IETF Logo Mail Archive

Re: [Din] WSJ article on Identity and Blockchains

"Diego R. Lopez" <diego.r.lopez@telefonica.com> Tue, 10 April 2018 22:40 UTC

Return-Path: <diego.r.lopez@telefonica.com>
X-Original-To: din@ietfa.amsl.com
Delivered-To: din@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4768F12D7F4 for <din@ietfa.amsl.com>; Tue, 10 Apr 2018 15:40:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rJDctcObWMxS for <din@ietfa.amsl.com>; Tue, 10 Apr 2018 15:40:55 -0700 (PDT)
Received: from EUR03-VE1-obe.outbound.protection.outlook.com (mail-eopbgr50099.outbound.protection.outlook.com [40.107.5.99]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6CF0712421A for <din@irtf.org>; Tue, 10 Apr 2018 15:40:54 -0700 (PDT)
Received: from HE1PR0602MB2921.eurprd06.prod.outlook.com (10.175.33.12) by HE1PR0602MB2826.eurprd06.prod.outlook.com (10.175.31.149) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.653.12; Tue, 10 Apr 2018 22:40:51 +0000
Received: from HE1PR0602MB2921.eurprd06.prod.outlook.com ([fe80::2c62:cbc1:f8cb:8662]) by HE1PR0602MB2921.eurprd06.prod.outlook.com ([fe80::2c62:cbc1:f8cb:8662%18]) with mapi id 15.20.0653.015; Tue, 10 Apr 2018 22:40:51 +0000
From: "Diego R. Lopez" <diego.r.lopez@telefonica.com>
To: Thomas Hardjono <hardjono@mit.edu>, Brian E Carpenter <brian.e.carpenter@gmail.com>, "din@irtf.org" <din@irtf.org>
Thread-Topic: [Din] WSJ article on Identity and Blockchains
Thread-Index: AQHTzcUHgLU9VkLMR0+I6ZGjg4OG6aP2sAmAgADGQICAADbKgIACjyKAgACDuAA=
Date: Tue, 10 Apr 2018 22:40:50 +0000
Message-ID: <F9BDB0EA-5527-4844-A6B8-FBDC1FD51876@telefonica.com>
References: <5E393DF26B791A428E5F003BB6C5342AE73F70FC@OC11EXPO33.exchange.mit.edu> <E1f57in-0004gH-Gx@mta0.cl.cam.ac.uk> <CAPaG1Amqd8DehMpvht8zEPzqHg00wqYcUDXb0g-bQebTvbXWzw@mail.gmail.com> <fb88b314-c402-7f39-79ea-01c46fdf16ec@gmail.com> <5E393DF26B791A428E5F003BB6C5342AE7404E4C@OC11EXPO33.exchange.mit.edu>
In-Reply-To: <5E393DF26B791A428E5F003BB6C5342AE7404E4C@OC11EXPO33.exchange.mit.edu>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.c.0.180401
authentication-results: spf=none (sender IP is ) smtp.mailfrom=diego.r.lopez@telefonica.com;
x-originating-ip: [92.103.206.6]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; HE1PR0602MB2826; 7:0scSzTAwvbtwLpfoah9DN7oYJlVcULhkt4N3MJ8LxaIo2AjMxFzrK9Lbm/OuDVzpEBB7FRzgpJypHqpL6A1W5ynV3tIPJ4f1xZIaxq0olig4R03Wx7mJ3lBbX+ouZsSXM8fCVGNHC2aG5ZIAOrhasjuc24l8a6fmHUxl5Ffhm/XGrSSncloy5GL5yVsquoeCam2Jgp7rP0Qw+CwhH9h/ukHah2raBrIw85ZncHvtWCTLiQ3vNfseBKUTQg2qdogu
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:(40392960112811); BCL:0; PCL:0; RULEID:(7020095)(4652020)(8989080)(48565401081)(5600026)(3008032)(4534165)(4627221)(201703031133081)(201702281549075)(8990040)(2017052603328)(7153060)(7193020); SRVR:HE1PR0602MB2826;
x-ms-traffictypediagnostic: HE1PR0602MB2826:
x-microsoft-antispam-prvs: <HE1PR0602MB28261DDC7179A94018847006DFBE0@HE1PR0602MB2826.eurprd06.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(40392960112811)(17744754593026)(244540007438412)(192374486261705)(178670569857331)(85827821059158)(15185016700835)(128460861657000)(81160342030619)(240460790083961);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(5005006)(8121501046)(3231221)(944501327)(52105095)(93006095)(93001095)(3002001)(10201501046)(6055026)(6041310)(20161123560045)(20161123564045)(20161123562045)(20161123558120)(201703131423095)(201702281529075)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(6072148)(201708071742011); SRVR:HE1PR0602MB2826; BCL:0; PCL:0; RULEID:; SRVR:HE1PR0602MB2826;
x-forefront-prvs: 0638FD5066
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(366004)(39380400002)(396003)(346002)(39860400002)(376002)(252514010)(25724002)(23363002)(40134004)(199004)(189003)(186003)(82746002)(966005)(486006)(33656002)(1720100001)(97736004)(2501003)(2906002)(7736002)(5250100002)(6486002)(14454004)(6436002)(6306002)(53936002)(305945005)(316002)(6512007)(229853002)(3280700002)(102836004)(6116002)(81156014)(68736007)(58126008)(26005)(8936002)(110136005)(3846002)(2900100001)(3660700001)(39060400002)(66066001)(786003)(106356001)(36756003)(83716003)(81166006)(6506007)(76176011)(86362001)(11346002)(476003)(105586002)(5660300001)(2171002)(59450400001)(99286004)(478600001)(6246003)(446003)(2616005)(25786009)(45080400002)(53546011)(93886005)(8676002); DIR:OUT; SFP:1102; SCL:1; SRVR:HE1PR0602MB2826; H:HE1PR0602MB2921.eurprd06.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: telefonica.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: hi+Xzs8ldTeK4mLSKEj9hKS0Xk2PdwpwS5UPwocel/cdJ/l08158Ts/eshuGYqKuINHWwL/fJa8gmBHJZ5F4RWf51Ptb5IDWW4cXUO0KU1hw+6VAKwnC/z5eKrrvygJXkYjVCfCTZwImtk4boPaQrPLA8uqwdvVPdGMYM6cszLgzX7u1Is4XxrMcOctUjh9xT6v5HC2EQlfV1cEZGUpzuabM0IYYLf6dyjMcek60Sb2wKknvoytTa3JDv2YoLkSSu7AfG6ppFzs5Hkp7Z2wPkc0pgrsGnsSwT2jfpBuFECU5oxzSOU4bYCWSQigsrE6lWhXWFZyDBpr6dwsZ2kZ2GauMWfG9+LR55KBbqkYPYDYX51zJjSQaTzu90SHRbA1RWMElFHhy3k6o0jNjGuDenBjAGVVL2q5JJlP00c9NZfQ=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-ID: <8D4360496982E143AD3A4795D3F95E86@eurprd06.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Office365-Filtering-Correlation-Id: 1fda5368-94e5-48da-9780-08d59f341ca0
X-OriginatorOrg: telefonica.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 1fda5368-94e5-48da-9780-08d59f341ca0
X-MS-Exchange-CrossTenant-originalarrivaltime: 10 Apr 2018 22:40:50.8008 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 9744600e-3e04-492e-baa1-25ec245c6f10
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0602MB2826
Archived-At: <https://mailarchive.ietf.org/arch/msg/din/ktdghQB5wIZAlyKsV68jR8s1J7s>
Subject: Re: [Din] WSJ article on Identity and Blockchains
X-BeenThere: din@irtf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Discussion of distributed Internet Infrastructure approaches, aspects such as Service Federation, and underlying technologies" <din.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/din>, <mailto:din-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/din/>
List-Post: <mailto:din@irtf.org>
List-Help: <mailto:din-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/din>, <mailto:din-request@irtf.org?subject=subscribe>
X-List-Received-Date: Tue, 10 Apr 2018 22:40:59 -0000

Hi,

I'd recommend the group to have a look around the digital identity concepts the academic networks shaped during the early 2000s, and that are formulated in a global scope by the REFEDS initiative: https://refeds.org/

Be goode,

--
"Esta vez no fallaremos, Doctor Infierno"

Dr Diego R. Lopez
Telefonica I+D
https://www.linkedin.com/in/dr2lopez/

e-mail: diego.r.lopez@telefonica.com
Tel:         +34 913 129 041
Mobile:  +34 682 051 091
----------------------------------
On 10/04/2018, 18:49, "Din on behalf of Thomas Hardjono" <din-bounces@irtf.org on behalf of hardjono@mit.edu> wrote:


    >>> From: Din [din-bounces@irtf.org] on behalf of Brian E Carpenter [brian.e.carpenter@gmail.com]
    >>> ...
    >>> That isn't a marginal case. Tens or hundreds of millions of people
    >>> would need cross-border digital ID these days. Sales argument: would
    >>> help to defeat money laundering.

    Lots of people seem to want to provide digital-identity on a global scale immediately. from day 1.

    Some folks even imagine there will be one huge global blockchain for the entire world :-)

    But there is a lot to be learned from the history how IP routing emerged (e.g. days when
    we only had IS-IS for local routing, not even OSPF).

    Just like there is "autonomous systems" (AS) concept in routing and connected via backbone routing,
    in the area of identity there needs to be the equivalent of an AS.

    I've been calling it "communities" (data communities) for humans and personal data.

    Its by interlinking ASes (communities) do we get scale and get identity services to be globally reachable.

    So anytime I hear about a global blockchain to rule them all, I cringe :-)


    -- thomas --





    ________________________________________
    From: Din [din-bounces@irtf.org] on behalf of Brian E Carpenter [brian.e.carpenter@gmail.com]
    Sent: Sunday, April 08, 2018 9:44 PM
    To: din@irtf.org
    Subject: Re: [Din] WSJ article on Identity and Blockchains

    On 09/04/2018 10:28, Arjuna Sathiaseelan wrote:
    >>
    >> 2/ I though many people in the security community were moving away from
    >> proving identity, towards systems that prove entitlement (i.e. credentials
    >> are on a need-to-know basis, so if you were say 19, you don't need to say
    >> yur age or show id,
    >> but you can't buy a drink in cambridge MA, but you can in cambridge, UK :)
    >>
    >
    > digital id plays a major role for all the KYC/AML - massive market.. + for
    > employment etc..

    Right, but *international* digital ID is a hopeless mess. Just try dealing
    with a USA bank's KYC department when living in New Zealand with a UK
    passport. Nothing works.

    That isn't a marginal case. Tens or hundreds of millions of people
    would need cross-border digital ID these days. Sales argument: would
    help to defeat money laundering.

       Brian

    > like the idea of proving entitlement - works nicely with crypto
    > charities/aid delivery..
    >
    > Regards
    >
    >
    >
    >
    >> bootstrapping something from a BC to provide the credentials is also
    >> problematic, in that
    >> BC needs a PKI to know whether nodes are not sybils, spoofs, etc, so we
    >> have a circular dependance, no?
    >>
    >> maybe i missed an important step, if so, sorry!
    >>
    >>
    >>> Folks,
    >>>
    >>> I thought to share this WSJ article with the DIN group. Relevant in the
    >>> light of recent interest in using BC for identity.
    >>>
    >>> Advance apologies if it offends some people :-)
    >>>
    >>> https://blogs.wsj.com/cio/2018/04/03/digital-identity-
    >> is-broken-heres-a-way-to-fix-it/
    >>>
    >>>
    >>> Below is a link to a PDF version.
    >>>
    >>> http://hardjono.mit.edu/sites/default/files/documents/WSJ_
    >> Digital_Identity_is_Broken.pdf
    >>>
    >>>
    >>> Best
    >>>
    >>> -- thomas --
    >>>
    >>> _______________________________________________
    >>> Din mailing list
    >>> Din@irtf.org
    >>> https://www.irtf.org/mailman/listinfo/din
    >>>
    >> _______________________________________________
    >> Din mailing list
    >> Din@irtf.org
    >> https://www.irtf.org/mailman/listinfo/din
    >>
    >
    >
    >
    >
    >
    > _______________________________________________
    > Din mailing list
    > Din@irtf.org
    > https://www.irtf.org/mailman/listinfo/din
    >

    _______________________________________________
    Din mailing list
    Din@irtf.org
    https://www.irtf.org/mailman/listinfo/din
    _______________________________________________
    Din mailing list
    Din@irtf.org
    https://www.irtf.org/mailman/listinfo/din



________________________________

Este mensaje y sus adjuntos se dirigen exclusivamente a su destinatario, puede contener información privilegiada o confidencial y es para uso exclusivo de la persona o entidad de destino. Si no es usted. el destinatario indicado, queda notificado de que la lectura, utilización, divulgación y/o copia sin autorización puede estar prohibida en virtud de la legislación vigente. Si ha recibido este mensaje por error, le rogamos que nos lo comunique inmediatamente por esta misma vía y proceda a su destrucción.

The information contained in this transmission is privileged and confidential information intended only for the use of the individual or entity named above. If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this transmission in error, do not read it. Please immediately reply to the sender that you have received this communication in error and then delete it.

Esta mensagem e seus anexos se dirigem exclusivamente ao seu destinatário, pode conter informação privilegiada ou confidencial e é para uso exclusivo da pessoa ou entidade de destino. Se não é vossa senhoria o destinatário indicado, fica notificado de que a leitura, utilização, divulgação e/ou cópia sem autorização pode estar proibida em virtude da legislação vigente. Se recebeu esta mensagem por erro, rogamos-lhe que nos o comunique imediatamente por esta mesma via e proceda a sua destruição

v2.23.0 | Report a Bug | By Email