You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 97 Next »

Meeting Schedule

The GSWG currently holds two bi-weekly calls for different time zones, first is mainly for Pacific TimeZone and second for APAC TimeZone.

PT - Alternative Thursdays — 14:00-15:00 pm EDT / 15:00 - 16:00 UTC

APAC - Alternative Wednesday — 09:30-10:30 am IST / 21:00-22:00 pm PDT / 04:00-05:00 am UTC

APAC GSWG Meeting - Wednesday, 12 August 2020 — 09:30-10:30 IST/ 21:00-22:00 PT / 04:00-05:00 UTC

Note: New Meeting Bridge All future APAC GSWG call will take place on the new Zoom meeting

Send an email to to request a calendar invite (you can subscribe to the mailing list at

  1. Welcome and Linux Foundation antitrust policy
  2. Introductions of new members - 5 minutes (Please use the format: Name / Affiliation / Location / any other detail you would like to share)
  3. GSWG Leadership Updates - 5 minutes
    1. Drummond Reed on Writing Sabbatical for August
    2. Roles and Processes TF led by Scott
    3. Liaison page - Liaison and Leadership with standards organizations (please provide detail if you are working with other standards and like organizations)
      1. Victor Golubkov - bringing his focus on education and digital identity credentials for learners; waiting for the Internet of Education TF to commence.
        1. Modeling of educational credentials is on-going work
      2. Catherine - the DIF Interop WG is likely going to have impact
      3. Alex - there is a need for integrating the governance into the use cases (for the CCI initiative) to enable scaling up
    4. Jim's introduction to the Patient Identity Task Force - to focus on patient processes and information and patient identity
  4. Presentation Topic -
    1. Scott Perry - Commencement of Trust Assurance TF - 10 minutes
      1. Introduction to the need and concepts around Trust Assurance
        1. Laying out why work around governance framework needs to consider trust criteria and risks
      2. Call to Action (for the TF to be announced)
    2. Catherine Nabbala (Finema, Bangkok) - 20 minutes - Work being done by Finema in Thailand - Approach taken to encourage the government to participate in the initiative.
      1. Finema provides a decentralized identity solution comprised of IDIN Blockchain (private), IDIN IAM and Wallet
      2. Trust Triangle based solution available for public health, education, retail, finance, legal identity and devices
      3. Approach to new tech adoption - awareness/education; basic use cases around VCs; interoperability; assistance with drafting guidelines
        1. identity custodian approach rather than "pure" SSI (which is likely to have some strides to take before wider adoption)
  5. Open Discussion / Q&A 
    1. Opportunities for APAC GSWG to contribute in existing or new TFs, Use Cases, etc. / other regional topics
    2. Readiness of the reference stack from ToIP will help influence the government adoption; availability of content in the local language helps
      1. Scott - active participation in driving the above requirement is going to be useful

NA/EU Meeting Thursday, 6 August 2020 — 11:00-12:00 PT / 18:00-19:00 UTC

Send an email to to request a calendar invite (you can subscribe to the mailing list at

