![Page 1: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/1.jpg)
Introduction:Identity Management – Our Perspective
Henry Krasemann, Marit Hansen
Unabhängiges Landeszentrum für Datenschutz //
Independent Centre for Privacy Protection
Schleswig-Holstein, Germany
CACR, Toronto, October 2004
![Page 2: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/2.jpg)
Identity Management – Our Perspective
Overview
• Identity Management – More than Single sign-on??
• Different Ways of Implementation – Different Properties of Solutions
• Outlook – A Glimpse into the Future
![Page 3: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/3.jpg)
Identity Management – Our Perspective
Identity Management –
More than Single Sign-on??
![Page 4: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/4.jpg)
Identity Management – Our Perspective
Category 1:“Account Management”
NOT
Employee
Company
![Page 5: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/5.jpg)
Identity Management – Our Perspective
Category 1:“Account Management”
Company
Employee
PersonnelData
NOT
![Page 6: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/6.jpg)
Identity Management – Our Perspective
Category 2:“Profiling”
Individuals,e.g. customers, citizens
NOT
Organization,e.g. company/
gov. administration
![Page 7: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/7.jpg)
Identity Management – Our Perspective
Category 2:“Profiling”
Individuals,e.g. customers, citizens
PII
NOT
Organization,e.g. company/
gov. administration
![Page 8: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/8.jpg)
Identity Management – Our Perspective
Category 2:“Profiling”
Organization,e.g. company/
gov. administrationIndividuals,
e.g. customers, citizens
PII
Customer relationship
NOT
![Page 9: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/9.jpg)
Identity Management – Our Perspective
Category 2:“Profiling”
Individuals,e.g. customers, citizens
NOT
Customer relationship
Organization,e.g. company/
gov. administration
![Page 10: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/10.jpg)
Identity Management – Our Perspective
Category 3:“Management of own identities”
User
![Page 11: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/11.jpg)
Identity Management – Our Perspective
Category 3:“Management of own identities”
Trustedarea
User
![Page 12: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/12.jpg)
Identity Management – Our Perspective
Category 3:“Management of own identities”
Context-dependent
pseudonyms
Trustedarea
User
![Page 13: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/13.jpg)
Identity Management – Our Perspective
Intermediate Result
Cat. 1 “Account Management”
by organization
Cat. 2 “Profiling” by organization
Cat. 3 “Management ofown
identities”
by user himself supported by
service providers
X
X
![Page 14: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/14.jpg)
Identity Management – Our Perspective
Different Ways of Implementation –
Different Properties of Solutions
![Page 15: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/15.jpg)
Identity Management – Our Perspective
Problem Solution Concept
Confusing and inconvenient handling of my different “identities”
Password Management;
Form Filler
Little knowledge of what others know about me
Anonymity as basis, on top:
Controllability of data flow and of privacy preferences;
Reputation Management
Little control about what I permit from the outside
Reachability Management
Little legal liability;
no protection against Identity Theft
Authenticity
Motivation
![Page 16: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/16.jpg)
Identity Management – Our Perspective
Problem Solution Concept
Confusing and inconvenient handling of my different “identities”
Password Management;
Form Filler
Little knowledge of what others know about me
Anonymity as basis, on top:
Controllability of data flow and of privacy preferences;
Reputation Management
Little control about what I permit from the outside
Reachability Management
Little legal liability;
no protection against Identity Theft
Authenticity
Motivation
![Page 17: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/17.jpg)
Identity Management – Our Perspective
Problem Solution Concept
Confusing and inconvenient handling of my different “identities”
Password Management;
Form Filler
Little knowledge of what others know about me
Anonymity as basis, on top:
Controllability of data flow and of privacy preferences;
Reputation Management
Little control about what I permit from the outside
Reachability Management
Little legal liability;
no protection against Identity Theft
Authenticity
Motivation
![Page 18: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/18.jpg)
Identity Management – Our Perspective
Problem Solution Concept
Confusing and inconvenient handling of my different “identities”
Password Management;
Form Filler
Little knowledge of what others know about me
Anonymity as basis, on top:
Controllability of data flow and of privacy preferences;
Reputation Management
Little control about what I permit from the outside
Reachability Management
Little legal liability;
no protection against Identity Theft
Authenticity
Motivation
![Page 19: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/19.jpg)
Identity Management – Our Perspective
Problem Solution Concept
Confusing and inconvenient handling of my different “identities”
Password Management;
Form Filler
Little knowledge of what others know about me
Anonymity as basis, on top:
Controllability of data flow and of privacy preferences;
Reputation Management
Little control about what I permit from the outside
Reachability Management
Little legal liability;
no protection against Identity Theft
Authenticity
Motivation
State of the Art
+
-
-
±
±
-
+
![Page 20: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/20.jpg)
Identity Management – Our Perspective
Key question:Who is in control?
![Page 21: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/21.jpg)
Identity Management – Our Perspective
Outlook –
A Glimpse into the Future
![Page 22: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/22.jpg)
Identity Management – Our Perspective
Source:Identity Management Systems (IMS):Identification and Comparison Study, September 2003
The Market of Identity Management Systems
![Page 23: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/23.jpg)
Identity Management – Our Perspective
“A Toolkit for Usable Security Freiburg”
![Page 24: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/24.jpg)
Identity Management – Our Perspective
![Page 25: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/25.jpg)
Identity Management – Our Perspective
IdentityManagementComponent:
Pseudonymous Delivery Service
In several countries:“Pickpoints”
at Gas Stations
![Page 26: Introduction: Identity Management – Our Perspective Henry Krasemann, Marit Hansen Unabhängiges Landeszentrum für Datenschutz // Independent Centre for](https://reader035.vdocuments.net/reader035/viewer/2022062422/56649ee85503460f94bf9b7c/html5/thumbnails/26.jpg)
Identity Management – Our Perspective
Further Information
PRIME – Privacy and Identity Management for Europe(Aim: Prototype)
www.prime-project.eu.org
FIDIS – Future of Identity in the Information Society(Network of Excellence)
www.fidis.net
www.uld-i.de