Open Forum - BCS: Identity Governance

8 December 2016 - A Open Forum on Other in Guadalajara, Mexico

Agenda

This is a chaired discussion on Identity Governance is a follow-on from workshops at EuroDIG and UK-IGF earlier in 2016. This builds on work that has been taking place over the last 6 years. This journey has already resulted in some surprising answers and changes in direction….

Fundamental finding from last year: 
People do not understand Cyber Identity (identity assurance and identity management on the Internet) Too many systems are designed by white English men in lab coats for white men in lab coats, they can sometimes be exclusive of those who do not have English as a language or have physical or mental challenges. Digital by default is a nice idea but how do you support every type of person in a global community?

Key issues for this year:

How do you prevent digital exclusion through proper governance of identity on the Internet, where countries are going “digital by default” and developing countries are coming online?

To look at the governance of identity on the Internet and its impacts on security, privacy and anonymity. Is anonymity really possible or desirable and how does anonymity relate to trust and privacy?

To look at the use of identity in commercialisation of the Internet with particular regard to legal frameworks and inclusivity of identity systems.

There are a number of other questions that are relevant and we aim to address as many of these as possible:

  • How do you ensure that identity on the Internet is properly governed to address the sometimes conflicting goals of; inclusion, privacy and national security requirements?
  • How do you ensure that identity management and access control systems are designed to be all inclusive and not just designed for white males in lab coats?
  • How do you ensure identity management systems do not foster exclusion of groups or minorities by ensuring they cover all languages, and support those with physical and mental challenges?
  • Should users self-govern their identities on the Internet or should governments or commercial organisations be involved in identity governance?
  • Should any organisation or body have the right to dictate what personal information can be collected, stored and data-mined and what level of assurance is required in online identity?
  • How will freedom of expression be affected by introduction of a generalised system of real-name user identity or enforced assured identity
  • Whether legislative controls could ever effectively govern identity on the Internet?
  • How to protect the naïve from themselves so they do not damage their privacy or become a victim of identity theft?
  • How do you balance anonymity & security and how much do security & privacy overlap?
  • What is anonymity and is it possible or desirable on the Internet?
  • The reasons to promote or suppress 'anonymity' in the Internet and its relationship to trust
  • How freedom of expression would be affected by introduction of a generalised system of real-name user identity or enforced assured identity
  • Whether legislative controls could ever effectively govern identity on the Internet?
  • Whether commercial frameworks can be used to govern identity on the Internet?
  • Should people use identity attributes as currency on the Internet? How valuable is your identity?
  • How to protect the naïve from themselves so they do not damage their privacy or become a victim of identity theft, and
  • Preventing digital exclusion through proper governance of identity where countries are going “digital by default” and developing countries are coming online
Related Sessions

Main Session in Rio de Janeiro on Other

12 November 2007 | 1127 views

Main Session in Rio de Janeiro on Other

12 November 2007 | 1233 views

Best Practice Forum in Rio de Janeiro on Other

12 November 2007 | 852 views