cleanup and organization
This commit is contained in:
⧉ infominer
parent
31692d0540
commit
440ed79651
|
|
@ -0,0 +1,15 @@
|
|||
---
|
||||
date: 2020-11-20
|
||||
title: ESSIF - European Self Sovereign Identity Framework
|
||||
layout: single
|
||||
permalink:
|
||||
tags: ["Europe","ESSIFlab","TNO","eIDAS","Accenture","APG","Brightlands","De Volksbank","Rabobank","EBSI"]
|
||||
header:
|
||||
image: /images/eSSIF.webp
|
||||
caption: "[image source](https://ssimeetup.org/understanding-european-self-sovereign-identity-framework-essif-daniel-du-seuil-carlos-pastor-webinar-32/)"
|
||||
teaser: /images/european-commission.webp
|
||||
last_modified_at: 2020-11-20
|
||||
toc: false
|
||||
published: false
|
||||
---
|
||||
|
||||
|
|
@ -16,13 +16,15 @@ header:
|
|||
image: /images/blockchange-identity-header.webp
|
||||
caption: "[On the Emergent Use of Distributed Ledger Technologies for Identity Management](https://blockchan.ge/blockchange-fieldreport.pdf)"
|
||||
categories: ["Government"]
|
||||
tags: ["USA","Canada","Europe","GDPR","ProCivis","California","CCPA","Humanitarian"]
|
||||
tags: ["Global","Tokyo","China","Korea","Latin America","Japan","Africa"]
|
||||
last_modified_at: 2023-07-10
|
||||
toc: false
|
||||
---
|
||||
|
||||
* [Decentralized Identity & Government](https://www.youtube.com/watch?v=l8pHUdjKfes) Evernym 2021-12-08
|
||||
> The key differences between federated and decentralized identity systems - An analysis of a few notable government-led projects, such as Aadhaar (India), Verify (UK), eIDAS (EU), and the Ontario Digital Identity Program (Canada) - What decentralization means for portability, scalability, flexibility, and privacy - How governments and commercial organizations can enhance existing federated identity systems with verifiable credentials
|
||||
* [Self-Sovereign Identity (SSI) schemes and the public sector](https://www.impulse-h2020.eu/2021/11/05/self-sovereign-identity-ssi-schemes-and-the-public-sector/) Impulse H20 2021-11-05
|
||||
> While the structural difference between SSI approaches and conventional centralised or federated eID schemes is, on one level, profound (full control over data and identity with the user; no third-party intermediary between the user and the service provider), on another level, these differences may also appear highly abstract to ordinary users. What societal and economic consequences they may unfold remains, so far, little understood, also because research on the real social and economic effects of SSI solutions is only beginning.
|
||||
* [Digital Identity Around the World: Why Some Countries are Embracing Self Sovereign Identity Quicker](https://hackernoon.com/digital-identity-around-the-world-why-some-countries-are-embracing-self-sovereign-identity-quicker) 2021-09-03 Hackernoon
|
||||
> Each government moves at its own pace for as many reasons as there are countries, and digital identity/SSI will only become a reality once governments voice their support, regulations, and standards are adopted, infrastructure is created or upgraded, and interoperability, inclusion, and education are all addressed.
|
||||
* [Navigating Digital Identity in Political Economies RxC Panel](https://identitywoman.net/navigating-digital-identity-in-political-economies-rxc-talk/) 2021-08-25 IdentityWoman.net
|
||||
|
|
@ -33,6 +35,8 @@ toc: false
|
|||
> Why is this useful? When writing policy, you need a succinct model which is clear enough for subsequent interpretation. To do this, you need conceptual buckets to drop things into. Yes, this model is likely to change, but it’s my best and latest crack at it to synthesize the complex world of digital credentials with an abstraction that might be useful to help us align existing solutions while adopting exciting new capabilities.
|
||||
* [Self-Sovereign Identity and Government – Data Exchange](https://cyber.ee/resources/case-studies/self-sovereign-identity-and-government-identity/) 2021-03-23 Cybernetica
|
||||
> This is often achieved with ID cards or passports that we have in our possession with a photo to prove that we are the person this card belongs to, and therefore the person that ID number refers to. In digital identity terms, PKI takes the place of ID cards and offers public and private key pairs.
|
||||
* [SELF-SOVEREIGN IDENTITY: LEGAL COMPLIANCE AND THE INVOLVEMENT OF GOVERNMENTS](https://ssi-ambassador.medium.com/self-sovereign-identity-legal-compliance-and-the-involvement-of-governments-467acdd32e88) 2021-02-16 SSI AMBASSADOR
|
||||
> When it comes to identity management the involvement of the government can be a tricky topic. It needs to be involved to enable access to public services, adapt legislature and guarantee equal access for its citizens. However, it should not be able to control or monitor all aspects and activities of its citizens. Self-sovereign identity (SSI) might for some imply, that a citizen is suddenly able to issue his own ID-card, which isn’t the case. Governments are still the primary source of foundational identities."
|
||||
* [Data: Governance and Geopolitics](https://www.mydigitalfootprint.com/2021/01/data-governance-and-geopolitics.html) 2021-01-16 Tony Fish
|
||||
> How data is governed can be thought of along several lines of activity: legislating privacy and data use, regulating content, using antitrust laws to dilute data monopolies, self-regulating by the tech giants, regulating digital trade, addressing intellectual property rights (IPR) infringement, assuring cybersecurity, and practicing cyber diplomacy. Of these, antitrust, regulation, and privacy are most immediately in the spotlight, and are the focus of this commentary, but it will also touch briefly on the connections with other issues.
|
||||
* [It’s time for governments to get serious about digital identities](https://www2.deloitte.com/global/en/pages/risk/articles/solving-the-public-sector-identity-crisis.html?id=global:2sm:3tw:4dcom_share:5awa:6dcom:risk) 2020-02-25 Deloitte
|
||||
|
|
@ -59,3 +63,49 @@ toc: false
|
|||
> The ability to prove one’s identity is increasingly recognized as the basis for participation in social, political, economic, and cultural life. Yet at least a billion people in developing countries lack any form of officially recognized ID. This problem disproportionally impacts rural residents, poor people, women, children, and other vulnerable groups in Africa and Asia. Digital identity, combined with the extensive use of mobile devices in the developing world, offers a transformative solution to this global challenge and provides public and private sector entities with efficient ways to reach the poorest and most disadvantaged. This discussion paper, divided into three parts, explores the connection between digital identity and sustainable development. Part I illustrates how the use of digital identity promotes efficiency gains, financial savings, social inclusion and access to basic services and rights, with examples from countries that have adopted digital identity systems. The paper then outlines some of the key risks and challenges that must be overcome, specifically in the areas of political commitment, data protection and privacy, cost, and sustainable business models. Part II of the paper lays out the digital identity lifecycle and the roles of public and private sector players, and suggests some key considerations in the design of business models. Finally, Part III of the paper suggests some common principles—including universal coverage, appropriate and effective design, and privacy and data protection—and enablers for maximizing the potential of digital identity to contribute to sustainable development.
|
||||
* [Identity Validation as a Public Sector Digital Service?](https://blog.aniljohn.com/2014/07/identity-validation-as-a-public-sector-digital-service.html) 2014-07
|
||||
> I’ve written before about the role that the public sector currently has in identity establishment, but not in identity validation. This absence has led to an online ecosystem in the U.S. that depends on non-authoritative information for identity validation. These are some initial thoughts on what an attribute validation service, which provides validation of identity attributes using authoritative public sector sources, could look like.
|
||||
|
||||
## Worldwide
|
||||
### Tokyo
|
||||
* [Beijing will regulate ‘digital humans’ in the metaverse and beyond](https://restofworld.org/2022/beijing-digital-humans-metaverse/) 2022-09-01 Rest of World
|
||||
> The plan also signals that Beijing will take a more active role in handling the personal data generated by these platforms. Some of the directives outlined in the plan require any user-facing aspect of the digital human industry to be subject to rules that protect information about and generated by platform users, while also treating user data as a resource to be traded on the country’s new data exchanges.
|
||||
|
||||
### korea
|
||||
* [Can the Korean Mobile Driver’s License Unlock Blockchain’s Potential?](https://medium.com/raonsecure/can-the-korean-mobile-drivers-license-unlock-blockchain-s-potential-461d3295a452) 2021-08-12 Raonsecure
|
||||
> The Ministry of Public Administration and Security (MOIS) is working on the implementation of a national mobile driver’s license in the form of a blockchain-based Decentralized Identifier-based (DID) System. LG CNS and RaonSecure are in charge of the project and are currently building it.
|
||||
* [South Korea’s brilliant decentralized approach to citizen identity management](https://techwireasia.com/2021/06/koreas-decentralized-identity-approach-to-identity-management/) 2021-06-25 TechWire Asia
|
||||
> Adopting blockchain technology is seen as a necessity by the Korean government and multiple institutions are backing its continuous research and development, including the Ministry of Science and Technology (ICT), The Korea Internet Security Agency (KISA), Defense Acquisition Program Administration (DAPA), National IT Industry Promotion Agency (NIPA), and Korea Post among others.
|
||||
* [LG CNS wins Korean government contract for decentralized identity for driver’s licenses](https://www.ledgerinsights.com/lg-cns-korean-decentralized-identity-did-for-drivers-licenses/) 2021-06-24 Ledger Insights
|
||||
> Adopting DID technology provides numerous benefits but two stand out. Firstly, it should make it far harder to forge a license because credentials can be verified. Additionally, OmniOne includes FIDO biometric security. The second key benefit is that an individual can choose how much data to share.
|
||||
* [RaonSecure builds a blockchain-based digital wallet service with a public institution](https://medium.com/raonsecure/raonsecure-builds-a-blockchain-based-digital-wallet-service-with-a-public-institution-9fe2c8028f6c) 2021-06-16
|
||||
> Selection of RaonSecure as the final operator of the ‘blockchain-based digital wallet project’ that is part of the ‘2021 Blockchain Pilot Project’ program promoted by the Korean government
|
||||
|
||||
|
||||
### Latin America \ Carribean
|
||||
* [Lacchain ID Framework](https://publications.iadb.org/publications/english/document/LACChain-ID-Framework-A-Set-of-Recommendations-for-Blockchain-Based-Interoperable-Privacy-Preserving-Regulatory-Compliant-Secure-and-Standardized-Digital-Identifiers-Credentials-and-Wallets.pdf) 2021-11-02
|
||||
> A Set of Recommendations for Blockchain-Based Interoperable, Privacy-Preserving, Regulatory Compliant, Secure and Standardized Digital Identifiers, Credentials, and Wallets.
|
||||
|
||||
### China
|
||||
* [PIPL: A game changer for companies in China](https://www.dataprotectionreport.com/2021/08/pipl-a-game-changer-for-companies-in-china/) 2021-08 DataProtection
|
||||
> China passed its Personal Information Protection Law (PIPL) on 20 August 2021. This is China’s first omnibus data protection law, and will take effect from 1 November 2021 allowing companies just over two months to prepare themselves.
|
||||
|
||||
### Japan
|
||||
* [Ministry of Economy, Trade and Industry and OpenID Foundation in Liaison Agreement on eKYC & IDA for Legal Entities](http://web.archive.org/web/20220813115105/https://openid.net/2021/02/06/ministry-of-economy-trade-and-industry-and-openid-foundation-in-liaison-agreement-on-ekyc-ida-for-legal-entities/) 2021-02-06
|
||||
> The OpenID Foundation (OIDF), the international standards development organization which maintains the OpenID Connect for Identity Assurance (OIDC4IDA) standard, and the Japanese Government’s Ministry of Economy, Trade and Industry (METI) have signed a liaison agreement to work together.
|
||||
>
|
||||
> Under the agreement, METI will lead policy efforts to implement identity assurance frameworks for legal entities in Japanese Government and private sector while the [OIDF’s eKYC & Identity Assurance (eKYC & IDA) Working Group](https://openid.net/wg/ekyc-ida/) continues to advance the technical standards that enable many digital identity solutions. The agreement:
|
||||
> - Provides a mechanism to collaborate “about Authentication and Identity Assurance for Legal Entity”, mutually approved white papers, workshops, podcasts and other outreach activities;
|
||||
> - Allows participation of each party’s staff and members in the other party’s meetings, as mutually agreed;
|
||||
> - Provides for direct communications to communicate (without obligation and only to the extent each party chooses) about new work and upcoming meetings;
|
||||
> - Supports common goals, including where appropriate and mutually agreed, to Specifications of Authentication and Identity Assurance for Legal Entity.
|
||||
|
||||
### Africa
|
||||
* [Institutions and Governance in the digital realm of Africa](https://omidyarnetwork.medium.com/institutions-matter-60c819d32e2a) 2020-12-12 Omidyar Network
|
||||
> - seeking to better understand the existing laws and institutions
|
||||
> - exploring ways to strengthen the capacity of institutions that uphold these laws
|
||||
> - supporting digital rights organizations throughout Africa to act as checks on technological excesses of both governments and corporations
|
||||
* [Identity and Electronic/Digital Government Melanie Tjijenda](http://www.id4africa.com/2019_event/presentations/InF9/InF9-3-Melanie-Tjijenda-Namibia-Final.pdf) 2019 Republic of Namibia
|
||||
> The African Union provides the following as recommendations to help protect identity Privacy:
|
||||
> § Develop a consistent approach to personal data protection Policy and Law
|
||||
> § Review laws, procedures and practices, including those related to communications surveillance or interception.
|
||||
> § Member states should establish an independent Data Protection Authorities (DPA) to ensure their national privacy and personal data protection laws are being observed.
|
||||
> § Establish regulatory authorities that will enforcement measures
|
||||
|
|
|
|||
|
|
@ -17,15 +17,6 @@ last_modified_at: 2023-06-08
|
|||
|
||||
> The General Data Protection Regulation (GDPR) is a privacy regulation enacted May 2018, effecting anyone processing the data of EU residents.
|
||||
|
||||
* [About ESSIF framework](https://docs.essif.sk/en/about-essif-framework/) eSSIF Network
|
||||
> **ESSIF aims to be GDPR compliant while aligning with eIDAS** to ensure that ESSIF can leverage existing legal frameworks, enabling ESSIF to provide digital evidence supporting legal enforceability. All this in line with the revision of eIDAS, which aims to “improve its effectiveness, extend its benefits to the private sector and promote trusted digital identities for all Europeans and create a secure and interoperable European digital identity that puts citizens in control.”
|
||||
* [eSSIF-Lab Project](https://essif-lab.github.io/framework/docs/essifLab-project) eSSIF Lab
|
||||
> The objectives of the eSSIF-Lab project itself include:
|
||||
> - empower European and other citizens by providing them with new means that help them to electronically negotiate and conduct transactions. These new means will make electronic transactions fast and safe both in the Internet and in physical life, and eliminate logins.
|
||||
> - empower European and other organizations and governments by providing new means to speed up, secure and automate transactions with citizens, customers, suppliers and partners, resulting in tens of billions of euros savings annually on administrative costs in Europe.
|
||||
> - **ensure these new means support organizations and citizens to exercise their rights and fulfil their duties under the GDPR.**
|
||||
> - stimulate these new means foster inclusiveness.
|
||||
> - stimulate the pervasive use of new business ecosystem paradigms with thousands of new jobs, many new job categories and new business opportunities for existing and new European companies.
|
||||
* [Why is Self-Sovereign Identity compliant with the [GDPR]?](https://en.archipels.io/post/pourquoi-le-self-sovereign-identity-est-compatible-avec-le-rgpd) 2022-02-16 Archpelis
|
||||
> With the transition to the web 3.0 ecosystem, the development of distributed registries (blockchain technology) and the regulatory environment that is forcing digital players to favour privacy by design, the ISS approach will become the new standard, whether for entering into customer relations, managing digital identities or ensuring compliance of administrative processes in companies and institutions.
|
||||
* [Can a Verifiable Credential-based SSI Implementation meet GDPR Compliance?](https://academy.affinidi.com/can-a-verifiable-credential-based-ssi-implementation-meet-gdpr-compliance-5039d0149ea4) 2021-05-14 Affinidi
|
||||
|
|
@ -5,11 +5,12 @@ excerpt: This Regulation seeks to enhance trust in electronic transactions in th
|
|||
categories: ["Government"]
|
||||
tags: ["eIDAS","Europe","Trust Framework","EUDI Wallet","EUDI Framework","eIDAS2","eIDAS Bridge"]
|
||||
canonical_url: 'https://decentralized-id.com/government/europe/regulation/edias/'
|
||||
permalink: /government/europe/regulation/eidas/
|
||||
permalink: /government/europe/eu/eidas/
|
||||
header:
|
||||
image: /images/eidas-header.webp
|
||||
teaser: /images/EIDAS_teaser.webp
|
||||
redirect_from:
|
||||
- /government/europe/regulation/eidas/
|
||||
- /regulation/eidas/
|
||||
- /government/europe/regulation/edias/
|
||||
- /public-sector/europe/edias/
|
||||
|
|
@ -15,6 +15,9 @@ header:
|
|||
last_modified_at: 2023-06-08
|
||||
---
|
||||
|
||||
## General
|
||||
* [@EIC2022 Centralized & Decentralized Identity converging](https://www.linkedin.com/pulse/eic2022-centralized-decentralized-identity-converging-kuppinger/) 2022-05-18 Martin Kuppinger
|
||||
> For me, the most relevant new topic and trend was to finally see the convergence of decentralized identities (DID) and traditional approaches on IAM starting. DID, also referred to as SSI (Self Sovereign Identity) or verifiable credentials, is a concept where the user has a wallet that holds proofs of identities and attributes.
|
||||
* [State of SSI in Europe and Necessity for Network-of-Networks (convened by Sovrin)](https://iiw.idcommons.net/11F/_State_of_SSI_in_Europe_and_Necessity_for_Network-of-Networks_(convened_by_Sovrin)) 2021-05-06 Andre Kudra
|
||||
> 3. Hyperledger Indy and Aries technology stack
|
||||
> 4. ‘Network of networks’ which has been a key concept at the Sovrin Foundation
|
||||
|
|
@ -26,12 +29,6 @@ last_modified_at: 2023-06-08
|
|||
> 10. Substantial funding behind Indy based technology stack deployments are being seen
|
||||
> 11. Germany has 3 major streams active in the identity space
|
||||
|
||||
## Organization
|
||||
|
||||
* [European Union Digital Identity Wallet Consortium](https://eudiwalletconsortium.org/) EUDI Wallet Consortium
|
||||
> The EU Digital Wallet Consortium (EWC) is a joint effort to successfully leverage the benefits of the proposed EU digital identity in the form of Digital Travel Credentials across the Member States. The EWC intends to build on the Reference Wallet Application to enable a use case focused on Digital Travel Credentials.
|
||||
* [Self-Sovereign Identity Working Group](https://europeanblockchainassociation.org/eba-working-group-self-sovereign-identity-eussi/) European Blockchain Association in collaboration with the European Commission
|
||||
> The European Blockchain Association e. V. identified the potential for better communication, coordination and guidance in the European SSI community. Right now, many enterprises and organisations are building their own SSI solutions by implementing the existing standards and protocols. Since all these parties do similar work and have to face similar problems, it is critical for the community to share these learnings and experiences openly. To facilitate this process, the European Blockchain Association e. V. has founded an SSI Working Group which is open to participation from organisations, enterprises and individuals.
|
||||
|
||||
## EU
|
||||
|
||||
|
|
@ -47,7 +44,13 @@ last_modified_at: 2023-06-08
|
|||
> Our vision is to accelerate the creation of cross-border services and put blockchainat the service of public administrations for the purpose of verifying information, making the services trustworthy.
|
||||
>
|
||||
> EBSI is the first EU-wide blockchaininfrastructure, driven by the public sector, in full respect of European values and regulations. EBSI is supported by 29 countries (All EU Member States, Norway and Lichtenstein) and the EC forming the European BlockchainPartnership (EBP).
|
||||
* [Digital Identity for all Europeans](https://commission.europa.eu/strategy-and-policy/priorities-2019-2024/europe-fit-digital-age/european-digital-identity_en) 2021-06
|
||||
* [The “Secure Platform” Concept for Europe - a Trusted and Secure Foundation for a Human-Centric Digital World.](https://mydata.org/2021/06/04/guest-post-the-secure-platform-concept-for-europe/) 2021-06-04 MyData
|
||||
> The following article discusses the technical requirements needed to protect our personal data and to ensure a safer digital world. It presents solutions for creating an open and secure IT infrastructure where data privacy can always be guaranteed. The article has been written by esatus, founding member and lead of the “Secure Platform” working group, a thematic group within [the IT Security Association Germany (TeleTrusT)](https://www.teletrust.de/en/startseite/).
|
||||
* [TechCrunch Europe wants to go its own way on digital identity](https://techcrunch.com/2021/06/03/europe-wants-to-go-its-own-way-on-digital-identity/) 2021-06-03
|
||||
> Alongside today’s regulatory proposal they’ve put out a recommendation, inviting member states to “establish a common toolbox by September 2022 and to start the necessary preparatory work immediately” — with a goal of publishing the agreed toolbox in October 2022 and starting pilot projects (based on the agreed technical framework) sometime thereafter.
|
||||
>
|
||||
> “This toolbox should include the technical architecture, standards and guidelines for best practices,” the commission adds, eliding the large cans of worms being firmly cracked open.
|
||||
* [Digital Identity for all Europeans](https://commission.europa.eu/strategy-and-policy/priorities-2019-2024/europe-fit-digital-age/european-digital-identity_en) 2021-06
|
||||
> The European Digital Identity will be available to EU citizens, residents, and businesses who want to identify themselves or provide confirmation of certain personal information. It can be used for both online and offline public and private services across the EU.
|
||||
>
|
||||
> Every EU citizen and resident in the Union will be able to use a personal digital wallet.
|
||||
|
|
@ -63,7 +66,7 @@ last_modified_at: 2023-06-08
|
|||
> – that these solutions are linked to a variety of attributes and allow for the targeted sharing of identity data limited to the needs of the specific service requested,
|
||||
> – acceptance of qualified trust services in the EU and equal conditions for their provision.
|
||||
|
||||
### See [EBSI](/government/europe/regulation/EBSI-ESSIF) and [eIDAS]({% link _posts/government/europe/regulation/2020-01-06-eIDAS.md %})<!--, and [eSSIF-Lab](/government/europe/eSSIF-Lab/) -->
|
||||
### See [EBSI]({% link _posts/government/europe/2023-06-08-ebsi.md %}) and [eIDAS]({% link _posts/government/europe/2020-01-06-eIDAS.md %})<!--, and [eSSIF-Lab](/government/europe/eSSIF-Lab/) -->
|
||||
|
||||
## Regional
|
||||
### Findynet - Finland
|
||||
|
|
@ -97,8 +100,12 @@ last_modified_at: 2023-06-08
|
|||
|
||||
* [Reinventing Government with Technology - Sebastian Manhart](https://www.youtube.com/watch?v=1fTJA0r_XFg) 2021-12-01 KuppingerCole
|
||||
> Raj Hegde is joined by Sebastian Manhart - Technical Advisor on Digital Identity for the German Chancellery to explore governmental reform and understand stakeholder expectations behind the rollout of digital identity projects in the post-COVID era.
|
||||
* ["Irresponsible and Dangerous"](https://www.spiegel.de/netzwelt/apps/id-wallet-was-nach-dem-fehlstart-mit-dem-digitalen-fuehrerschein-passiert-a-f4bc10bc-08ab-42b4-9325-5de5cdc66e05) 2021-12-10 Spigel
|
||||
> The ID wallet for the digital driving license had a digital accident: A week before the federal elections, it was presented to the public by Transport Minister Andreas Scheuer (CSU), just under a week later it had disappeared from the Apple and Google app stores .
