Privacy by Design Architecture Composed of Identity Agents Decentralizing Control over Digital Identity
| dc.contributor.author | Toth, Kalman C. | |
| dc.contributor.author | Cavoukian, Ann | |
| dc.contributor.author | Anderson-Priddy, Alan | |
| dc.contributor.editor | Roßnagel, Heiko | |
| dc.contributor.editor | Schunck, Christian H. | |
| dc.contributor.editor | Mödersheim, Sebastian | |
| dc.contributor.editor | Hühnlein, Detlef | |
| dc.date.accessioned | 2020-05-27T12:09:22Z | |
| dc.date.available | 2020-05-27T12:09:22Z | |
| dc.date.issued | 2020 | |
| dc.description.abstract | Proposed is an identity architecture that satisfies the principles of privacy by design, decentralizes control over digital identity from providers to users, mitigates breach and impersonation risks, and reduces dependency on remote access passwords. The architecture is composed of interoperating identity agents that work on behalf of their owners and deploy digital identities that are virtualized to look and behave like identities found in one’s wallet and contacts list. Encapsulating authentication data, identity agents strongly bind owners to their digital identities and private keys enabling them to prove who they are, protect their private data, secure transactions, conduct identity proofing, and reliably delegate consent. Identity agents also off-load application services from identity-related and privacy-related tasks. A gestalt privacy by design process has been used to discover the architecture’s privacy requirements and design elements and systematically reason about how the design elements satisfy the privacy requirements. Identity-related functionality has been intentionally compartmentalized within identity agents to focus development on creating trustworthy software. A reference model for development derived from the described identity architecture is proposed. | en |
| dc.identifier.doi | 10.18420/ois2020_14 | |
| dc.identifier.isbn | 978-3-88579-699-2 | |
| dc.identifier.pissn | 1617-5468 | |
| dc.identifier.uri | https://dl.gi.de/handle/20.500.12116/33173 | |
| dc.language.iso | en | |
| dc.publisher | Gesellschaft für Informatik e.V. | |
| dc.relation.ispartof | Open Identity Summit 2020 | |
| dc.relation.ispartofseries | Lecture Notes in Informatics (LNI) - Proceedings, Volume P-305 | |
| dc.subject | privacy | |
| dc.subject | privacy by design | |
| dc.subject | digital identity | |
| dc.subject | authentication | |
| dc.subject | verification | |
| dc.subject | security. | |
| dc.title | Privacy by Design Architecture Composed of Identity Agents Decentralizing Control over Digital Identity | en |
| dc.type | Text/Conference Paper | |
| gi.citation.endPage | 170 | |
| gi.citation.publisherPlace | Bonn | |
| gi.citation.startPage | 163 | |
| gi.conference.date | 26.-27. May 2020 | |
| gi.conference.location | Copenhagen, Denmark | |
| gi.conference.sessiontitle | Short Paper |
Dateien
Originalbündel
1 - 1 von 1