2012 NIST/NSTIC IDtrust Workshop

March 13, 2012toMarch 14, 2012



“Technologies and Standards Enabling the Identity Ecosystem”

The 2012 NIST/NSTIC IDtrust Workshop will be held March 13-14, 2012 at NIST in Gaithersburg, Maryland.  The workshop will focus on how technologies and standards can help the framework of the identity ecosystem coalesce. 

The two day workshop will feature plenary presentations and panel discussions by leading identity management and standards experts addressing a broad swath of technology and standards issues that surround identifying and implementing the four NSTIC Guiding Principles in the Identity Ecosystem:

  • Identity Solutions will be Privacy-Enhancing and Voluntary
  • Identity Solutions will be Secure and Resilient
  • Identity Solutions will be Interoperable
  • Identity Solutions will be Cost-Effective and Easy To Use


Online registration

Registration Fee: $148.00

Registration fee includes conference materials, refreshments during coffee breaks, lunch and a cash-bar reception with hors d'oeuvres on March 13th


Details pending.

Topics to be discussed include:

– Results of the ISOC Mapping Exercise: The Global Identity Ecosystem
– Privacy Management
– Trust Models
– Usability
 -Viable Business Models for an Identity Ecosystem
– Privacy Enhancing Cryptography Report
– Attributes

Program Committee

Peter Alterman, NIST
Abbie Barbir, Bank of America
Aaron Brauer-Rieke, CDT
Joni Brennan, Kantara
Sara Caswell, NIST
Jim Fenton, OneID
Jeffrey Friedberg, Microsoft
Ian Glazer, Gartner
Jeremy Grant, NIST
Ken Klingenstein, Internet2
Eve Maler, Forrester
Andrew Nash, Google
Elaine Newton, NIST
Karen O'Donoghue, ISOC
John Sabo, CA
Don Thibeau, OIX


Community Cannon: Laws of Identity

The Laws of Identity developed by Kim Cameron are shown here in bullet point form with links to greater depth in the paper about the laws.  These were developed collaboration with the community and involved dozens of people's ideas are incorporated (see their names below).  They were first published serially in the winter of 2005 on Kim's blog and serve as one of the core foundations of the identity communities thinking.

Continue reading “Community Cannon: Laws of Identity”

Community Canon: Identity Lexicon

When we first started forming as a community  there were many different projects working aspects of user-centric identity – and these different projects were using different words to talk about the same things and in some cases the same words with different meanings.  Developing a shared language we used to talk about identity ideas/concepts was one of the first things that happened – so that we could get to coherently talking about the different proposals could converge.

Here is the Lexicon that got developed on the identity gang list in 2005.

This was not meant to be used to talk with "regular people" but rather this community of specialists to talk about detailed specifics of identity systems.

Agent: A computer system or device that has been delegated (authority, responsibility, a function, etc.) by and acts for a Party (in exercising the authority, carrying out the responsibility, performing the function, etc.).

Claim: An assertion made by a Claimant of the value or values of one or more Identity Attributes of a Digital Subject, typically an assertion which is disputed or in doubt.

Claimant: A Digital Subject representing a Party that makes a Claim.

Digital Identity: A digital representation of a set of Claims made by one Party about itself or another Digital Subject.

Digital Identity Provider: An Agent that issues a Digital Identity.

Digital Subject: An Entity represented or existing in the digital realm which is being described or dealt with.

Entity: A person, physical object, animal, or juridical entity

Identity Attribute: A property of a Digital Subject that may have zero or more values.

Identity Context: The surrounding environment and circumstances that determine meaning of Digital Identities and the policies and protocols that govern their interactions.

Party: A natural person or a juridical entity.

Persona: A preexisting Digital Identity that a user through an Agent has the ability to select and use to represent themselves in a given Identity Context.

Relying Party: A Party that makes known through its Agent one or more alternative sets of Claims that it desires or requires, and receives through this same Agent a Digital Identity purportedly including the required Claims from a Digital Identity Provider or other Agent of another Party.