|
||||
* [ID Wallet: The German government had long known about IT security vulnerabilities](https://marketresearchtelecast.com/id-wallet-the-german-government-had-long-known-about-it-security-vulnerabilities/190919/) 2021-10-30 Market Research Telecast
|
||||
> The BSI expresses the problem as follows: “The authentication of the user required to carry out a hotel check-in on the basis of the factors possession (” link secret “) and knowledge (” PIN “) takes place exclusively on the basis of key material that is stored in the Wallet app is saved. ” No specially secured electronic storage and processing medium such as a “secure element” integrated in smartphones is used.
|
||||
* [Digital identities: German-Finnish cooperation agreed](https://www.bundesregierung.de/breg-de/suche/digitale-identitaeten-deutsch-finnische-zusammenarbeit-vereinbart-1962298) 2021-09-22 Bundesregierung
|
||||
> The content of the joint declaration is close bilateral cooperation in the development of a cross-border ecosystem of digital identities based on the principles of Self-Sovereign Identity (SSI).
|
||||
|
||||
#### Secure Digital Identities
|
||||
* [ID-Ideal as an integrated solution](https://jolocom.io/blog/id-ideal-as-an-integrated-solution/) 2021-11-17 Jolocom
|
||||
|
|
@ -138,10 +145,12 @@ last_modified_at: 2023-06-08
|
|||
* [Three Governments enabling digital identity interoperability](https://medium.com/in-present-tense/three-governments-enabling-digital-identity-interoperability-bbcfc60c3a80) Heather Vescent
|
||||
> On September 15, 2021, I moderated a panel with representatives from the United States Government, the Canadian Government, and the European Commission. Below is an edited excerpt from the panel
|
||||
|
||||
## Catalan
|
||||
## Organization
|
||||
|
||||
* [Catalan government announces self-sovereign identity project](https://www.ledgerinsights.com/catalan-government-self-sovereign-identity/)
|
||||
> The government of Catalonia announced its plans for self-sovereign identities (SSIs) for citizens based on blockchain technology. The project, named IdentiCAT, was revealed by the President of Catalonia Quim Torra and will allow citizens to be the “owner, manager and exclusive custod[ian] of his identity and data”.
|
||||
* [European Union Digital Identity Wallet Consortium](https://eudiwalletconsortium.org/) EUDI Wallet Consortium
|
||||
> The EU Digital Wallet Consortium (EWC) is a joint effort to successfully leverage the benefits of the proposed EU digital identity in the form of Digital Travel Credentials across the Member States. The EWC intends to build on the Reference Wallet Application to enable a use case focused on Digital Travel Credentials.
|
||||
* [Self-Sovereign Identity Working Group](https://europeanblockchainassociation.org/eba-working-group-self-sovereign-identity-eussi/) European Blockchain Association in collaboration with the European Commission
|
||||
> The European Blockchain Association e. V. identified the potential for better communication, coordination and guidance in the European SSI community. Right now, many enterprises and organisations are building their own SSI solutions by implementing the existing standards and protocols. Since all these parties do similar work and have to face similar problems, it is critical for the community to share these learnings and experiences openly. To facilitate this process, the European Blockchain Association e. V. has founded an SSI Working Group which is open to participation from organisations, enterprises and individuals.
|
||||
|
||||
## Background
|
||||
|
||||
|
|
|
|||
|
|
@ -5,7 +5,7 @@ excerpt: >
|
|||
The European Blockchain Services Infrastructure aims to deliver EU-wide cross-border digital public services using blockchain technology. The EBSI will materialize as a network of distributed nodes across Europe (the blockchain), leveraging an increasing number of applications focused on specific use cases.
|
||||
layout: single
|
||||
categories: ["Government"]
|
||||
tags: ["Europe","EU","EBSI","ESSIF","VIDChain","ValidatedID","Danube","Walt ID","Thales","CIMEA Naric","DXCTechnology","Identyum"]
|
||||
tags: ["Europe","EU","EBSI","ESSIF","GDPR","VIDChain","ValidatedID","Danube","Walt ID","Thales","CIMEA Naric","DXCTechnology","Identyum"]
|
||||
canonical_url: 'https://decentralized-id.com/government/europe/eu/ebsi-essif/'
|
||||
redirect_from:
|
||||
- /government/europe/eSSIF/
|
||||
|
|
@ -31,6 +31,8 @@ last_modified_at: 2023-01-10
|
|||
|
||||
## About
|
||||
|
||||
* [About ESSIF framework](https://docs.essif.sk/en/about-essif-framework/) eSSIF Network
|
||||
> **ESSIF aims to be GDPR compliant while aligning with eIDAS** to ensure that ESSIF can leverage existing legal frameworks, enabling ESSIF to provide digital evidence supporting legal enforceability. All this in line with the revision of eIDAS, which aims to “improve its effectiveness, extend its benefits to the private sector and promote trusted digital identities for all Europeans and create a secure and interoperable European digital identity that puts citizens in control.”
|
||||
* [European Commission adopts decision to license European Blockchain Services Infrastructure software as open-source](http://web.archive.org/web/20220712093455/https://ec.europa.eu/digital-building-blocks/wikis/display/EBSI/European+Commission+adopts+decision+to+license+European+Blockchain+Services+Infrastructure+software+as+open+source) 2022-07-12
|
||||
> The Decision to make EBSI software available for licencing under the [European Union Public Licence](https://commission.europa.eu/content/european-union-public-licence_en) is an example of how the European Commission is not only using, but also contributing to the open-source community and thereby growing the ecosystem around EBSI.
