Comments on: How to rest assured

By: Pushing String » The Pushmi-pullyu problem of assurance

Pushing String » The Pushmi-pullyu problem of assurance — Sat, 20 Mar 2010 23:30:09 +0000

[...] by trusted issuers in some fashion. Attribute assurance is akin to identity assurance (as discussed previously here), except that it’s about the quality of specific types of information and their binding [...]

By: Data Without Borders Episode 12: It’s not my fault! :: Data Without Borders

Wed, 03 Feb 2010 11:16:11 +0000

[...] How the U.S. government’s need for assurance may or may not match commercial/social requirements for assurance: How to rest assured. [...]

By: links for 2010-01-19 • Bare Identity

links for 2010-01-19 • Bare Identity — Wed, 20 Jan 2010 00:03:32 +0000

[...] Pushing String » How to rest assured (tags: evemaler identityassurance identity identityproofing) [...]

By: Eve

Eve — Fri, 08 Jan 2010 16:22:16 +0000

(For ease of reference, Rich's post is here.) Maybe you should take another run at it! To be sure, the U.S. government and lots of other governments already have PKI-based systems in place to handle the single-axis space they've developed in NIST SP 800-63. (Whether revocation is handled properly in those systems, I don't know...) But the richness of the types of confidence really needed in the wild -- that is, not just in government applications but others -- suggests that more is needed. We're certainly finding that to be true in the UMA work, where we're trying to do data-sharing terms negotiation through a freshened-up "claims" mechanism. (More on that very shortly. Hey, Rich, we could use you on the team!) And in the meantime, many web developers push back on doing the tiniest bit of crypto, which makes it awfully hard to achieve even the sorts of security and confidence we know how to do pretty well. (See Ben Laurie's recent lament about WRAP on this score.)

By: Rich Salz

Rich Salz — Fri, 08 Jan 2010 05:00:59 +0000

If only CertCo had succeeded; we were in this space 10 years ago. See my blog on it.

By: Eve

Eve — Mon, 04 Jan 2010 21:13:05 +0000

Gerry– Your attribute assurance point is excellent. If you as an RP can specify who you’ll accept as a source/data origin (including a trusted aggregator who deals only with trusted sources “further back”), the whole question of authority sort devolves into this. Regarding pseudonymity, I gather from John B. that the verified name stuff is largely a holdover from the PKI heritage of NIST SP 800-63, and it’s arguable what is truly required in this area at a technical level. To the extent that it’s possible to argue for more-minimal disclosure as a fair reading, that would be a good thing!

Paul– My mouse did hover over the “Venn” category button for a moment, but it seemed too impure to get away with. ;-) By all means, have at it…

By: Gerald Beuchelt

Gerald Beuchelt — Mon, 04 Jan 2010 20:35:13 +0000

Using pseudonyms is ok (and actually potentially preferred) in most cases, at least as long as they can be de-referenced into real-name at audit time.

As far as attributes go: authoritativeness is really consumer dependent – in many cases the authority of a source may be perfectly acceptable for a given consumer, while not at all acceptable for another. A better concept here might be “data originator”, i.e. the original author of some data. If you use this concept, you can build on (context dependent) reputation schemes for the data originator (who might actually an aggregator or deriver of data). I find this overall easier than introducing yet another artificial concept such as “authoritativeness”.

By: Paul Madsen

Paul Madsen — Mon, 04 Jan 2010 19:47:21 +0000

There is a Venn in here, and I will not rest until I find it :-)

paul