Trust is defined as the “firm belief in the reliability, truth, ability, or strength of someone or something”. Digital trust is built from three main components: Cryptographic Trust; Human Trust and Referential Trust. Referential Trust is established through a trustworthy entity transferring trust upon a third party.
For a digital world, trust is an essential. As shown in ToIP Governance Stack, human trust is heavily relied upon in layer three – Credential Exchange and is refined in the Ecosystem Governance Layer (Layer Four) with the introduction of the following roles creating a referential trust ecosystem: Trust Anchor; Credential Registry, Governance Authority, Auditor and Audit Accreditor. The following diagram depicts how these roles interact
Figure A – Referential Trust Assurance Ecosystem
The ecosystem creates assurance to verifiers, credential holders and relying parties that trust anchors are applying generally accepted trust criteria to their methods and practices by the introduction of accreditation and independent third-party audits that act in their interest. Relying parties acquires trust from the ecosystem based on the ability of the players to follow through on its commitments and the integrity of its decisions. Symbols of this trust are stored on publicly accessible credential registry it can be propagated throughout the ecosystem.
The Governance Metamodel includes a Controlled Document section titled "Risk Assessment, Trust Assurance and Certification". The deliverables contributing to this section is derived from this TF.
This task force will further develop the trust assurance roles and processes and will be used in establishing generally accepted roles, responsibilities and standard processes of actors relying upon ToIP ecosystems
Prior to participating in the meetings please ensure that you are a member of the Trust Over IP Foundation. More detail on this can be found at this link.
To indicate your interest in joining this TF, add your name to this list:
The GSWG TA Task Force is an incubator of deliverables on the topic of Risk Assessment, Trust Assurance and Certification on behalf of the Governance Stack Working Group. These deliverables take the form of whitepapers, recommendations, templates and specifications.
intends to create well defined descriptions of roles, responsibilities and process that all actors play in the trust assurance schemes that the ToIP Ecosystems will operate. The focus will be on governance and operational processes and only touch upon technical processes as needed for its purposes. This task force will not focus on technical interoperability processes (deferring to the Technical Stack Working Group). These definitions are critical in the establishment and consistency of applying governance principles for all four ToIP layers.
Key deliverables will include, but are not limited to:
As a Task Force (TF) of the Governance Stack WG (GSWG), the GSWG TA TF inherits the IPR terms from the GSWG JDF Charter. These include:
Key milestones will include, but are not limited to:
The work of the GSWG P&R TF will be complete when a baseline set of deliverables are submitted to the GSWG and the ToIP Steering Group. It is likely that the Task Force will morph into its own working group at some point of its maturity
Bi-Weekly Friday 7-8am PT - See ToIP Calendar for Meeting Link
This task force uses the following for communications