|
||||
* [5 reasons why professionals and enthusiasts of Self-Sovereign Information Sharing should look into EBSI](https://ec.europa.eu/newsroom/cef/newsletter-archives/40411) 2022-08
|
||||
|
|
|
|||
|
|
@ -3,7 +3,10 @@ published: false
|
|||
---
|
||||
|
||||
# Literature
|
||||
► [Credentials as a Service Providing Self Sovereign Identity as a Cloud Service Using Trusted Execution Environments](https://ieeexplore.ieee.org/document/9610297)
|
||||
* [A Decentralized Digital Identity Architecture](https://www.frontiersin.org/articles/10.3389/fbloc.2019.00017/full) 2019-11-05 Geoff Goodell, Tomaso Aste
|
||||
> Although this article shall focus on challenges related to identity systems for adult persons in the developed world, we argue that the considerations around data protection and personal data that are applicable in the humanitarian context, such as those elaborated by the International Committee of the Red Cross (Kuner and Marelli, 2017; Stevens et al., 2018), also apply to the general case. We specifically consider the increasingly commonplace application of identity systems “to facilitate targeting, profiling and surveillance” by “binding us to our recorded characteristics and behaviors” (Privacy International, 2019). Although we focus primarily upon the application of systems for digital credentials to citizens of relatively wealthy societies, we hope that our proposed architecture might contribute to the identity zeitgeist in contexts such as humanitarian aid, disaster relief, refugee migration, and the special interests of children as well.
|
||||
|
||||
* [Credentials as a Service Providing Self Sovereign Identity as a Cloud Service Using Trusted Execution Environments](https://ieeexplore.ieee.org/document/9610297)
|
||||
|
||||
* [Universal Declaration of Digital Rights](https://docs.google.com/document/d/1y9C-5TPYmRruRQqJq39-HePk3ypWLDpSAEVzuonOH2Q/edit) Johannes Ernst
|
||||
> all states should recognise and promote universal respect for and observance of both fundamental human and digital rights in physical domain and the digital spaces environment and ensure that these rights are upheld as core elements of a free, open and representative society
|
||||
|
|
|
|||
|
|
@ -0,0 +1,134 @@
|
|||
---
|
||||
published: false
|
||||
---
|
||||
|
||||
# USA
|
||||
|
||||
* [The White House’s Future of the Internet is Available Today](https://indicio.tech/the-white-houses-future-of-the-internet-is-available-today/) Indicio Tech
|
||||
|
||||
The Biden administration, in coordination with 60 other countries, on Thursday unveiled a “[Declaration for the Future of the Internet](https://www.whitehouse.gov/briefing-room/statements-releases/2022/04/28/fact-sheet-united-states-and-60-global-partners-launch-declaration-for-the-future-of-the-internet/)” that “reclaims the promise of the Internet in the face of the global opportunities and challenges presented by the 21st century.” 2022-04-28
|
||||
|
||||
|
||||
* [Senate Asks FTC to Investigate ID.me for Deceptive Business Practices](https://findbiometrics.com/senate-asks-ftc-investigate-id-me-deceptive-business-practices-052004/) FindBiometrics
|
||||
|
||||
|
||||
* [Recognizing Digital Identity as a National Issue](https://www.pingidentity.com/en/company/blog/posts/2021/digital-identity-national-issue.html)
|
||||
> we dove into creating a centralized and holistic approach to protecting and regulating identity in the United States and the specifics of why digital identity and cybersecurity are national issues that the private sectors simply cannot tackle on their own. Here are some of the key takeaways.
|
||||
|
||||
### FATF
|
||||
|
||||
* [Three Key Takeaways from the FATF’s Latest 12-Month Review on Virtual assets](https://www.elliptic.co/blog/3-key-takeaways-from-the-fatfs-latest-12-month-review-on-virtual-assets) Elliptic
|
||||
> Financial Action Task Force (FATF), the global standard-setter for anti-money laundering and countering the financing of terrorism (AML/CFT), released its second 12-month review on virtual assets (You can read our summary of its first report from July 2020 report here).
|
||||
* [What Are the Six Key Areas of the FATF Consultation?](https://www.elliptic.co/blog/six-key-areas-of-the-fatf-consultation) Elliptic
|
||||
> On March 19th, Paris-based Financial Action Task Force (FATF), the global standard-setting body for anti-money laundering and counter-terrorism finance (AML/CFT), released its [Draft Updated Guidance for a Risk-Based Approach to Virtual Assets and Virtual Asset Service Providers](https://www.fatf-gafi.org/media/fatf/documents/recommendations/March%202021%20-%20VA%20Guidance%20update%20-%20Sixth%20draft%20-%20Public%20consultation.pdf). Or, in compliance acronym speak the FATF's draft guidance for its RBA to VAs and VASPs.
|
||||
* [FATF and Global Crytpto Regulatory News](https://www.elliptic.co/blog/fatf-concludes-its-annual-plenary-session)
|
||||
> The Financial Action Task Force (FATF) [held](https://www.fatf-gafi.org/publications/fatfgeneral/documents/outcomes-fatf-plenary-february-2021.html) its winter Plenary session on 22nd, 24th, and 25th February and welcomed over 205 delegates to its third virtual conference since the start of the pandemic.
|
||||
* [DeFi regulation must not kill the values behind decentralization](https://cointelegraph.com/news/defi-regulation-must-not-kill-the-values-behind-decentralization) Cointelegraph
|
||||
> Financial Action Task Force (FATF) recently [proposed](https://www.fatf-gafi.org/publications/fatfrecommendations/documents/public-consultation-guidance-vasp.html) guidelines making it clear that “The owner/operator(s) of the DApp likely fall under the definition of a VASP [virtual asset service provider] [...] even if other parties play a role in the service or portions of the process are automated.
|
||||
The potential for fraud in the growing NFT market recently attracted the [attention](https://www.coindesk.com/fatfs-new-guidance) of the Financial Action Task Force (FATF)
|
||||
|
||||
## ID.me
|
||||
* [Rough Seas Ahead People](https://www.moxytongue.com/2022/01/rough-seas-ahead-people.html) MoxyTongue
|
||||
> Commentary from the man who invented the term Self-Sovereign Idenitty on the ID.me situation with the IRS.
|
||||
>
|
||||
> Humanity does not come into existence inside a database. The American Government does not come into authority "of, by, for" database entries.
|
||||
>
|
||||
> People prove birth certificates, birth certificates do not prove people.
|
||||
|
||||
* [IPR - what is it? why does it matter?](https://identitywoman.net/ipr%e2%80%8a-%e2%80%8awhat-is-it-why-does-it-matter/)
|
||||
> There is a lot of diversity in the category of future patent problems. Someone who was contributing without declaring that they hold a patent related to the work can claim they had a patent later (years after the specification is finished) and seek payment from everyone using/implementing the standard, claiming licensing rights or even lost revenue on ideas they legally own.
