Page 75 - ITU-T Focus Group Digital Financial Services – Technology, innovation and competition
P. 75

ITU-T Focus Group Digital Financial Services
                                              Technology, Innovation and Competition



               A.5.2  Brokered credential service provider model summary

                                              Brokered credential service provider
                Description      Identification and authorisation activities are left to the service provider. The CSP focuses
                                 specifically on establishing reliable credentials that can be used transactionally to assert an
                                 already established identity.

                Strengths        •    Transactions between service providers are less easily linked;
                                 •    No attribute data is exchanged during identity transactions;
                                 •    Simplifies access to service providers.

                Weaknesses       •    Does not enhance inclusion;
                                 •    Specifically focused on authentication;

                                 •    Potential for central hub to link transactions depending on how system is
                                      implemented.

                Examples         Canadian credential broker service



               A.5.3  Personal identity provider architecture
               In the personal IDP model, a personal data store controls the ways in which previously collected identity
               attributes are shared. It achieves this by encrypting data using keys under the control of the individual. Attributes
               held within the store are signed by a trusted third party such as a bank or a mobile network operator in order
               to verify their accuracy. Figure 13 illustrates the personal IDP model architecture.

               Figure 13: Personal identity provider architecture

























               A.5.4  Applications within DFS

               The benefits of the personal IDP model are situated mainly around user privacy and control. However, in the
               absence of trusted automation the model imposes a significant requirement on the citizen to administer access
               consistent with their understanding of privacy implications. In low literacy economies, such as Burkina Faso ,
                                                                                                        41
               the integrity of this type of system is likely to be undermined in the wake of convenience. Furthermore, the
               necessity for consumers to have access to a means of administration for the data store adds further argument
               to suggest the solution is more appropriate for developed markets.



               41   https:// www. cia. gov/ library/ publications/ the- world- factbook/ fields/ 2103. html#wa



                                                                                                       61
   70   71   72   73   74   75   76   77   78   79   80