  1. Welcome and Linux Foundation antitrust policy
    1. The objective of this WG meeting is to enable the participants to become familiar with the concepts of Trust Assurance
  2. Introduction of new members - 5 minutes (Please use the format: Name / Affiliation / Location / any other detail you would like to share)
    1. Karen Hand, Precision Strategic Solutions in Puslinch ON Canada
    2. Melanie Nuce GS1 (standing in for Gena Morgan)
    3. Sergio CEO at Tangem (card based DID VC wallet)
    4. Daniel Bachenheimer , Accenture Washington DC
    5. Paul Knowles , Human Colossus Foundation & Convenor of ToIP Decentralized Semantics WG, based in Switzerland
  3. GSWG Leadership Updates
    1. Drummond Reed on sabbatical for August - Starting up Governance Architecture TF in September
    2. Kalyan Kulkarni is stepping into the Co-Chair role  - leading APAC calls
      1. around 12 member participation
      2. more of an ice breaker call - getting the team familiar with work done so far
      3. upcoming ideas and tasks came up for discussion
  4. Presentation Topic -  Trust Assurance 101 - Scott Perry (30 mins) Link to Presentation (here)
    1. (Call To Action) Please review the existing list of Credential Risks and add new ones if required
    2. Matthew - on the topic of "Algorithmic Trust" ie. trust in data workflows - issues there are more to do with data provenance and algorithmic transparency and auditing - does it fit within the framework
      1. Scott - it is part of the scope - the viability of the algorithm (human designed or machine created) needs trust assurance but in a potentially different way
    3. Paul - is "risk" at the VC level or individual attributes within a VC?
      1. Scott - it can be both. We have to start with the ecosystem trust level - the ecosystem managers who are issuing a class of transactions of verifiable credentials.
        1. (ACTION ITEM) Paul - a "risk overlay" proposal in the Overlays Capture Architecture is something which can be included in the roadmap of the project
  5. Activities since our last NA/EU call
    1. Recap of First GSWG APAC Call  - Kalyan Kulkarni 
      1. Notes from the meeting and next set of tasks can be found here.
    2. Status of Ideas to Deliverables, A Trust Over IP Workflow Proposal - Steven Milstein & Sankarshan
      1. Will be presenting the concept at the upcoming APAC call
      2. To be discussed with David Luchuk to seek refinement towards further adoption in one pilot flow
      3. Scott - everyone comes in with different levels of participation; what we are trying to do is maximize everyone's agenda. There is a need for ground level understanding for the concepts.
    3. Recap of GSWG Process & Roles TF Kickoff - Scott Perry
      1. Notes from the kick-off meeting including next steps can be found here.
      2. Needed to advance the ToIP diagram further by identifying the roles and associated processes within the layers.. The process and roles inventory would help anchor that for other activities which are built around it
    4. Status of Governance Library Repository - Steve Magennis
      1. (Call To Action) Examples of 10 framework included in the repository. Please get in touch with Steve Magennis if you have additional framework to include
      2. (ACTION ITEM) Steve working on an ongoing framework when you build a trust ecosystem from scratch - look forward to a paper
    5. Related Industry Activities - Open Call for member updates
  6. Open Discussion / Q&A
    1. Mark Lizar - part of Standards Council of Canada. Creation of keywords for data governance and leading to a comprehensive search for all the keywords.
      1. (ACTION ITEM) Currently working on creating categories of the standards and will be willing to share the output for that work.
    2. Daniel Bachenheimer (please fill out this bit, missed adding the specifics of the groups) - reaching out to Emily Dawson ISO TC 307 - ToIP will have a liaison to this
    3. Jim St.Clair - unsure if there is already a decision that ToIP will not be an accreditation body or at least support one
  7. Topics for future meetings
    1. Corda Foundation Network (Carolyne Quinn, Executive Director)
    2. ISO Blockchain Technical Committee (Emily Dawson)
    3. Credential Master (Timothy Ruff, Interim CEO)
    4. <Contribute/Propose name>

APAC Governance Stack WG Bi-Weekly Call - (Kick off) Wednesday, 29 July 2020 — 09:30-10:30 IST/ 21:00-22:00 PT / 04:00-05:00 UTC


Send an email to to request a calendar invite (you can subscribe to the mailing list at

  1. Welcome to attendees and Linux Foundation antitrust policy
    1. Introductory notes from Kalyan
    2. Introductions from participants
      1. Scott Perry
      2. Steven Milstein
      3. Eric Drury - independent consultant in DLT and supply chain
      4. Vinod
      5. Drummond Reed
  2. New member introductions
    1. Eric Chou, Snowbridge
      1. digital certificates to help prove ownership of land
    2. Alex David, South Korea
      1. DID based system
    3. Victor Syntez - educational professional from Victoria BC. I've got interested in blockchain and ID about a year ago. I consider that SSI can bring increadible change to education field and would like to contribute to that improvement. I hope to help TOIP in that.

    4. Kazuto Yoshimura - BTC Cooporation, a Japanese IT consulting company. I have just started to learn the ToIP govenance stacks, and I'm curious how the specifications are going to be explored here
    5. Catherine Nabbala, Finema - Global Coordinator for Finema. We are an Enterprise Decentralized Identity Platform based in Bangkok, Thailand.
  3. Reviewing the mission of the Governance Stack WG
    1. Drummond's introduction to the Layers in the ToIP stack
  4. Recap of work done from EU/NA meeting - TFs, TSS, TIPs, convening of first two Task Forces
  5. Open Discussion - Opportunities for APAC GSWG to contribute in existing or new TFs, Use Cases, etc. / other regional topics
    1. Kalyan - introduction around the hackathon themed for the National Health Stack; absence of health regulations
    2. Drummond - "trust is contextual" - there are universal aspects to it (authentication/authorization). digital trust ecosystem includes culture, law and social norms
    3. Vinod - including the concept of DID (thinking about decentralized identity - is important to position use cases etc re-purpose and present it for local context). "interoperable but specific for each trust community" (quote from Drummond as response to Vinod's inputs)
    4. sankarshan - taking the time between now and the next meeting to create specific work items to focus and start work on
  6. Meeting Bridge -

Note: All future APAC GSWG call will take place on a different Zoom meeting. Details for Zoom meeting will be communicated separately though.

Thursday, 23 July 2020 — 11:00-12:00 PT / 18:00-19:00 UTC

POST-MEETING: Presentation (Google Slides) — Meeting recording

Send an email to to request a calendar invite (you can subscribe to the mailing list at

  1. Welcome and Linux Foundation antitrust policy
  2. Introduction of new members - 5 minutes
    1. Alex Tweeddale - IDWorks, London - Building decentralized stack on Corda. Has specialization with GDPR compliance
  3. GSWG Leadership Updates
    1. Co-Chair /Vice Chair Announcement - 5 minutes - Scott
      1. Tom Plagge has volunteered to end his services as a Co-Chair (COVID-19 and home schooling issues)
      2. Kalyan Kulkarni would be stepping into the Co-Chair role
    2. Announcement of First GSWG APAC Call  - Kalyan Kulkarni - 5 minutes
      1. Agenda for APAC calls (see above for the agenda of the kick-off meeting)
        1. Please help us with outreach around the APAC call/meeting
    3. Governance Library Repository - 5 minutes - Steve Magennis
      1. GSWG Framework Example Library
        1. intended to help people with existing governance framework and gaining familiarity
        2. helps form concrete ideas to create deliverables
        3. if you have a framework - please contribute that and add to the Summary page
        4.  Governance Framework library would be key to gaining best practices
  4. Convening our first GSWG Task Forces (Chairs & Vice Chairs—10 mins)
    1. First active TFs
      1. Governance Architecture  - Drummond - 5 minutes
        1. Will be producing the "anchor" ToIP Standard Specification for the ToIP Governance Stack
          1. will allow to measure conformance against
          2. TSS (internal, external or hybrid)
          3. Self Certification or 3rd party certification - all of these would need a TSS, which is the objective
        2. TF model allows usage of resources available to complete the planning and work towards the outcome
        3. Please refer to the ToIP Deliverables document (living document)
        4. Will be using the GitHub workflow (markdown document)
        5. How to join
          1. add name to wiki page
          2. join Slack channel (#gswg-gov-architecture-tf)
          3. mailing list coming up
          4. Meetings coming up in Sep (Drummond is on writing sabbatical through August)
      2. Process & Roles - Scott Perry - 5 minutes
        1. Complementary to the TF explained by Drummond (see above)
        2. Two aspects driving this
          1. members across a range of vantage points of the VC ecosystem
          2. who has the entire picture (the stack diagram - the concept RFC) - we need to go beyond that to build out the inventory for all the roles and processes at each layer of the stack. This will be needed by all layers
        3. We could review the existing diagram in terms of whether it is the best visual representation
        4. Existing sources can help in building the processes and roles (see slide for a representative list and Steve's Governance Framework Example Library)
        5. How to join
          1. starting next week
          2. all members announcement to be made
          3. Join Slack channel (#gswg-process-and-roles-tf)
          4. GitHub based workflow
    2. Other planned TFs
      1. Trust Assurance - Scott Perry - 3 mins
  5. Ideas to Deliverables, A Trust Over IP Workflow Proposal - Steven Milstein & Sankarshan  - 15 minutes
    1. Presentation of a proposal
    2. Follow up meeting planned to work on refining the idea
      1. reach out to Steven (slack, email) for joining the meeting
  6. Open Discussion / Q&A
    1. Scott Whitmire's question on Slack - is in the process of IEEE standard which may be an ecosystem of medical information. Drummond has a comment that an ecosystem can have one or more TIPs. For the L4 framework Scott is writing how much detail does he have to go? How does all this fit together?
      1. Drummond - For a L4 GF, one should be able to reference in a manner as "will rely on the following frameworks". Or, specifically set up the requirements to enable a L1 to qualify through a predefined process
  7. Topics for future meetings
    1. Corda Foundation Network (Carolyne Quinn, Executive Director)
    2. Trust Assurance 101 (Scott Perry, Convener)
    3. ISO Blockchain Technical Committee (Emily Dawson)
    4. Credential Master (Timothy Ruff, Interim CEO)
    5. <Contribute/Propose name>