|
||||
* [Self-sovereign identity in the context of data protection and privacy](https://yourstory.com/2020/11/self-sovereign-identity-context-data-protection-privacy/amp) YourStory
|
||||
|
||||
this article deconstructs the self-sovereign identity model and examines how it stacks up against The Personal Data Protection Bill, 2019.
|
||||
|
||||
* [USPTO: CIO Jamie Holcombe](https://www.federalblockchainnews.com/podcast/episode/78ad1b6f/uspto-cio-jamie-holcombe)
|
||||
> CIO Jamie Holcombe says identity verification with blockchain might be in the future for USPTO and talks about navigating changes in policy & law when considering a distributed ledger to store patents & trademarks. Among the interesting questions: do we start with patent #1 (applicant: George Washington)?
|
||||
* [End-To-End Encryption is Too Important to Be Proprietary](https://doctorow.medium.com/end-to-end-encryption-is-too-important-to-be-proprietary-afdf5e97822) Cory Doctorow
|
||||
|
||||
End-to-end messaging encryption is a domain where mistakes matter. The current draft of the DMA imposes a tight deadline for interoperability to begin (on the reasonable assumption that Big Tech monopolists will drag their feet otherwise) and this is not a job you want to rush.
|
||||
* [We Applaud the Confirmation of New FTC Commissioner, Alvaro Bedoya](https://me2ba.org/we-applaud-the-confirmation-of-new-ftc-commissioner-alvaro-bedoya/) Me2Ba
|
||||
|
||||
Bedoya’s research has shined a light on digital surveillance and its impact on people of color, immigrants, and the working class. He founded the [Center on Privacy & Technology](https://www.law.georgetown.edu/privacy-technology-center/) at Georgetown Law to focus on the importance of consumer privacy rights.
|
||||
|
||||
* [Zero Trust Architecture in the White House Executive Order on Cybersecurity](https://lists.w3.org/Archives/Public/public-credentials/2021May/0062.html) Adrian Gropper (Friday, 14 May)
|
||||
|
||||
Please read Section 3 in the EO
|
||||
|
||||
* […]
|
||||
|
||||
It may be time for us to explain Zero-Trust Architecture relationship to
|
||||
|
||||
VCs and DIDs. My not-so-hidden agenda includes priority for considering
|
||||
|
||||
authorization and delegation in our protocol work but our diverse community of security experts will surely make this a much broader discussion.
|
||||
|
||||
* [Executive Order on Improving the Nation’s Cybersecurity](https://comms.wiley.law/e/knewjcfglctwt7w/a7406307-5755-44fa-a5c5-22dd04d9e9a7)
|
||||
|
||||
Sec. 3. Modernizing Federal Government Cybersecurity.
|
||||
|
||||
(a) To keep pace with today’s dynamic and increasingly sophisticated cyber threat environment, the Federal Government must take decisive steps to modernize its approach to cybersecurity, including by increasing the Federal Government’s visibility into threats, while protecting privacy and civil liberties. The Federal Government must adopt security best practices; advance toward Zero Trust Architecture; accelerate movement to secure cloud services, including Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS); centralize and streamline access to cybersecurity data to drive analytics for identifying and managing cybersecurity risks; and invest in both technology and personnel to match these modernization goals.
|
||||
|
||||
|
||||
### Austin
|
||||
* [City of Austin dabbling in SSI](https://github.com/cityofaustin/mypass-project/wiki/blockchain-report)
|
||||
|
||||
Many folks within the identity space see VC infrastructure as the future of identification. If much of our online identity is reputation based, then VCs represent a formal method for linking reputations and vouching for others to form a web of trust within which individuals are able to conduct identity transactions in a less centralized way.
|
||||
|
||||
|
||||
### Wyoming
|
||||
#### Blockchain Commons
|
||||
|
||||
* [Principal Authority](https://www.blockchaincommons.com/articles/Principal-Authority/)
|
||||
> The Digital Identity Working Group for the Wyoming Select Committee on Blockchain meets again next week, on September 21-22, 2021. I will be providing testimony there at 2pm MST. As a result, we’ve decided to release the current draft of this article on digital identity and how Wyoming has defined it using Principal Authority, with the goal of helping to shape the agenda for digital identity for the next year, both in Wyoming and elsewhere.
|
||||
|
||||
### California
|
||||
|
||||
* [Our Input to the California Privacy Protection Agency (CPPA) Pre-Rulemaking Stakeholder Sessions](https://me2ba.org/our-input-to-the-california-privacy-protection-agency-cppa-pre-rulemaking-stakeholder-sessions/) Me2BA
|
||||
|
||||
California is a major center of new privacy law and regulation, creating opportunities for internet safety advocates to help design policies that will ripple out well beyond the state’s borders. Their Privacy Rights Act (CPRA), passed by ballot proposition in 2020, created the California Privacy Protection Agency (CPPA), which seems to be getting closer to initiating its first formal rulemaking process.
|
||||
|
||||
* [Data Broker Registry](https://oag.ca.gov/data-brokers) State of California Department of Justice
|
||||
|
||||
[California law requires a data broker](http://leginfo.legislature.ca.gov/faces/billNavClient.xhtml?bill_id=201920200AB1202), as defined in California Civil Code § 1798.99.80, to register with the Attorney General on its internet website that is accessible to the public, on or before January 31 following each year in which a business meets the [definition of a data broker](https://iapp.org/news/a/california-data-broker-registrations-who-made-the-list-on-jan-31/).
|
||||
* [Crypto Regulatory Affairs: Governor of California Signs Blockchain Executive Order](https://www.elliptic.co/blog/crypto-regulatory-affairs-governor-of-california-signs-blockchain-executive-order) Elliptic
|
||||
|
||||
On May 4th, California Governor Gavin Newsom signed into effect a [“Blockchain Executive Order”](https://www.gov.ca.gov/2022/05/04/governor-newsom-signs-blockchain-executive-order-to-spur-responsible-web3-innovation-grow-jobs-and-protect-consumers/) 2022-05-04
|
||||
|
||||
“[to] assess how to deploy blockchain technology for state and public institutions, and build research and workforce development pathways to prepare Californians for success in this industry”.
|
||||
|
||||
* [Our Input to the California Privacy Protection Agency (CPPA) Pre-Rulemaking Stakeholder Sessions](https://me2ba.org/our-input-to-the-california-privacy-protection-agency-cppa-pre-rulemaking-stakeholder-sessions/) Me2Ba
|
||||
|
||||
We have monitored and involved ourselves in this new agency since its inception, and Lisa LeVasseur (our Executive Director) and Noreen Whysel (Director of Validation Research) shared their expertise on product audits and dark patterns, respectively, in a recent pre-rulemaking CPPA Stakeholder Session (May 5-6).
|
||||
* [Soulbound Tokens, Trust Networks, and California's Big Test](https://wrenchinthegears.com/2022/05/28/soulbound-tokens-trust-networks-and-californias-big-test/) Wrenchinthegears 2022-05-28
|
||||
|
||||
California [SB1190](https://sd18.senate.ca.gov/news/342022-hertzberg-announces-new-blockchain-legislation-creating-%E2%80%9Ccalifornia-trust-framework%E2%80%9D) that would establish a “Trust Framework” at the state level. This bill was introduced to the state senate in early March by Robert Hertzberg, close friend of Los Angeles billionaire investor Nicholas Berggruen
|
||||
|
||||
The Verifiable Credential’s Policy Committee, (that Kaliya Chairs) in California had a big win this week
|
||||
|
||||
* [California Moves Forward to Allow Vital Records to be Issued on Blockchain](https://www.coindesk.com/policy/2022/09/29/california-moves-forward-to-allow-vital-records-to-be-issued-on-blockchain/) Coindesk 2022-09-29
|
||||
|
||||
* [approved another on Wednesday](https://www.gov.ca.gov/2022/09/28/governor-newsom-issues-legislative-update-9-28-22/) that instructs county records offices to [allow for the use of blockchain technology](https://leginfo.legislature.ca.gov/faces/billTextClient.xhtml?bill_id=202120220SB786) and verifiable credentials. The technology would be established in the distribution of birth, death and marriage records, allowing PDFs to be sent immediately rather than using a typical 10-day postal delivery. 2022-09-28
|
||||
* [California Legalizes Blockchain-based Vital Records](https://mobileidworld.com/california-legalizes-blockchain-based-vital-records-410031/) MobileDataWorld
|
||||
|
||||
As [an abstract of the bill](https://trackbill.com/bill/california-senate-bill-786-county-birth-death-and-marriage-records-blockchain/2043852/) explains, while existing law requires such records “to contain certain information and to be printed on chemically sensitized security paper, as specified,” the new legislation enables a county recorder to, upon request, issue a birth, death, or marriage record “by means of verifiable credential, as defined, using blockchain technology, defined as a decentralized data system, in which the data stored is mathematically verifiable, that uses distributed ledgers or databases to store specialized data in the permanent order of transactions recorded.”
|
||||
* [VCs Policy Committeee (California) – Participate in passing legislation to create a California Trust Framework!](https://iiw.idcommons.net/21B/_(California)_Verifiable_Credentials_Policy_Committeee_-_Come_learn_about_how_participate_in_passing_legislation_to_crete_a_California_Trust_Framework!) by Kaliya Young, Ally Medina [Slides](https://docs.google.com/presentation/d/1VyxmWan3qbxynxhKvw1CHhWZINiPRF9gjeqSCSDh1MY/edit?usp=sharing)
|
||||
> discussed how the Blockchain Advocacy Coalition’s sponsorship of [AB 2004](https://leginfo.legislature.ca.gov/faces/billTextClient.xhtml?bill_id=201920200AB2004) pushed verifiable credentials into mainstream political discourse and how companies can help us shape public policy and government pilot programs of Verifiable Credential technology.
|
||||
>
|
||||
> We are planning on working with legislators to introduce a bill that creates a California Trust Framework and lays the groundwork for use of the technology in the public and private sector.
|
||||
|
||||
* [Me2BA provides human-centered recommendations to the California Privacy Protection Agency](https://me2ba.org/me2ba-provides-human-centered-recommendations-to-the-california-privacy-protection-agency/)
|
||||
|
||||
The California Privacy Rights Act of 2020 (“CPRA”) established the California Privacy Protection Agency (“CPPA”). The CPPA has full administrative power and authority to implement the CCPA and CPRA, which basically means that the CPPA will be in charge of updating regulations and adopting new regulations, while enforcement of these regulations will be done by both the CPPA and the Attorney General
|
||||
* [California Digital Vaccine Record based on VCs](https://lists.w3.org/Archives/Public/public-credentials/2021Jun/0191.html) Heather Vescent June 18
|
||||
|
||||
May be of interest: [https://www.latimes.com/california/story/2021-06-18/california-unveils-system-to-provide-digital-covid-19-vaccine-records](https://www.latimes.com/california/story/2021-06-18/california-unveils-system-to-provide-digital-covid-19-vaccine-records)
|
||||
|
||||
SMART Health Card Framework: [https://vci.org/about#smart-health](https://vci.org/about#smart-health)
|
||||
|
||||
To achieve this purpose, the founding members of VCI™ have collaborated to develop (1) the SMART Health Cards Framework Implementation Guide based on the World Wide Web Consortium (W3C) Verifiable Credential and Health Level 7 (HL7) SMART on FHIR standards, and (2) the SMART Health Cards: Vaccination & Testing Implementation Guide.
|
||||
|
||||
If you are in California, you can get your vaccine record here: [https://myvaccinerecord.cdph.ca.gov/](https://myvaccinerecord.cdph.ca.gov/)
|
||||
|
||||
* [Participate in Alberta's First Verifiable Digital Credentials Pilot](https://pilot.atbventures.com/)
|
||||
|
||||
You’re invited to participate in an exciting pilot program being launched by ATB Ventures and the Government of Alberta.
|
||||
Loading…
Reference in New Issue