Root Identity Principles. Don’t panic.

Filed under: Security,Standards — lenand @ 8:33 am
Tags: , ,

Here are some principles of Root Identity, arising as a result of a recent Eurim meeting – Principles, quoted in full.

  1. Only the state needs an assured root identity (level 3). Therefore most people (but not all) have a root identity logged with a state.
  2. A Level 3 identity is only required for “beyond reasonable doubt” which is itself a subjective legal term, but the test required for criminal prosecutions. Even then it is not always needed as the test is to prove “beyond reasonable doubt” that a bit of wet carbon performed the action in question. So for murder etc the identity does not matter per se. For criminal fraud, identity theft, etc. it does. So for most things a Level 2 “balance of probabilities” identity is all that is required as a civil prosecution requires this test.
  3. Most Government and pretty much all private sector interactions only require a level 2 ID. This is normally a persona linked only during registration in some way to the root ID (e.g. passport for ‘know your customer’).
  4. Many interactions only require a Level 1 identity “User asserted” or a Level 2 identity with Level 1 attributes. Only the minimum level required should be used in transactions and relationships.
  5. There should be no way to link level 2 personas via a root identity. The only time this should ever occur is when a person asserts the link between two personas and shows they are both linked to the same root. E.g. showing a passport and credit card to exchange currency.

This seems to clarify a number of points, certainly at the level of most interaction with local authority and voluntary sector agencies.


    Leave a Comment »

    No comments yet.

    RSS feed for comments on this post. TrackBack URI

    Leave a Reply

    Fill in your details below or click an icon to log in:

    WordPress.com Logo

    You are commenting using your WordPress.com account. Log Out / Change )

    Twitter picture

    You are commenting using your Twitter account. Log Out / Change )

    Facebook photo

    You are commenting using your Facebook account. Log Out / Change )

    Google+ photo

    You are commenting using your Google+ account. Log Out / Change )

    Connecting to %s

    Blog at WordPress.com.

    %d bloggers like this: