The Identity Ecosystem Steering Group approved baseline requirements for the Identity Ecosystem Framework, a set of minimum conditions for Identity Ecosystem participants in four key areas: privacy, security and resiliency, interoperability and user experience
As identified in the National Strategy for Trusted Identities in Cyberspace, successful establishment of the framework is a must-have in the ongoing successful development of online commerce, government efficiency, and effective and efficient communication among and between individuals, the private sector, and the public sector.
The requirements will serve as the basis for the IDESG’s Self-Assessment Program—which is targeted to be operational later this year. Under this scheme, identity service providers and relying parties will be able to self-assess their own policies, procedures, and operations to the baseline requirements and attest to conformance to them.
The IDESG will offer a public listing service for those organizations that self-assess and determine conformance to the baseline requirements. The model, requirements, Trustmark program scope, and scoping statement will comprise the initial version of the IDEF as envisioned in the strategic plan.
The IDESG Privacy, Security, Standards, and User Experience Committees, along with the IDESG Framework Management Office, have been working to develop the baseline requirements since 2014. The Self-Assessment Program is intended to enable those service providers to apply the requirements to their own operations to determine where they meet the requirements—and to identify areas that may need some focused attention in order to conform to the baseline in the future.
The baseline requirements are currently in the form of a set of requirement statements; the IDESG working committees are developing supplemental information for each of the requirement statements to further clarify and explain the requirements — and how they can be met. The supplemental information will help explain the requirements to all audiences, but, in particular, is intended to help guide those organizations that intend to perform self-assessments against the requirements later this year. This supplemental information will be part of IDEF v1 release later this year.
The next IDESG plenary will take place at the Tampa, Fla. on Sept. 24 and 25 — co-located with the Global Identity Summit.