2023-02-09 GSWG Meeting Notes
Meeting Date
The GSWG meets bi-weekly on Thursdays at 11:00-12:00 PT / 18:00-19:00 UTC. Check the ToIP Calendar for meeting dates.
Zoom Meeting Recording
Attendees
Main Goal of this Meeting
1) Update on ToIP Governance Design Planning document
Agenda Items and Notes (including all relevant links)
Time | Agenda Item | Lead | Notes |
5 min |
| Chairs |
|
5 mins | Review of action items from previous meeting | Chairs | |
5 mins | Announcements | All | |
5 mins | Update on Governance Task Forces | Drummond Reed provided an update on the progress of the Trust Spanning Protocol TF and the Trust Registry TF (a focus of Governance Architecture right now). Both groups are "on fire" with great participation and fast-moving discussions. Both have a long ways to go to be at final specifications, but progress is excellent.
Drummond also gave a short update on the launch of the OpenWallet Foundation, which is coming up on Thur February 23. The ToIP Foundation is planning to be an Associate Member, and a number of ToIP member companies are joining. | |
20 mins | Update on ToIP Governance Design Planning document | Scott Perry will discuss the ToIP Governance Design Planning document he has been working on with Savita Farooqui | |
5 mins |
| Chairs |
Minutes
55-135
Introduction
Scott Perry reminded all attendees to abide by the antitrust policy and to refrain from participating in activities prohibited under antitrust and competition laws.
Scott Perry announced the new Vice-Chairs, Steven and Keerthi, who will be joining the meeting. He also mentioned that Savita will be back from India in mid-February.
Additional announcements:
Drummond:
Neil:
136-162
Discussion
- Latest revision to NIST 863, the digital identity standard
- Overview of the Cantera initiative and its contract with the Federal Government
- Update on Canadian National digital identity standard, CIOSC N10.3.1
Summary:
Scott Perry provided an update on the latest revision to NIST 863, the digital identity standard. He mentioned that NIST has been promoting a public comment on the revision and that his firm, Shelman, is an auditor under the Cantera initiative. The focus of NIST 863 is primarily on serving US agencies, but it could be used in other areas such as government, corporations, and citizenry. Perry also discussed the improvements made in the areas of identity proofing and authentication, as well as federation standards.
Scott Perry informed the group that the Canadian National digital identity standard, CIOSC N10.3.1, has finished its review period and is ready for publication. He added that he had the opportunity to comment on the standard and some of his comments were accepted. Perry expects to see news about the publication of the standard in the next few months.
163-229
Summary
Dan Bachenheimer mentioned a presentation he was asked to give at the next steering committee on 800-63 r 4.
Scott Perry offered to work with Dan before the presentation to learn from his perspective.
The discussion focused on the lack of self sovereignty and decentralized digital identity constructs in 800-63.
Scott Perry mentioned his background in working with the Federal Government and the focus on government processes rather than implementing digital identity for citizens.
Action Items Below:
- Dan Bachenheimer and Scott Perry will work together before the presentation on 800-63
- Scott Perry will reach out to Kenneth Myers to better understand the focus of the United States around digital identity.
230-258
Discussion
- on the CIO Strategy Council and its recent changes
- Progress and future plans for the Digital Governance Council
Summary:
Neil Thomson provided background information on the Canadian Standards Council and the Digital Governance Council.
The Digital Governance Council has recently changed its name from the CIO Strategy Council and updated its website.
Neil has been working as a contributor to the CIO Council and has noted that the council has a lot of high-level, generic digital identity information.
The council is in the process of scoping out more work, including a companion document and regulation.
Scott Perry informed that the council is planning to build different subtopics, starting with digital identity and trust.
The first ratified document is still at a high level, but a start has been made.
There is a lot of international participation in the council.
259-343
Discussion
- Work in progress document started by Scott Perry and Savita
- Call for action on moving the effort forward
Summary:
Scott Perry introduced a work in progress document that he started with Savita, co-chair of the Government Stack Work Group. The document has now transformed into a potential new project for the governance working group. Scott went on to present the background of the document, explaining that it started with a focus on the governance processes involved in a collaborative construct like blockchain, which applies to decentralized identity and verifiable credential networks.
Scott explained that Savita, who runs a working group within the IEEE on governance of blockchain, merged her viewpoint with the governance meta-model to create a governance framework for trust over IP. He also mentioned that Weeks Street and Juice have contributed to the document.
Scott then shared the link to the document and encouraged everyone on the call to access it, edit it, and add their name and affiliation to it, to get recognition for their participation. The document started with a background section to set the tone of why it was being created, followed by an explanation of trust over IP constructs around the digital governance trust diamond and the stack and meta-model.
In conclusion, Scott asked for calls for action on how to move this effort forward.
Action items below:
- Access the work in progress document and add name and affiliation.
- Move the effort forward by contributing to the document.
344-413
Summary
Scott Perry presented the efforts made to provide a solution for visitors to access multiple museums for one price. He mentioned that it is a common practice in the market, but there are limitations with the existing structures.
The digital museum card was discussed, including the governance and challenges of the card.
Scott suggested that a museum pass would be a better solution as it is a familiar concept for the audience. The idea was to digitize and operationalize the physical museum cards through cryptographic components to improve trust.
The proposal was to implement a one year card system at the Drummond Arts Center, which would allow the card holder to visit other museums like Fleen and Natural History Museum for no additional costs.
The process of the card creation was driven by a tourist board, with a vendor's help, but there were limitations around the card, including the fact that it was a bearer card.
Scott discussed how the solution aimed to make the card more personal to an individual and change the way shared access cards (e.g., Netflix) are perceived.
Some names were mentioned in the presentation for fun, with the idea to honor members of the community.
The discussion around the card was concluded by Scott mentioning the key role of the tourist board in funding and overseeing the activity as a funding agent of the city.
414-477
Discussion:
- Systems architecture and governance framework for trust registry and verifiable data registry
Summary
Scott Perry presented his first attempt at identifying the components of the trust registry and verifiable data registry. He discussed the trust model that included issuers, verifiers, and holders and the need for a system with a trust registry and verifiable data registry. He also talked about the need for a governance framework that is driven by a risk assessment and the importance of identifying the roles and responsibilities of the holder, user, issuer, and verifier.
Neil Thomson commented on the presentation and mentioned that he has been connecting with people in Ottawa who are experts in Microsoft's main ledger/registry (active directory) and a white hat hacker. He expressed his concern about the potential risks and compromises that can happen with the trust registry.
The meeting ended with Scott Perry encouraging the participants to read his presentation and to have further discussions on how to structure the governance framework to fill out the governance stack.
Action Items below:
- Read Scott Perry's presentation
- Have further discussions on structuring the governance framework.
Minutes Prepared by: ChatGPT
- Roughly cleaned transcripts
- Open https://chat.openai.com/
- Type "write meeting minutes from the following transcripts" & press <shift>- <enter>
- The input & output/response have a character limit, so you have to copy/paste a meaningful chunk at a time. For example: sections 55-135 and 136-162.
- Press <Send> icon
Decisions
Action Items
- Dan Bachenheimer and Scott Perry will work together before the presentation on 863
- Scott Perry will reach out to Kenneth Myers to better understand the focus of the United States around digital identity.
- Access the work in progress document and add name and affiliation.
- Move the effort forward by contributing to the document.
- Read Scott Perry's presentation
- Have further discussions on structuring the governance framework.