Thursday, 09 July 2020 — 11:00-12:00 PT / 18:00-19:00 UTC

Presentation (Google Slides) — Meeting recording

Send an email to to request a calendar invite (you can subscribe to the mailing list at

  1. Welcome and Linux Foundation antitrust policy
  2. Introduction of new members
    1. Ajay Jadhav - Vice Chair Technology Stack  - APAC
    2. Khalid Maliki
  3. Review of GSWG mission and deliverables
  4. Presentation on ToIP Deliverables (Drummond—20 mins)
  5. Assembling our first two GSWG Task Forces (Chairs & Vice Chairs—20 mins)
    1. ToIP Governance Architecture TSS
      1. Deliverable stages - DRAFT to Publish
      2. Five types of deliverables - Spec, Template, Recommendation, Implementation Plan (more attributed to Foundry groups), White Paper
      3. Spec - TSS and TIP
      4. TSS - Internal (ToIP). External (Other Standards Body) or Hybrid Developed
      5. Mapping should be done from ToIP deliverables to input to the Global Standards Org - Volunteers?
      6. TSS can be submitted to global standards orgs (like W3C)
      7. Need for TSS that specifies technical requirements for ToIP Governance Frameworks - Part of Task Force
      8. Rec - Best Practice, Guidance and Glossary
    2. ToIP Interoperability Profile
      1. Communication between ToIP layers
      2. More aligned to Technology Stack - GSWG not producing TIPs
      3. TIP includes suite of accompanying deliverables for development and implementation support
    3. Templates - Majority deliverable from GSWG
    4. Recommendations  - Best Practices, Guidelines and Glossaries
    5. ToIP Utility Governance Framework Templates
      1. ToIP utility layer template, building on Sovrin & others, can describe Layer 1 processes and serve as a model for other layers
  6. Task Force Ideas
    1. Governance Layer Process Descriptions
      1. Working space: Governance Layer Processes
  7. Open Discussion / Q&A
    1. APAC support
  8. Topics for future meetings
    1. Carolyne Quinn - Executive Director - Corda Foundation Network
    2. Scott Perry - Trust Assurance 101
    3. ISO Blockchain Technical Committee Manager - Emily Dawson

Thursday, 25 June 2020 — 11:00-12:00 PT / 18:00-19:00 UTC

Meeting recording

Send an email to to request a calendar invite (you can subscribe to the mailing list at

