IIW12: An NSTIC Project Risk Analysis

At last week’s Internet Identity Workshop in Mountain View, California, I led a brainstorming session to identify risks to the success of the new National Strategy for Trusted Identities in Cyberspace (NSTIC, pronounced “EN-stick”). The strategy is to encourage many non-government organizations to provide digital identity and personal data services in a way that meets the needs of individuals, identity providers and those who rely on digital identity. What could go wrong with a project like this? What can be done to avoid these threats and risks? To mitigate them when they show up? Meeting notes…

Continue reading IIW12: An NSTIC Project Risk Analysis

Tuesday’s DataPortability session at IIW12

We took a stab at rewriting the ten Portability Policy questions as user demands, behavior we want.  

The list so far.

Document your APIs and data formats. Support existing identities. Support referencing to authoritative data in a location of my choosing. (include by reference) Support auto-updating from authoritative data in a . . . → Read More: Tuesday’s DataPortability session at IIW12