Date post: | 20-Jan-2017 |
Category: |
Technology |
Upload: | kantarainitiative |
View: | 127 times |
Download: | 1 times |
11
Plenary Panel: Who is Driving Change in Payments?
CPA PANORAMA 2010
June 8, 2010
Kantara Workshop at CISA Canadian Perspective
Joni BrennanJune 2016
Desjardins Executive Briefing Dec.2015
22
DIACC Accelerates and Delivers Identity Innovations…
WhyTo enable business and government to enable
trusted digital relationships with velocity.
Our MissionThe DIACC’s mission is to organize market forces to unlock DIA economic and societal
opportunities for Canadian consumers, businesses, citizens, and government.
33
DIACC Membership represents the largest financial organizations, MNOs, federal, provincial, and more
Collaborative Approach:- LoI with Joint Councils of Canada- All provincial CIOs and Service Delivery leads
44
DIACC Members
Join. Collaborate. Trust. Canadian Non-Profit ConsortiaGovernment, Finance, Mobile Network Operators, Software, Service Delivery…
55
Canadians need trustworthy digital identity…• Innovation Agenda & Global Digital Economy• Digital Services Delivery Modernization• Open Government
Drives local and global calls to action for governments and industry / commercial sector.
66
Canadians need trustworthy digital identity…• Innovation Agenda & Global Digital Economy• Digital Services Delivery Modernization• Open Government
Drives local and global calls to action for governments and industry / commercial sector.
77
The DIACC develops components of the Pan-Canadian Trust Framework to standardize the long term strategic trust model in Canada and connecting globally.
DIACC Proof of Concepts (PoC) address real-world challenges by connecting leadership in identity management at home and broad to propose concepts and test their viability for commercial, governments, and research application. PoCs are guided by DIACC’s 10 Canadian and universal principles for a digital identity ecosystem. DIACC PoCs seek to:• learn as quickly as possible;• test concept viability;• identify impacts on individual systems, requirements, and costs;• identify regulatory considerations.
88
We Have a Common ProblemConsumers
87% of Canadians are online Cyber crime cost consumers $3Bn in 2013 Heartbleed, CRA, Target, Home Depot, NRC 71% of Canadians think protecting personal information is/will be very
important in future Passwords suck
Businesses & Government Direct costs of rising fraud rates Indirect costs of fraud: monitoring, audit/investigation, data collection,
security, compliance Cost of service delivery, channels Cost of customer support, password resets, etc. Cost of new product development Increased security hits product adoption rates Reputation risk
99
Canadian Leaders Call to Action
9
Canadian leaders from all sectors must work together to develop a made-for-Canada Trust Framework that accelerates development of trusted identity services solutions for use in Canada and globally.
New models will benefit those who develop them and enshrine the principles of their creators.
Made-in-Canada Solutions Protect
• Canadian Principles• Canadian Business Interests• Canadian Regulatory Model• Canadian Technical Model and Architecture
1010
Canada is Ready!
Three pillars of readiness• Digital Innovation Agenda / Global Digital Economy• Digital Service Delivery Modernization• Open Government
Canada Leads• #2 Globally in readiness for mobile payments
(MasterCard index)• Privacy / Data Protection Regulation• Personal Information Protection and Electronic
Documents Act (PIPEDA circa 2000)• Stable Economy• Culture of competitive cooperation
1111
Canadian Guiding Principles
Principals of a digital identity ecosystem for Canada:1. Robust, secure, scalable2. Implement, protect, and enhance Privacy by Design3. Inclusive, open, and meets broad stakeholder needs4. Transparent in governance and operation5. Provide Canadians choice, control, and convenience6. Built on open, standards-based protocols7. Interoperable with international standards8. Cost effective and open to competitive market forces9. Able to be independently assessed, audited, and subject to enforcement 10. Minimize data transfer between authoritative sources and will not create new
identity databases
Leveraging guiding principles to develop made-for-Canada solutions for world-wide interoperability.
1313
One Model for Canada
Glo ally governments and industry are building technology and policy interoperability
frameworks. EU, US, UK, AU, NZ…
Canadians need a trust model that respects our culture and provides the rules and tools for the
identity layer of the digital transformation.
A Pan-Canadian Trust Framework.
1414
Pan-Canadian Vision
Pan-Canadian Vision (2014): Citizens and businesses enjoy simple, convenient and
secure access to services in a manner they choose and manage
Business Value• Enables a whole-of-government approach for seamless e-
service delivery• Improves client experience and user convenience by supporting
a “tell-us-once” approach• Enables jurisdictions to trust and leverage each other’s identity
management and assurance processes• Reduces the risk that the individual is not who they claim to be.• Reduces identity-related administration costs• Strengthens program integrity
1515
The public and private sector investments in the pan-Canadian Trust Framework will enable Canadian individuals and organizations to transact with confidence
when using digital identification and authentication services.
Standards & Protocols
The technical standards and protocols that must be implemented by the members of a trust community to achieve interoperability.
Business, Legal, Operational PoliciesThe policies that must be followed in order to achieve the level of security, privacy, and other trust assurances that participants in the trust framework desire.
Examples (include): Credential Issuance Authentication requirements Enrolment Reliance Rules Credential management Privacy and security standards Identity proofing
Examples (include): Public Law (IdM-specific law,
privacy law, tort law) Private Law (contracts) Liability for Losses Termination Rights Enforcement Mechanisms Dispute Resolution Measure of Damages
Trust Framework Model Pillars
1616
Address Common ChallengesConnect with Peers: • identify and develop industry standards addressing common challenges• develop Proof of Concept pilots to solve real world challenges
Don’t ask “what services or solutions do you need” Ask “what problems need to be solved”
- Confirm Age Prior to Alcohol Purchase – card/chip readers only verify +/- age and customer picture
- Fill Critical Prescription Online For Delivery
- Access Medical Lab Results History Online
- Access Government Services with a Smartphone or bank chip technology card
1919
2009 2012 2013 2014 2015 2016
Federal Directive on Identity Management
* issued under the Revised Policy on Government Security
FederalGuideline on Defining Authentication Requirements
DIACCformed to enable agile private sector collaboration
FederalStandard on Identity and Credential Assurance
DIACCpartners with “IdentityNORTH” to annually connect Canadian experts
Pan-CanadaPan-Canadian Identity Validation Standard
DIACCRemote Bank Account Opening Proof of Concept
FederalGuideline on Identity Assurance
DIACCPublishes ”Building Canada’s Digital Future”
2012 - DIACC non-profit formed to mobilize private and public sector collaboration on globally interoperable
made-for-Canada verifiable Digital ID solutions
FederalMandate letters prioritize digital service delivery, digital economy, and open government
DIACCDevelops Provincial Residency Proof of Concept & Signs Letter of Intent to collab with Joint Councils for Pan-Canadian Trust Framework
2020
20
FPT Deputy Ministers’ Table on
Service Delivery Collaboration
FPT Clerks and Cabinet
Secretaries
Joint Councils
Identity Management Sub
Committee
Public Sector Service Delivery
Council
Public Sector CIO Council
Digital Identification Authentication Council
of Canada (DIACC)
DIACC Board of Directors
(Public / Private Sector membership)
IMSC Working Groups
DIACC Expert Committees
Public Sector Private Sector/Industry Initiatives
Canada’s Digital Interchange
Immigration Refugee Citizenship Canada / Employment Social
Development Canada
IRCC/ESDC
Identity Linkages Project
CDIWorking Groups
How: Pan-Canadian Identity Trust FrameworkDIACC public & private sector collaborative input to the Pan-
Canadian Identity Trust Framework
2121
Building Canada’s Digital Future
© Content Protected by Digital ID and Authentication Council of Canada Contribution Agreement
Published May 2015
2222
2016 Federal Pre-Budget Submission
© Content Protected by Digital ID and Authentication Council of Canada Contribution Agreement
Published March 2016
2323
DIACC: Calls to Action on Critical Initiatives
© Content Protected by Digital ID and Authentication Council of Canada Contribution Agreement
• DIACC Leaders invest to identify and influence ecosystem roles and objectives• DIACC Create a brand for the Pan-Canadian Trust Framework & principles • DIACC Trusted Services Listing and Verification Program• DIACC Fosters adoption of the Pan-Canadian Trust Framework
Pan-Canadian Trust Framework and Trustmark
• Mid-Term: Private/public matching funds similar to approach by Open Data Institute, • Long-Term: Trustmark program, Membership, and public funding opportunities
Diversify Funding Model
Publish Proof of Concept – Establishing Provincial ResidencyEstablish liaisons with like minded organizations for collaboration (Global)
Industry Engagement and Innovation
Toronto: Member Meeting June 14Toronto: Identity North June 15+16,
Events & Leadership Networking
2424
Connect with DIACC Experts
Chair: Dave Nikolejsin: [email protected] Brennan: [email protected] of Administration: [email protected]
Website: www.DIACC.caTwitter: @mydiacc