Underlying assumptions
- DI technology could in principle be deployed vertically integrated on a per ecosystem basis - but we are not interested in this approach
- elaborate on the "why" and risks associated with this
- elaborate on the notion of "ecosystem"
- what is our "ecosystem"
- which borders are we crossing, national, sectorial, regional
- We are only interested in deploying DI technology with a strong horizontal integration to achieve interoperation with other ecosystems
- We assume that the EU efforts around eIDASv2/EBSI/EUDI Wallet and such will be a focal point in driving DI technology fostering such horizontal integration in the emerging DI ecosystem (EU and others)
- We are by no means convinced that the new DI ecosystem will be successfully set up in the coming years and we have to prepare for all of those potential outcomes:
- The DI ecosystem will be stepwise implemented and delivers value as hoped for
- The DI ecosystem is a failure and nothing really comes out of it
- The DI ecosystem (or parts of it) is established but not in a way we hoped for (include scenarios)
- We are primarily interested in defining actions we can take as NREN or its umbrella organisation GEANT
- When judging outcomes, we do this considering our core values:
- openness: we want to build our solutions on open standards with no artificial barriers for entry
- inclusiveness: the openness on technical level gets extended on the governance level
- global scale: education and research processes are often of global. National and regional are often not good enough
- authority: we want to keep authority (standards, governance etc.) on our core processes
- The "why" needs more thought
- We assume that our existing ecosystem will be around for quite some time to come and co-exist with the emerging DI ecosystem.
- We have 20+ years of experience and assume leadership in implementing cross-sectorial solutions fit for the purpose (non-AAI credentials like diploma, where we may not have authority over it)
potential output: a whitepaper, and bring it to the attention of relevant stakeholders
Definitions
- Emerging DI ecosystem: The emerging DI ecosystem
Approach
- split the work aligned with the Trust Over IP Model
as per https://trustoverip.org/toip-model/, i.e split into four layers in two stacks → eight work items: T1, G1, T2, G2,... T4, G4 -
but also take into consideration a speciality of our community: we do have a running global identity interfederation that will need to run in parallel for quite some time to come and needs to properly interwork. elaborate each item regarding the following aspects:
Subchapter Description Example The work item a brief description of the topic at hand, map it to "our world" Transformative aspects What will potentially change with respect to our current way of delivering value in general?
And what will change with a particular view to our ecosystem? Include a critical review of our existing ecosystem services and the nature of potential impact on them.
Opportunities Describe use cases in our ecosystem that could potentially benefit from an emerging DI ecosystem
Describe assumptions / requirements towards other players / outcomes etc. to make it deliver value to our ecosystem
Describe actions we need to fulfil as a community (ecosystem) to get such value delivered to our ecosystem
Might this make it easier for NRENs to participate in the ecosystem with less effort?
Risks Describe potential situations or actions of other important stakeholders leading to a failure to deliver value to our ecosystem
This could be linked to external developments but also to our inability to fulfil above actions or to get consensus in our own ecosystem
Engagements Describe (crowdsourced within our group) prior or ongoing activities in our ecosystem relevant to the topic at hand by NRENs and GÉANT
characterise the work items for further individual treatment
with respect to the TOIP-Modelwe want to add a layer to express interworking with the existing global identity interfederation
- we do not see a need to populate the utility layer as the topics can be taken up in the layers above in our case
Tech
ItemCharacterisation Governance
ItemCharacterisation T4 Ecosystem use cases
G4 Ecosystem governance T3 Credentials/Identity information exchanged G3 Governance of credentials/Identity information exchanged T2 Protocol layer, Wallets G2 Governance of protocols and wallets Tx interworking architecture"Wallet-world" - "global interfederation world" Gx Governance aspects of the global interworking architecture