I have control

Can we truly own our identity?

Digital identity is a complex subject; as with most digital transformations, taking a process that exists in an analogue world and digitising it for use online doesn’t create a great solution.  A number of models for digital identity exist, and are often spoken about in terms such as centralised, federated, distributed, user-centric, self-sovereign.  There are countless papers by the great and the good of the identity world that talk about the merits and flaws of the varying models.  There’s a school of thought that centralised is bad and self-sovereign is the panacea for digital identity – though often these ideas focus too much on the model and less about the use.  And the arguments are often mired in digitisation of analogue.

Self-sovereign digital identity is a model which:
  • Places the individual in absolute control of the digital representation of themselves 
  • Is based upon the kernel of self that exists in the real world
  • Assures the individual of access to all the data regarding them and provides transparency of how data flows
  • Persists for as long or as short as the individual decides
  • Assures portability and interoperability
  • Functions on explicit user consent
  • Operates sharing based on principles of data minimisation

These are all traits which it is hard to argue shouldn’t be the foundation of any digital identity model – never one to shy away from an argument, here goes:

Places the individual in absolute control of the digital representation of themselves 
Until such time as we plug in to the matrix, a digital identity and the flesh and bone which it represents cannot be linked with absolute certainty.   When the link between the two is, or is reasonably believed to be broken, control of the digital identity must be revoked (either permanently or temporarily).  This introduces a higher power of control over the individual’s identity.

Is based upon the kernel of self that exists in the real world
Identity in the real world is also complicated.  In the real world, our identities are often assigned by central authorities such as governments; or they’re guaranteed by 3rdparties such as our parents; or they’re accepted based upon assigned attributes such as name, address and date of birth; or they’re based upon our DNA.  And more often than not, they’re a combination of all of these.  If our digital identity is based upon our real-world identity it cannot be self-sovereign.

Assures the individual of access to all the data regarding them and provides transparency of how data flows
We should always strive towards openness and honesty.  Yet there are circumstances where we need to keep data hidden and circumstances where its beneficial for the user to do so.  As an example, the organisation who will rely on digital identity are often required to check for fraud and criminality against our identity.  This isn’t information that we should give to the user, yet it is often closely tied to their identity.  So commercially and practically it needs to flow with the identity assertion.  When we give information to an individual, we also have a duty of care not just when that data isn’t correct, yet also when that information risks disenfranchising the individual.  Credit scores used to be information passed from Agency to Supplier about the individual without their involvement.  This changed, and in the last 20 years, they have gone from information that we know, to information that we can actually manage.  Yet for many people, a poor credit score creates exclusion – which leads to disenfranchisement.  If digital identity is to be inclusive, the data that we give back to the individual needs to have the duty of care built in.  We should work towards openness, we shouldn’t dive straight into it without understanding the consequences.

Persists for as long or as short as the individual decides
For some nations, having a government issued identity card is mandatory, for others it is optional or simply doesn’t exist.  Rather than eulogising on which is right, digital identity needs to recognise all models do and will exist, and look to provide a digital identity model which supports mandatory and optional membership of government registers.  Similarly, fraud systems need to persist identity elements to protect from bad actors.  We can offer choice in how long our digital identity as a “thing” persists, on the data that makes it up we can’t.

Assures portability and interoperability
Data portability is a convenience factor that shouldn’t be wilfully restricted.  Identity portability is where the value and complexity lies.  In order to drive the market, the work done in proofing the identity and attribute claims can’t simply be ported from one party to another.  To do so risks separation of effort and reward, which disincentives the commercial efforts required to develop and maintain a functioning marketplace.

Interoperability can only be assured with mutual trust.  Mutual recognition is reliant on the creation and adoption of interoperable standards.  Interoperability of systems should only be required once interoperability of standards is achieved.  We shouldn’t expect that everything interoperates with everything else unless everything is equal.

