Chris Harding opened the meeting and described the
published agenda. No change was made to this.
Chris then reviewed the status of the Identity Management
activity in The Open Group and the objectives of the meeting.
He briefly described the Trusted Transaction Roaming project.
This aims to leverage the existing mobile telephony infrastructure
to provide evidence of identity and payment capabilities. It is one
of several initiatives that are outside the "big two":
Liberty Alliance and WS-Security.
He went on to review the requirements for identity management
described in The Open Group Identity management Business Scenario,
concentrating on the requirements of the individual, since the next
speaker was to describe identity requirements from the point of view
of a community.
Chris concluded his presentation with a review of recent progress
in the Liberty Alliance.
Eliot Solomon then described the Identity Management Initiative
of the Securities Industry Middleware Council (SIMC) of the New York
Stock Exchange (NYSE).
SIMC has carefully investigated the requirements for identity
management within the NYSE, in order to match those requirements
to available technology.
Eliot described four of the detailed scenarios that SIMC has investigated.
Their next steps will be to investigate available technology.
Ultimately they would like to see standards and common practices
emerge.
Chris Apple gave two presentations.
The first, using material prepared by Gavenraj Sodhi,
gave an update on the WS-Security work.
The second reviewed the requirements for Identity Management
and summarized the progress made by the Liberty Alliance and WS-Security
on meeting those requirements.
Chris Apple then led a discussion which addressed the following areas:
- Problems and issues in implementing Role Based Access Control
within an organization;
- The role of Identity Management in an enterprise;
- The degree of control that an individual can expect to be
able to exercise over information about him or her that is
held by an organization;
- The range and complexity of Identity Management scenarios,
and the kind of framework needed to support them.
The key conclusion was that there will not be a monolithic Identity Management
system, but a toolkit of capabilities that products from a range of suppliers can use to
do identification, authentication, payment, etc. How far the Liberty Alliance and WS-Security
will be provide appropriate toolkits is still open to question.
The next steps are to keep developments in Liberty Alliance, WS-Security and other
initiatives under review, and to start looking at what an Identity Management toolkit should contain, and
at best practice for developing and using Identity Management products.
