Identity Oracle & authoritative data sources
I’ve been watching the posts on the Identity Oracle from the sidelines so far. There was the post from Bob Blakley who discussed the importance of identity metadata providers aka Identity Oracles.
However, what really got my attention was a comment from Frank Yeh to Bob Blakley’s post, “So in order for the Meta-Identity Service Provider to have something of value… the data must be validated by someone when entered.” In the same vein, Phil Hunt from Oracle said, “… a better approach would be thinking in terms of an identity meta-system consisting of many authoritative providers of different types of claims. Each provider only asserts claims over which it has some authority and/or business interest in doing so.”
And there you have it. These two comments neatly describe one of the core drivers for New Zealand’s IDDY Award winning concept. The working title for the concept goes by the somewhat intimidating name of GOAAMS or Government Online Attribute Assertion Meta System.
GOAAMS provides a framework by which authoritative information (including identity metadata) held by government agencies about people and organisations can be asserted directly from the source at their request, online and in real time, to other government agencies. Each agency will only assert that information for which it is the authoritative source.
Extending the concept to sources/consumers of authoritative information in the private sector is under consideration but does pose some policy and legislative challenges.
The benefits, as described in the Liberty Alliance press release are, “the convenience of being able to request and control the sending of authoritative information as well as quicker and more consistent government services and entitlement decisions within a secure and privacy-respecting framework.”
For agencies, the business benefits are, “Participating organizations can access authoritative information in real-time and directly from the source. This leads to reduced compliance costs for businesses, lower operational costs and reduces risks by avoiding paper documents as a secondary source of information.”
So, not only is the Identity Oracle a viable concept, it’s one that is actively under the consideration of the New Zealand Government.