Functions on explicit user consent
The notion that an individual can explicitly permission what data is shared by whom and with whom is reliant on goodwill that doesn’t exist.  If we are given the choice to share only positive information and withhold anything negative, this is going to be a common choice.  This will restrict the ability for the receiving organisation to rely on the data.  Hobson’s choice (take what’s on offer or nothing at all) isn’t explicit consent for data sharing either.  We should be far more honest with how we define consent, so that a user understands when we need broad consent to search for good and bad information about their identity and when we’re seeking explicit consent to only share attribute X from organisation Y with organisation Z.

Operates sharing based on principles of data minimisation
Users shouldn’t need to understand the principles of data minimisation.  In a self-sovereign model, where they’re free to share their own data as they choose with whomever they choose, they need to understand who they’re sharing their data with and whether they’re only asking for the data they actually need.  In other models, such decisions are made on behalf of the user based upon their own rules -  for example, the Passport Office can permission that “X holds a valid passport” and “X is a Citizen of country Y” to be shared with anyone that the individual wishes; and that “X has passport number 12345678” only with parties which it trusts – which takes away both the control and the responsibility from the individual. 


Self-sovereign identity is a utopia that may never exist based on principles that may be better achieved through other means.  We should focus more on the things that a user needs from a digital identity and worry less about the model that we use to achieve them.  In designing digital identity, if we do so based on principles the user will value, and deliver them in a way which they will engage, we have the opportunity to revolutionise identity for the digital age.  Can we truly own our identity?  Does it matter providing we can assert our identity when we need to, to get things done?

Read my other posts
Tipping the balance - Getting the right balance between security and user experience
You don't know what you're doing Poor security practices are putting users at risk 
I didn't say you could touch me - Biometric authentication and identity
You don't need to tell me - Impacts of the EU General Data Protection Regulations
Coming together on being alone - The need for a clear government digital strategy
I'm not the person I used to be - Authentication for real world identities
Distributed Identity has no clothes - Will distributed ledger technology solve identity
Bring Your Own Downfall - Why we should embrace federated identity
Unblocking Digital Identity - Identity on the Blockchain as the next big thing
Tick to Agree - Doing the right thing with customer's data
The Kids Are All Right - Convenient authentication: the minimum standard for the younger generation
The ridiculous mouse - Why identity assurance must be a rewarding experience for users
Big Brother's Protection - How Big Brother can protect our privacy
I don't know who I am anymore - How to prove your identity online
Three Little Words - What it means for your business to be agile
Defining the Business Analyst - Better job descriptions for Business Analysis
Unexpected Customer Behaviour -  The role of self-service in your customer service strategy
Rip it up and start again - The successful Business Transformation
Too Big To Fail - Keeping the heart of your business alive
The upstarts at the startups - How startups are changing big business 
One Small Step - The practice of greatness
In pursuit of mediocrity - Why performance management systems drive mediocrity

About me

Bryn Robinson-Morgan is an independent Business Consultant with interests in Identity Assurance, Agile Organisational Design and Customer Centric Architecture.  Bryn near 20 years experience working with some of the United Kingdom's leading brands and largest organisations.

Follow Bryn on Twitter: @No1_BA



Connect with Bryn on Linked In: Bryn Robinson-Morgan
Source: bryn blog

Buy stromectol mastercard stromectol 3 mg preis

5 stars based on 103 reviews
Many women who have PCOS will be diagnosed with insulin resistance or type 2 diabetes. It contains a cyclohexane ring bound to a methylamino chain CH 3NH 2. If you ever want to take some of the load off, I’d really like to write some material for your blog in exchange for a link back to mine. He also has extensive experience in advanced cataract surgery techniques, stromectol buy canada including premium IOLs that correct presbyopia and astigmatism.

With the pain came a sudden relief and on the end of the syringe nozzle was a huge glob of wax and tissue paper that must have been laying dormant for months to years. Enviamos contra reembolso a toda España e islas. [188] Throughout the film, she was seen suffering from chronic pain, which was later revealed to be the effect of a long-term condition called fibromyalgia. A dose máxima usada por longo prazo em estudos clínicos controlados foi de 80 mg por dia. However, in certain cases, taking a course of antibiotics to treat a urinary tract infection, an ear infection, or pneumonia may have an unintended and even long-lasting effect. And already I promised myself to do anything to get cured. However, buy stromectol mastercard VEMP also now can be helpful in differentiating the clinical presentation of migraine vs Meniere’s syndrome or BPPV. However, stromectol online free states violate defendants' Sixth Amendment right to trial by jury in capital cases when they authorize the sentencing judge alone to determine the presence or absence of aggravating factors required for the imposition of the death penalty. • les antifongiques dont le nom se termine en « azole » (par ex. I find that retin a noticeably decreased the oil production on my skin, so I had to switch to richer moisturizers. Fiber is often recommended to help with constipation. Dat is bijvoorbeeld efficiënt bij de ziekte van Wegener, stromectol price de ziekte van Behçet, lupus erythematodes, reumatoïde artritis, multiple sclerose, bij sommige vormen van glomerulonephritis, enz. "You have to start this whole process all over again – even if you go off metformin for just a few days, ivermectin stromectol cost" he says. "In many cases," says Ross, "the depression exists because the anxiety is so draining. This risk is greater in people with certain lung diseases. In addition, buy stromectol mastercard this law includes an unprecedented package of four water settlements benefitting seven tribes and their members in Arizona, Montana, and New Mexico. I would focus on controlling the breakout right now since these can also produce discolorations. It is usually recommended to start with a dosage of 10mg (half a pill). The primary concern of its customers—quarries that blast rock for use in landscaping and construction—was to meet well-defined specifications while minimizing costs.
ivermectin stromectol 3mg
The only way you might possibly be able to work the “pure failover” angle is if the only time guests ever moved was in response to a complete host failure.

Other small clues seemed to point to Graf’s guilt. Pour le être, buy stromectol mastercard il existe examiner à un mètres post de pharmacie en provoquant une prix trial ed set extreme québec volontariste.

Stromectol 3 mg side effects


L'attività antiparassitaria delle tetracicline, buy stromectol mastercard infatti, è in alcuni casi spiegata dalla presenza, in taluni organismi (per es. Participants are drawn from secondary mental health care settings including outpatient youth mental health, early detection, and early intervention services, youth, social and educational services, and primary care mental health services in the three centres in East Anglia (Norfolk and Suffolk), Sussex and Greater Manchester. In a separate analysis of the ONTARGET renal outcomes, the rate of the composite primary renal outcome of dialysis, doubling of serum creatinine, and death was similar with ramipril and telmisartan alone (13.5% vs. Many women experience sexual dysfunction, buy stromectol mastercard lack of sex drive and/or poor sexual performance, but are too embarrassed to openly talk about it. General Function Zinc ion binding Specific Function Reversible hydration of carbon dioxide. i know i got that myself...and the advise to every side effect you encounter is the same- tell your Dr. It is not approved for treating depression in children. This reflects the name of the strain designation GG. Aside from that, however, it is also popular for its off-label uses as it is able to treat anxiety, withdrawal symptoms caused by alcoholism, neuropathy related to AIDS/HIV as well as many other types of neuropathic pain. Le composant actif contenu dans ce médicament est sildénafil citrate. Surgical success, buy stromectol mastercard patient satisfaction, and economic cost. Viagra agisce rilassando i muscoli, aumentando il flusso di sangue al pene.

These side effects may be more noticeable when getting up from a sitting or reclining position. Under Virginia's system of "equitable distribution," the court is not required to divide the marital property on an equal basis. Vaya por dios que mala suerte, omnicef 300 mg posologie pues nada cojo el teléfono y llamo al fnac donde me pasan con servicio postventa y me atiende una chica. Nota: Este epígrafe comprende la preparación (gasificación, etc.) y envasado de aguas minerales naturales en las fuentes manantiales.

Stromectol order online


Why do I have pain in back of my head with blocked ears ... Kamera s health marcellus studien zu montieren und. I only started using tretinoin right on my eyelids in the past couple of years, where to buy bactroban in canada and it has noticeably tightened up the loose skin. However, buy stromectol mastercard similar to Viagra, Kamagra Oral Jelly may in few instances can cause unwanted side effects. With short-acting drugs such as morphine or heroin, stromectol 3 mg dosage withdrawal symptoms may appear within 8-12 hours of the last dose of the drug, reach a peak at 48-72 hours, and clear after 7-10 days. I have heard excellent things about blogengine.net.