  1. Welcome and Linux Foundation antitrust policy
  2. Introduction of new members - 33 attendees
    1. Carly Huitema - Guelph, Canada
    2. Trevor Butterworth  - Ireland
    3. Tom Smedinghoff - Lawyer Private practice - Chicago - ABA Committee on Trust Frameworks
  3. Deciding on chairs, vice chairs, and terms
    1. Chair nominees
      1. Scott Perry
      2. Tom Plagge
      3. Drummond Reed
    2. Vice Chair nominees
      1. Steve Magennis
      2. Steven Milstein
      3. Sankarshan
      4. Kalyan Kulkarni
    3. Proposed terms ("duty cycles")
      1. Proposal to have an election in 2 months
  4. Presentation on machine-readable governance frameworks—Daniel Hardman
    2. Transfer legally bound policy decisions into software functionality
    3. JSON code in example
    4. User experience  - thought experiment - Higher education - Germany
      1. issuance of digital diploma
      2. describes trust rules
      3. name and version of governance framework
      4. Burden on user side?
      5. Common metadata fields needs to be flushed out
      6. Terms of Service needs to be included
      7. Rules conveying Issuer and Verifier Assertions
      8. Could have non-conformance communicated to Governance Authority or Auditors
      9. Could include "verifying the verifier" capabilities or triggering automatic actions by an agent to perform this automatically  
      10. GLEIF records can be used to vetting entities in the process
      11. Verifiers can be excluded upon conditions
      12. A machine-readable governance framework could also automate the process of doing the "verifying the verifier" task
    5. Terms of Service can be integrated
    6. Also redress and audit
    7. A machine-readable governance framework can also be versioned like any other software, but this needs to be carefully managed so as to maintain continuity
  5. Next steps on Governance Template Task Force
    1. Discussion of ToIP Work Products and Deliverables
      1. Specs and templates for joint deliverables being written - five different kinds  - to be discussed at a future meeting 
      2. TSS — ToIP Standard Specification
    2. Proposal: focus on two initial deliverables:
      1. ToIP Governance Architecture — a TSS defining the overall model and requirements for ToIP-compatible governance frameworks
      2. ToIP Layer One Utility Governance Framework Templates — a set of templates that implement the ToIP Governance Architecture for a Layer One utility
  6. Topics for Future Meetings
    1. Scott Perry - Trust Assurance 101
    2. <your topic here>

Thursday, 11 June 2020 — 11:00-12:00 PT / 18:00-19:00 UTC

Agenda and Notes

Meeting recording

  1. Status since last meeting (Scott, Tom, Drummond) - 5 minutes
    1. 29 attendees
    2. New Introductions
      1. Scott Whitmire IEEE - Standard for medical Imaging
      2. Gena Morgan - GS1 - Standards in Supply Chain
      3. Will Groah IEEE working with other ToIP groups
      4. AJ Finema - Bangkok, Governance Blockchain Decentralized identity consultant
      5. Gene DiMira - Manulife - AML Compliance Officer
    3. New whitepapers, templates, thought leadership documents should be sent to Scott Perry
  2. Templatizing a Utility Governance Framework based on Sovrin Governance Framework (Drummond - 15 min)
    1. Google Slides are here
    2. Sovrin Governance Framework - started in 2016, now at V2 including GDPR conformance in December 2019 - working group of over 50 members
    3. Modular Framework of documents including a Home Page, Master Document, Glossary, Legal Agreements, Controlled Documents and a Trust Assurance Framework
    4. Key best practices
      1. Modular design
      2. Must include legal agreements and legal teams
      3. One glossary for entire framework
      4. Roles and responsibilities
      5. Affiliated trust assurance framework
      6. Non-normative but accessible framework
    5. Tour of the Sovrin Governance Framework - available on web at
    6. Templatize the Sovrin work
      1. Tailored to Layer one but structure can be used as an overarching model for ToIP GSWG
  3. Example templates from the Brighthive Repository (Tom - 10 minutes)
    1. BrightHive has focused on Data Trust (aligned to Layer 4)
    2. Governance established through a data trust agreement (DTA) - on web at
    3. Roles and responsibilities - Better when there is a strong central authority
    4. Brighthive has examples in gitHub
    5. Framework adopted from the Intelligence Industry, Canada efforts
    6. Good examples from Goodwill Industries and the Commonwealth of Virginia
  4. Open Discussion
    1. Don't Boil the Ocean - Tackle progressive steps 
    2. Next Steps - Establish your own task force
    3. Start producing Tools
      1. Standard Specification on Governance Framework Template Model 
      2. Not Layer Specific - At an Architecture Level
      3. email soliciting interest in framework architecture design
      4. email soliciting other areas that members want to tackle
  5. Topics for Future Meetings - Contact Scott Perry, Drummond Reed or Tom Plagge
    1. Daniel Hardman -
    2. Scott Perry - Trust Assurance 101

Thursday 28 May 2020 — 11:00-12:00 PT / 18:00-19:00 UTC

Agenda and Notes

See this Google Slides presentation for the full agenda. Summary:

  1. Welcome from the conveners (Scott, Tom, Drummond—5 min)
  2. Introductions (15 min)
    1. Natarajan (Nat) Chandrasekhar – Cambridge, UK – individual contributor
    2. Dan Bachenheimer – Washington, DC – Accenture Digital Identity group
    3. Stu Vaeth – Boston, MA – Mastercard
    4. Bryn Robinson-Morgan – UK – Mastercard
    5. Arjun Govind – Philadelphia, PA (Bangalore for the moment) – Digital identity at R3
    6. Catherine Nabbala – Bangkok – Finema
    7. Dan Gisolfi – New York, NY – IBM
    8. Elizabeth Cronan – Washington, DC – Geoguard
    9. Eric Welton – Northern Thailand – Individual contributor
    10. Gregor Jehle – Stuttgart, Germany – P3KI
    11. Jim StClair – Mississippi – Dinocates
    12. Jan Lindquist – Stockholm – Hyperledger
    13. John Jordan – British Columbia – Province of British Columbia
    14. Mark Lizar – Toronto, Canada / UK – Open Consent
    15. Mark Scott – San Diego, CA – Individual contributor
    16. Mary Lacity – Fayetteville, AK – Sam Walton College of Business
    17. Matt Davies – Salt Lake City, UT – Finicity
    18. Paul Knowles – Switzerland – Human Colossus Foundation
    19. Robin Alexander – Vancouver, BC – Geoguard
    20. Steve Magennis – Seattle, WA – Polywug
    21. Steven Milstein – Montreal, CA – Collab Ventures
    22. Sankarshan Mukhopadhyay – Bengaluru, India – Dhiway
    23. Vinod Panicker – Kochi, India – Wipro
    24. Vipin Bharathan – New York, NY –
    25. Wenjing Chu – Santa Clara, CA – Futureway Technologies
    26. Will Groah
    27. Xinxin Fan – San Francisco Bay Area, US – IoTeX
    28. Chris Ingrao – Seattle, WA, US – LUMEDIC
  3. Mission and scope of this WG (Tom—10 min)
  4. Real-world example of a full-stack GF (John Jordan—5 min)
    1. British Columbia government challenges include digital identity of individuals, corporations, legal entities, etc. Many times, when an online service is offered, the identity field is simply treated as a freeform text field, creating serious issues with misidentification, fraud, and others. 
    2. BC may lay out a set of policies at the Layer 4 level to make it clear who the recognized authorities are, in BC and elsewhere, for issuing identities (like drivers licenses). 
    3. At Level 3, BC could also recognize registries for verified person credentials, permits, licenses, etc.
    4.  BC might also recognize software solutions for citizens at Levels 2 and 1.
  5. Discussion of potential initial work items (Scott—15 min)
    1. Survey of existing governance framework models
      1. E.g., FATF, Pan-Canadian Trust Framework
    2. Classes of use cases and boundaries required for governance
      1. Levels of assurance that drive decisions along the stack. For example, government clearance may require high quantity and quality of sources, while employment confirmation may require less-strong assurance. Scott suggests:
        1. Untrusted class – no governance at all, status quo for the internet
        2. Internet Grade – a minimum standard of assurance with governance, a key missing piece
        3. Asset Grade
        4. Classified Grade 
      2. Need to understand use cases that government bodies might be asking of organizations such as ours. FATF example: is the digital ID system authorized by the government for use in customer due diligence (CDD)?
    3. Architectural Model for ToIP governance frameworks
      1. Required, recommended, and optional components at each layer
      2. Templates at each layer
    4. ToIP stack and verifiable credentials risk model
      1. See Confluence page that Scott has set up: Identity and Verifiable Credential Risks
    5. Contributions to ToIP glossary
  6. Logistics (Drummond—10 min)
    1. Mailing list: go to if you need to be added
    2. Wiki: Need Linux Foundation account
    3. Github repo structure (repository of best practices):
      1. See organizational proposal from Dan Gisolfi
    4. Task Forces
      1. Lightweight collaboration mechanism. Can spin up at any time and last as long as necessary.
      2. Minimum requirement: a wiki page.
      3. Can also have mailing list, github, etc.
    5. Chairs
      1. We elect our own. At least one, up to three (at least 2 recommended), can rotate.
      2. Volunteers? (Conveners volunteer; no additional volunteers on the call, but welcome over mailing list)
    6. Meeting schedule: discuss over mailing list, watch for possible poll
      1. Alternate US/EU and APAC? Or two calls?
      2. Weekly or biweekly?

  • No labels