Trust and Internet Identity Meeting Europe
11-14 Feb 2019: Workshops and Unconference

User groups and co-located events

Monday, 11.Feb.

Time Title Contents
11:00-17:30 FIM4R Federated Identity Management for Research Workshop
11:00-17:30 IdPy Identity Python User Group (to be confirmed)
Other events t.b.a.

Conference Tracks

Tuesday, 12.Feb., (preliminary schedule)

Track Time Room Contents
SSI 9:00-17:00 Self-Sovereign Identity
Legal 9:00-17:00 Legal Aspects of Identity Management
OSS IAM 9:00-17:15 Open Source Identity & Access Management Projects

Self-Sovereign Identity

Self-Sovereign Identity (SSI) is an emerging paradigm around the idea that digital identity should be created, managed, disclosed, and destroyed by a subject alone, without dependency on an intermediary or central authority. It can be considered an evolution of the user-centric identity concept, but with even stronger assumptions and guarantees. Identity is modeled using a combination of components such as identity wallets, agents on personal devices as well as in the cloud, and decentralized registration and discovery mechanisms built e.g. with blockchains. Proof-of-concepts with SSI are currently being conducted around the world, and standards such as Decentralized Identifiers (DIDs), Verifiable Credentials, DID Auth, and others are emerging.

During the event, you will learn about the roots, principles, and current state of the SSI concept. You will also have an opportunity to take a closer look at the various proposed technical components and protocols that make up an SSI system. You can learn about current concrete projects and initiatives that implement SSI. Finally, there will be opportunities to discuss challenges of SSI, and how SSI can relate to existing identity infrastructure such as OIDC, SAML, WebAuth, eIDAS, etc.

Each session will begin with a presentation of some 20 min. The audience can then explore the topic for longer part of the session interacting with the presenter.

Preliminary agenda, to be confirmed:

Time           Title                Contents Contribution
09:00-09:30 Intro session Introduction session, agenda of the day Chairman; Markus Sabadello
09:30-10:15 Strategy of the Dutch Blockchain Coalition on SSID The Dutch Blockchain Coalition is a consortium of academia, the financial industry, technology companies, the land registry, notaries, medical domain, and many others. The objective is to make Self Sovereign Digital Identity work nationwide in the Netherlands, using the SSID, DID, MSID concepts. After a large set of first POC’s there are tangible results, governance conclusions, whitepapers, and the vision and strategy are carried on at government level. What are these lessons learned, best practices, and challenges? Jacoba Sieders (ABN AMRO)
10:15-11:00 Demo: data sharing in Dutch health care system Together with Dutch industry partners TNO is experimenting in their SSI-lab with components (apps, protocols and principles) to develop the future IT data sharing infrastructure. The traditional way of IT backend integrations between organizations are replaced by an ‘user in the loop’-approach. In this talk TNO will present a demo of provisioning of medical supplies, covering IT systems of the general practitioner, health care insurance and supplier of medical supplies. Oskar will share their experience and the challenges ahead including SSI app ecosystems and Q&A protocol. Oskar van Deventer (TNO)
11:00-11:45 Blockchain on the Move Report on Jolocom's recent pilot project in Antwerp and related work. Kai Wagner (Jolocom/Bundesblock Deutschland)
11:45-12:30 TrustNet and the SSI sandbox in Finland Project overview; Evaluating MyData Principles versus shortlisted DLT providers; DLT-based pilots and PoCs with the joint effort of industry and eGovernment; FIndy - Finnish DLT test infrastructure in works Harri Honko
12:30-13:30 Lunch break
13:30-14:30 Awesome Research Areas in Blockchain and SSI Decentralization is the mantra of many blockchain and self-sovereign systems and because of convenience we see frequently the emergence of agent based system which are at least temporary in control of data or blockchain assets. If we take into account the recent data breaches, it probably best to have no data concentration whatsoever, but this taps into highly interesting and still very much unsolved topics, like: decentralized key-management & recovery, zero-knowledge proofs, user interfaces for lay-users, decentralized storage and long-time quantum security. During this track we will discuss about limitations and the current level of implementation, embracing "radical" decentralization. Thomas Zeinzinger (Lab10)
14:30-15:30 Coffee break
15:30-16:15 W3C Verfiable Credentials/FIDO in Health IS I describe how we enhanced FIDO to support strong authorisation using W3C Verifiable Credentials, and describe the prototype implementation that authorised patients to book and cancel appointments and reorder repeat prescriptions. David Chadwick
16:15-17:00 Eco-System-of-Trust Building an open „Eco-System-of-Trust“ for people, organisations and things (Problem statement; overall concept; what we want to achieve) Sebastian Zehetbauer, Staatsdruckerei
17:00-17:15 Closing session

This track is facilitated by Robert Garskamp, IdentityNext.

