...
Objectives
- To embed mechanisms that will add to the reliability of actors and processes within the ToIP Governance Stack
- To develop assurance processes of roles operating at all layers of the ToIP Governance Stack
- To establish classes (levels) of trust that can be assigned to objects (e.g. credentials)
- To standardize variations of process activity attributable to levels of assurance
- To establish sets of criteria for actors in the ToIP ecosystem to assert levels of assurance they convey into the ToIP ecosystem
- To create models for certification schemes that can be deployed by ToIP customer ecosystems
- To align assurance roles and processes with the ToIP Technical Stack
- To align with schemas and semantics being developed in other areas of the ToIP Foundation
Background/Context
Trust is defined as the “firm belief in the reliability, truth, ability, or strength of someone or something”. Digital trust is built from three main components: Cryptographic Trust; Human Trust and Referential Trust. Referential Trust is established through a trustworthy entity transferring trust upon a third party.
...
As one of a set of "genesis" task forces birthed by the GSWG, this task force will further develop the trust assurance roles and processes and will be used in establishing generally accepted roles, responsibilities and standard processes of actors relying upon ToIP ecosystems
Conveners
- Scott Perry, Scott S. Perry CPA PLLC
Membership and Joining
Prior to participating in the meetings please ensure that you are a member of the Trust Over IP Foundation. More detail on this can be found at this link.
...
This TF is still in the planning stages. To indicate your interest in joining this TF, add your name to this list:
- Scott Perry
Deliverables
The GSWG TA Task Force intends to create well defined descriptions of roles, responsibilities and process that all actors play in the trust assurance schemes that the ToIP Ecosystems will operate. The focus will be on governance and operational processes and only touch upon technical processes as needed for its purposes. This task force will not focus on technical interoperability processes (deferring to the Technical Stack Working Group). These definitions are critical in the establishment and consistency of applying governance principles for all four ToIP layers.
...
- ToIP Trust Assurance Roles and Responsibilities which defines the players that execute and rely upon key trust assurance process operations in the ToIP ecosystem at all governance layers
- ToIP Trust Assurance Process Definitions are a set of defined trust assurance processes occurring at the different ToIP Governance Layers
- ToIP Levels of Assurance defines classes of objects (e.g. credentials) and actors participating in creating, maintaining and using those objects at defined levels of assurance
- ToIP Process Trust Criteria defines control objectives and control practices for various ToIP layer processes at varying levels of assurance
- ToIP Certification Scheme Primer is a reference guide to Governance Authorities to assist in creating a certification scheme for an ecosystem
Intellectual Property Rights (Copyright, Patent, Source Code)
As a Task Force (TF) of the Governance Stack WG (GSWG), the GSWG TA TF inherits the IPR terms from the GSWG JDF Charter. These include:
- Copyright mode: Creative Commons Attribution 4.0. For the GSWG TA TF, this is probably the only relevant licensing provision.
- Patent mode: W3C Mode (based on the W3C Patent Policy). The GSWG TA TF is not expected to produce any deliverables subject to patent rights.
- Source code: Apache 2.0, available at http://www.apache.org/licenses/LICENSE-2.0.html. The GSWG TA TF is not expected to produce source code.
Milestones
Key milestones will include, but are not limited to:
...
The work of the GSWG P&R TF will be complete when a baseline set of deliverables are submitted to the GSWG and the ToIP Steering Group. It is likely that the Task Force will morph into its own working group at some point of its maturity
Meeting Schedule
To be developed
Mailing List and Communications
This task force uses the following for communications
...