Versions Compared

Version Old Version 3 New Version Current
Changes made by

John Phillips

Jo Spencer

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

This TF schedules meetings as needed. Each meeting will be announced on the GSWG mailing list and the #governance-architecture-tf Slack channel.

The meetings (and Zoom links) are available on the ToIP meeting calendar:
https://zoom-lfx.platform.linuxfoundation.org/meetings/ToIP?view=month

...

  • John Phillips (Sezoo) initiated the meeting by reading out the antitrust policy. He explained the work done with the NSW government on a governance framework for their digital identity and verifiable credentials program. He highlighted the charter's focus on trustworthy interactions across independent ecosystems and cross-ecosystem governance. He sought feedback on presenting the NSW example. John addressed Neil's observation about the role of holders in cross-ecosystem trust. He clarified that the work on the NSW governance framework was a collaborative effort. He noted the absence of a holder requirements document, unlike the issuer requirements specification. John referenced the eIDAS framework and its efforts to define requirements for wallets. He used the example of his digital driving license from Victoria being presented in New Zealand to illustrate cross-ecosystem governance and the potential interest of verifiers in wallet governance. John emphasized that the charter is a changeable document. He highlighted the drift towards governments issuing certified identifiers, potentially sidestepping the issue of holders proving control of their own identifiers. John pointed out that digital identity wasn't legally recognised in Australia until the recent Digital ID bill. He then proceeded to share the work done with the NSW government, explaining their approach using the Trust over IP metamodel. He discussed the complexity of governance even within a single state like NSW, with multiple government authorities. He illustrated this with the example of issuing a first aid certificate. John explained how each credential has its own lifecycle. He went through various aspects of the governance framework considered for NSW, including terminology, localization, authority, administering authority, purpose, scope, objectives, general requirements, revisions, and extensions. He noted that the metamodel allows the recognition of other governing frameworks. John discussed the glossary and the challenges of maintaining consistent definitions across ecosystems. He also touched on risk assessment, trust assurance, certification, government requirements, and business requirements, including the sustainability of the governance framework. He mentioned the challenge of determining which minister would be responsible for the governance framework. John briefly covered technical requirements, information trust, legal agreements, holder governance, issuer requirements, verifier requirements, credentials, wallets, agents, applications, and the alignment of physical and digital credentials. He promised to seek confirmation for releasing the NSW governance framework document. John reacted with laughter to the initial formal reading of the antitrust policy. He replied to Neil's question about NSW's definition of digital identity by discussing the legal and practical perspectives, referencing the Australian Digital ID bill. He agreed with Neil on the usefulness of use cases . John proposed creating a Wiki page for example use cases related to the four deliverables . He clarified the nature of the Wiki page . He suggested linking use cases to specific deliverables . John also provided context to Jo's response regarding New South Wales' definition of digital identity .

  • Neil Thomson (QueryVision) observed the absence of discussion around holders in the context of cross-ecosystem trust. He questioned the mechanisms for holders to prove their identity and control of credentials across different ecosystems. Neil agreed that considering the holder is necessary when discussing verifiers and cross-ecosystem governance. He confirmed that there was an intent to create a holder requirements document. Neil noted the trend of governments issuing certified government identifiers. He agreed with John on the possibility of mutual recognition between ecosystems with good governance. Neil concurred with the assessment of risk assessment being a medium effort due to existing government processes. He raised points about holders potentially paying for secure wallets and the role of biometric binding. Neil asked what NSW considers to be digital identity. He reacted with laughter to Sankarshan's comment about the antitrust policy reading. He agreed that use cases might assist . Neil supported the idea of creating a shared document for use cases . He suggested one-line statements for use cases and mapping them to the four deliverables .

  • sankarshan mukhopadhyay (Dhiway Networks Private Limited) made a lighthearted comment about the formal antitrust policy reading. He highlighted the point that holders receiving credentials may not know their confidence or assurance level, while verifiers have mechanisms to determine trust. He suggested that holders don't have much influence in determining the outcome of presenting credentials. Sankarshan inquired about increasing the magnification of the shared document. He agreed that digital foundational IDs require sustainable funding models after initial philanthropic or World Bank support ends. He mentioned that birth, death, and marriage certificates are paid for in India. He noted that this could be a barrier for economically weaker sections, addressed by government subsidies. Sankarshan recalled the responsibilities of a passport holder as an example of defining holder responsibilities. He suggested critically examining the completeness of the Metamodel regarding cross-ecosystem exchange, noting its age.

  • Jo Spencer (Sezoo) highlighted that NSW has existing administrative policies and governing frameworks that the digital credential system needed to fit into. She He agreed with the optimism being potentially overstated regarding the ease of communicating the purpose of the governance framework. Jo noted that the NSW government ended up facing legal and legislative challenges due to not fully considering the governance framework early on. She He discussed the sustainability challenge, particularly regarding pricing models for digital versions of documents like birth certificates. She He pointed out the potential for digital credentials to cannibalize existing revenue streams. Jo emphasised the two models for sustainability: the ecosystem of credentials and the cost of governance. She He agreed that the NSW government needed to do serious thinking and make decisions about governance. Jo mentioned the NSW government's initial focus on a proof of concept. She He shared a realization that establishing a verifiable credential ecosystem might ideally avoid or minimise touching the complicated digital identity space. Jo highlighted the shift from a program build process to a run process and the lack of framework guidance on this. She He presented diagrams illustrating the multiple layers of governance involved. Jo explained that the complexity of the governance thinking likely overwhelmed the NSW government. She He clarified to Neil that NSW considers the digital identity to be the user's credentials or record within the NSW government systems. She He agreed that each agency often has different records for individuals, adding to the complexity.

...