Open Source Identity and Access Management Projects

This conference track is for people working on and working with Open Source IAM to to discuss best practices, integration patterns and solution stories about Open Source IAM. For each slot there will be 2-3 very short introductory presentations as input for discussions.

This track is facilitated by Peter Gietz, DAASI International.

Time           Title Speakers
9:00-9:30 Welcome and Introduction Round Peter Gietz (DAASI International)
9:30-10:30 LDAP servers, current status, standard schema extension, interop Howard Chu (Symas/OpenLDAP), Radovan Semancik (Evolveum/midPoint), Arvid Requate (Univention)
10:30-11:30 IDM persistence layer: LDAP or RDBMS Emmanuel Lecharny (Symas/ApacheDS), Francesco Chicchiriccò (Tirasa/Syncope), Peter Gietz (DAASI International)
11:30-12:30 Provisioning, features, standards Peter Pfläging (pflaeging.net), Slavek Licehammer (Masaryk University/Perun)
12:30-13:30 Lunch break
13:30-14:30 Connector framework future (ConnId/Wren:ICF, etc.) Radovan Semancik (Evolveum/midPoint), Francesco Chicchiriccò (Tirasa/Syncope)
14:30-15:00 Coffee break
15:00-16:00 SSO: SAML, OIDC/OAuth2 and CAS: Implementations and interoperability Janne Lauros (CSC/Shibboleth), Misagh Moayyed (CAS), Hans Zandbelt (Zmartzone/Apache webserver)
16:00-17:00 Authorization in different contexts (X-BAC, etc.) Colin Wallis (Kantara/UMA), Slavek Licehammer (Masaryk University/Perun)
17:00-18:00 Open Source Business models and cooperations for IAM Ishara Karunarathna (WSO2), Peter Gietz (DAASI International), Matthew Hardin (Symas)

The agenda with identity-related topics in the area of GDPR, e-privacy and e-evidence is being worked out.

This Track is facilitated by Prof. Nikolaus Forgó, University of Vienna, Department of Innovation and Digitalisation in Law.

Time            Title Contribution
09:00 – 10:30 GDPR and identity management Prof. Nikolaus Forgó
10:30 – 11:00 Coffee break
11:30 – 12:30 Federated authentication systems used by the Austrian Chamber of Commerce Dr. Gerhard Laga, Dr. Walter Hötzendorfer
12:30 – 13:30 Lunch break
13:30 – 15:00 Identity management and commercial/procedural law, exact title to be confirmed Dr. Martin Mirnicki
15:00 – 15:30 Coffee break
15:30 – 17:00 t.b.a.

Unconference

Wednesday, 13.Feb., 9:00-17:30 and Thursday, 14.Feb., 9:00-16:00

The unconference is using an agile format with participant-driven contents, covering the attendees’ current interests. TIIME's format has been designed for solving trust and identity issues, developing and sharing new concepts. If you are looking for a substantial discussion on this subject it is likely that you will meet the right people here!

To get an idea about the contents look at Topics or into the proceedings from previous conferences.

Keynotes

Wednesday

How the Domain Name System can support identification and trust services (Jon Shamah, Alberto Crespo)

This presentation dives into the challenge to build a a global cross-domain trust infrastructure on the domain name service using existing off-the-shelf DNS/DNSSEC implementations. It should be possible to query and combine trust aspects related to identity, business, reputation etc. and understand the assurance the policies provide. Such a system has to be designed with respect to the data protection, security usability and economic requirements of an identity system in mind. The talk will report on the general architecture, and elaborate the concepts that where developed in the LIGHTest project.

Thursday

Trust and IoT (Robin Wilton, ISOC)

Progress on Trust and IoT over 2018, and how it might link to other work on certification and assurance.