The unwanted of this vitamin could be extremely dangerous to the kid. glabrata was thought to be a primarily non-pathogenic organism. Listerien, erythromycin metronidazol 400mg gelangen von Tieren oder deren Produkte (z.B. It was concluded that the antibiotics ampicillin, ciprofloxacin, clarithromycin, doxycycline, metronidazole, ofloxacin, roxithromycin, temafloxacin, and tetracycline did not alter plasma concentrations of OCs. AF007865.2) using the CLC Main Workbench v.5 software. I was wondering if you ever considered changing the structure of your website? The Administration has formed a government-wide Interagency Council on Homelessness, stromectol 3 mg effets secondaires consisting of the Secretaries of Housing and Urban Development (HUD) (chair), Labor (DOL), Agriculture, Commerce, Education (ED), Energy, Health and Human Services (HHS), Homeland Security (DHS), Interior, Transportation, and the Veterans Administration (VA), as well as the Attorney General and Commissioner for Social Security, to address this critical issue.

Buy stromectol ivermectin


Intraperit tox data are not trustworthy as well, buy stromectol mastercard one has to inject such unholy amount of drug, that mice finally dies from sort of bursting, and not from drug itself. Most recently, I thought I would never be able to enjoy all the colors of life, due to the erectile dysfunction.
stromectol buy 2014
The table would be set with any manner of meats, buying generic valtrex online bread, butter, pickles, cheese and tea. For patients on ritonavir therapy that require treatment with ADCIRCA, buy stromectol mastercard start ADCIRCA at 20 mg once a day. Which one of the following should be performed at this time? ACE inhibitors may enhance the hypoglycemic effects of insulin by improving insulin sensitivity. It holds the medicine in the chamber long enough for you to inhale the medicine in one or two slow, buy inderal 40mg deep breaths. The adaptation that permits survival in chronic hyponatremia also makes the brain vulnerable to injury from overzealous therapy. This happens because Candida has been producing toxins in your body for years. Ao carregar em "Aceitar", buy stromectol mastercard está a consentir a sua utilização. Olympic team, and provided training facilities and housing for wrestlers on his Pennsylvania estate. Somente contratos celebrados depois de 03/04 tem obrigatoriedade de registro no TCE. However, during an asthma attack, the muscles around these airways tighten.

Cryptococcal meningitis is an infection and inflammation of the tissues covering the brain and spinal cord. Mucocutaneous candidiasis and cryptococcal meningitis are opportunistic infections of HIV.

You don’t need to tell me

You don’t need to tell me

In May 2018 the European Union’s General Data Protection Regulations (GDPR) will come into force, replacing the existing Directive 95/46/EC, which will be repealed.  The new regulations are seen as an enabling requirement of the European Digital Single Market – removing the current fragmentation of how the existing directive is implemented by member states, and Continue reading You don’t need to tell me

I didn’t say you could touch me

I didn’t say you could touch me

The use of biometrics in user authentication is thriving with fingerprint sensors becoming more common and technology evolving for reliable facial and voice recognition being used within apps.  Next generation smartphones may also contain iris scanning capability thanks to micro form factor components that can be included in the existing footprint.   This convenience is driving Continue reading I didn’t say you could touch me

You don’t know what you’re doing

You don’t know what you’re doing

Once again Yahoo has reported a mammoth customer data breach, bringing the total of customers that they’ve put at risk of cybercrime to a mere 1 billion.  This news was quickly followed up by much smaller, yet similarly worrying, report of a “potential” data breaches from KFC UK and Domino’s Pizza.  KFC were keen to Continue reading You don’t know what you’re doing

Practical Change

Why is it that so many change and transformation projects fail? Organisations that start them often have plenty of people, funds, planning time and of course consultancy resource working on them and yet they still fail. Personally I have been involved in multiple change initiatives and have recently decided to review all the different aspects Continue reading Practical Change