Page 58 - ITU-T Focus Group Digital Financial Services – Technology, innovation and competition
P. 58

ITU-T Focus Group Digital Financial Services
                                              Technology, Innovation and Competition






                   Examples:      Samsung , Apple 2
                                         1
                   1   http:// www. samsung. com/ uk/ consumer/ mobile- devices/ smartphones/
                   2   https:// www. apple. com/ uk/




               3.3    Authorisation technologies

               Advances in authorisation activities are focused on the standards surrounding the data exchanged during digital
               identity transactions. The use of more advanced technologies is enabling previously excluded individuals control
               over an increasingly complex range of attribute sharing capabilities. It is essential that industry standards evolve
               to protect users’ rights to privacy and bridge the gap between consumer understanding and the commercial
               use of personal data.

               Recent movements within the authorisation domain have ranged from the standardisation of basic logon
               mechanisms (such as those provided by OpenID, and Connect), towards the more nuanced requirements of
               managing what data is shared and when. In 2015 the Kantara Initiative published “User Managed Access”
               standards, representing an example of what future mechanisms might look like . The initiative utilises an
                                                                                   16
               OAuth-based protocol designed to give an Internet user a unified point for authorising who and what can get
               access to their online personal data, content and services. However, it is too early to determine whether the
               adoption of such standards will be widespread.

               Adoption of intricate authorisation mechanisms in the developing world has additional barriers to overcome,
               in the form of access to compatible personal devices and (as previously mentioned) lower literacy levels. As
               such, it is likely to be essential, for the foreseeable future, to adopt solutions that do not rely so heavily on
               user management.



                   Examples:      Kantara initiative User Managed Access 1

                   1   https:// kantarainitiative. org/ confluence/ display/ uma/ Home







               4      Digital identities for DFS



               4.1    Customer registration

               It is the accepted norm that a customer cannot be registered for a financial service (including DFS) without
               providing some form of identity documentation; and the provision of a properly authenticated foundational
               digital identity is the gold standard for this. This is particularly valuable where, as is the case with Aadhaar and
               other similar services, additional attributes (name, address, etc.) are returned by the identity scheme to the
               bank/DFS operator, for comparison with documentation provided by the prospective customer.









               16   https:// kantarainitiative. org/ confluence/ display/ uma/ Home



                44
   53   54   55   56   57   58   59   60   61   62   63