ANCR: SiG. 07-21-23

Owned by Mark Lizar
Last updated: Aug 24, 2023
1 min read

Notes on gathering requirements

 

  • AuthC : Notice and Consent Exchange Protocol (Authorization from Consent)

  • Authority – to provide authority from consent for authentication and authorization – Everyone is a A)controller or a b) principal

  • Map the role to the context – in context – you are processor, joint-controller, sub-processor

  1. We need Auth C Document

  2. AuthC- FAPI – Extension  - OpenSource

o   KeyCloak

 

Instructions

  1. OIX Image – Map To it

  2. 27560 – use it – just write an update – for Digital Consent

a.     Use 27560 – in x way

  1. Map this holder, issuer and verifier (and verified data registry)

 

  1. Physical Governance –

o   Laws

o   Physical Access Points

o   Enforcement – economic and civil/criminal/private

o  

  1. Digital -

o   Authorization and authentication requirements

Â