed July 1, 2020]
...