Versions Compared

Old Version 10

changes.mady.by.user Colin Wallis

Saved on

compared with

New Version 11

changes.mady.by.user Colin Wallis

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Greetings folks

...

...............................................................................................................................................................................................................................................................................................................

Happy Holiday Greetings Kantara Community

I hope that for all of us everywhere, there has been at least some respite from the pressures of work that this time for the year can offer, even if we are not directly involved in those festivities ourselves.

The Gregorian calendar is used by many, including Kantara, to close the year, review & reflect, and open the New Year’s activities.  And what a year 2017 has been for Kantara!

It’s incredible what a small team of motivated and dedicated leaders and volunteers across 12 working and discussion groups can achieve, supported by equally motivated and dedicated staff.

A shout-out too, to our Director sponsors CA Technologies, digi.me and Forgerock that supported us with member breakfast events earlier in the year, Forgerock and Saviynt for their sponsorship of the Consumer Identity World Tour pre-conference series, ID.me for sponsoring the editing of Service Assessment Criteria for Kantara’s new all-important 800-63-3 scheme, and thanking in advance iWelcome and digi.me confirmed to sponsor the CMS work group in 2018.

I was reminded of just how much we have achieved as I answered this statement a couple of days ago from a prospective member not connected in any way with Kantara; 'I haven’t seen a lot of activity out of Kantara lately.  Please fill me in if I am mistaken'.

Take a look at this – by any non-profit trade association’s criteria in any industry anywhere in the world, it’s an impressive list of achievements.

Publications: The following 7 and earlier publications were downloaded over 700 times - demonstrably proving Kantara's contribution to the global identity and personal data communities, both members and non members. 

  • UMA 2.0 was developed and has just completed its 2nd 45-day IPR & public review before minor changes and official publication.
  • Consent Receipt v1.0 was published, v1.1 developed and is nearing the end of its 45-day IPR & public review period, with official publication in March.
  • SAML V2.0 Implementation Profile for Federation Interoperabilitywas developedand completes its 2nd 45-day IPR & public review on January 1st, superseding the eGovernment Implementation Profile V2.0 of 2011.
  • Report completed by the eGov Working Group on the Code of Conduct for Relying Parties for services to Government is being prepared for official publication. 
  • Report completed and published by the IRM Working Group on Refining the Design Principles of Identity Relationship Management, building on implementation experience from the original report a year or so earlier with a similar name.  
  • Report completed and published from the Blockchain and Smart Contracts Discussion Group. Here is a quote from a large federal agency employee. "It was a pleasure to read, both well written and informative. (I’ve been reading a lot of BAD blockchain papers and articles lately;-)). The discussion of Smart Contracts is the best I’ve read. I’m going to pass it around to try to counter all the crazy Smart Contracts will solve all our problems talk going around the [entity redacted ] right now".
  • Kantara's Service Assessment Criteria for 800-63-3 at IAL2 & AAL2 for future conformity assessment developed and currently out for 45-day IPR & public review.

New Work Group: Reflecting the needs of industry service providers to be in the best possible position for GDPR, ePrivacy and PSD2, Kantara has launched the first Working Group of its kind on this topic.

Kantara launched the Consent Management Systems Best Practice work group last month, with the generous sponsorship of iWelcome and digi.me.

Events:  Kantara actively participated in and sponsored, or supported its members at the following 20 events;

  • Real Consent and GDPR readiness, London
  • RSA, San Francisco (members breakfast)
  • TIIME Workshop, Vienna
  • Identity & KYC Summit Europe, London
  • ISO/IEC JTC 1/SC 27 Plenary and Working Group Meetings, Hamilton NZ and Berlin, via Kantara's Category C liaison with Working Group 5 
  • Internet Identity Workshop, Mountain View
  • European Identity & Cloud conference 2017, Munich (pre-conference workshop & members breakfast)
  • OECD digital economy, internet security and privacy policy development meetings via Kantara's membership of ITAC that supports OECD nation members
  • Identity North, Toronto
  • Cloud Identity Summit, Chicago (pre-conference workshop)
  • EEMA conference, London
  • MyData, Helsinki
  • Consumer Identity World, Seattle (pre-conference workshop and evening reception)
  • GDPR Summit, London
  • Identity & Access Management Conference, Belgium
  • Consumer Identity World, Paris (pre-conference workshop and evening reception)
  • Consumer Identity World, Singapore (pre-conference workshop)

Incubators and Innovation projects via the Kantara Identity & Privacy Incubator (KIPI) program:

  • Digital Identity Professionals (ID Pro) incubated to self-sustainment June 2017 - the world's first and only industry association for digital identity professional equivalent to the likes of IAPP, ISACA, ISC2 etc. 
  • Mobile Device & Attribute Verification (Lockstep Technologies) via KIPI with partners DHS S&T and Rutgers University. Expected value $800, 000.
  • Derived Credentials via NFC (Exponent Inc) via KIPI with partners DHS S&T and Rutgers University. Expected value $800, 000.
  • ERASMUS federation for OpenID (Gluu Inc) via KIPI with partners DHS S&T and Rutgers University. Expected value $400,000.

Europe-based Entity:

Kantara Initiative, Europe found January 30th in Tallinn, Estonia operating as a non-profit licensee of Kantara Initiative Inc, but legally and financially separate from it.  The entity is in a consortium with 4 other partners to bid for H2020 funding to develop an open-source Privacy architecture, a huge submission effort over the summer .   

As a general trend we are seeing interest in this group arise our of interest in Consent Receipt that topped our downloads again this month

Given the few organizations offering 3rd party confomity assessment services for 63-3 or any other schemeRevamped Trust Framework Operations program: 

In its final development phase, Kantara is extending the scope of Kantara's Trust Framework Operations Program. As you browse the new content on that link, please , given the scarcity of 3rd party confomity assessment and Trust Marks for NIST 800-63-3 Identity Guidelines. As you browse the new content on that link, please take our Survey regarding your current or planned compliance with Identity Management related standards.  Help us to help you!  

Revamped Policies and Membership Structure (effective January 1st):

With all the above activities in flight, it's amazing that leadership and staff managed to further develop Kantara's IPR policy, do a minor revision of the ByLaws, and undertake a major overhaul of the Membership Structure to make it simpler, and fairer, resulting in some downwards adjustments in member fees along with some increases. Online joining by credit card is being prepared for launch early in the New Year, to supplement PayPal and invoice options. 

How do you think Kantara performed and what more should we do in 2018?:  Please take the short survey here:  

As we close in on the end of 2017, Kantara foresees 2018 as a very challenging year for the digital identity and personal data industry on both sides of the Atlantic - the GDPR & PSD2 pertaining to EU residents and changes in the way US federal agencies will procure ditigal identity credential services.  It will be very challenging for Kantara too, as pressure is applied by policy makers on its Trust Frameworks services at the same time as industry demand for new projects to fill in the blank canvas in advance of formal standards relentlessly increases. What better way to open the year then, than with Kantara's first hosted conference in London, the International Privacy Summit, January 29th!

...


Program, Work Group and Discussion Group Updates:

  • You can always keep up with the latest news from the Work Group and Discussion Groups directly off the Leadership Council's Blog.

  • Kantara's Consent Receipt v1.1 is nearing the end of its public review.Last call for comments! 

  • @UMAWG has worked through the comments submitted in its second public review period, and is preparing UMA 2.0 for formal publication. Kantara's UMA protocol is ranked 2nd in Kuppinger Cole's top 10 trends for 2018. And 1st on Kuppinger Cole's list? None other than Kantara's Consent Receipt.  

  • See all of our Specifications, Recommendations and Reports here and awaiting your download from our Reports and Recommendations web repository.   

  • As always, if you have a query or question, staff are only too willing to assist.  Contact them via email.

...

  • Can't make it? Then see us and register at TIIME in Vienna, Austria, Europe's IIW February 5-8th 2018. Experts from across the trust/identity/data protection space will meet at TIIME 2018 in Vienna, Austria. Besides the well-established unconference there are two new events: Federation Boot Camp  (All common architectures for X2Y identity Management in one hour. Crash course in SAML-based WebSSO and beyond (OIDC). If you are new on an FO team or planning to set up a new federation this is for you). And Open Source Software for Identity Management. Evaluating software, trying to improve or enhance existing products? Meet the experts! Tutorial "Shibboleth from an FO perspective" to get practical insight into metadata management and SP on-boarding, Tutorial "Keycloak": Open Source all-in-one IDM solution, Tutorial "Midpoint": Enterprise-scale provisioning, and a Presentation stream "Consumer to Contributor": use cases, updates, road maps and community building for various OSS projects.