Privacy in Practice
Facebook X LinkedIn

Privacy in Practice

Combined Session
Thursday, May 11, 2023 14:30—15:30
Location: C 01

Building Identity Bridges: Where Digital Identity and People's Expectations Meet.

This presentation will bring together and report on experiences in developing identity and privacy standards that are technically feasible but that also address the lived experience of people trying to negotiate a complicated digital identity space.

This will include an update on the Kantara Initiative Privacy Enhancing Mobile Credentials Work Group, as well as identity consideration in some recent virtual care and electronic health records standards. This will consider the impact of self-sovereign identity on the possibilities for reclaiming individual autonomy.

Building Identity Bridges: Where Digital Identity and People's Expectations Meet.
Event Recording
Building Identity Bridges: Where Digital Identity and People's Expectations Meet.
Click here to watch the recording of this session. Please note that this video is only available to event participants and subscribers. You'll need to log in to watch it.
Building Identity Bridges: Where Digital Identity and People's Expectations Meet.
Presentation deck
Building Identity Bridges: Where Digital Identity and People's Expectations Meet.
Click here to download the slide deck. Please note that downloads are only available for event participants and subscribers. You'll need to log in to download it.
John Wunderlich
John Wunderlich
John Wunderlich & Associates
John Wunderlich is a data protection professional and expert witness who has worked and consulted about privacy, data protection, and security for over 20 years in multiple jurisdictions. He has...

Past, Present and Future of the Italian Digital Identity Ecosystem

Italy has two National Digital Identity schemes, namely: SPID and CieID (leveraging the national ID card). Both of them are based on SAML2 and are on their way to supporting OpenID Connect. The reasons for this decision are numerous, and they are primarily related to OpenID Connect Core features such as flexibility, ease of implementation, better support for mobile applications, and widespread adoption, particularly in the private sector. To manage this transition, we considered several documents by the OAuth working group describing security best Current Practices and the OpenID Foundation specifying a profile for iGov and a framework for federation. In particular, the latter defines a hierarchical federation model with high security, interoperability, scalability, and transparency based on dynamic delegation mechanisms; Italy is an enthusiastic early adopter.
In this talk, we introduce the Italian OpenID Connect profile based on the iGov and federation profiles and explain the main security measures that we considered within our design from the aforementioned standards and available best current practices. We also discuss how the Italian OpenID Connect profile contributes to the iGov and OpenID Connect Federation documents. We conclude the presentation with a brief discussion of eIDAS 2.0 and some of the ongoing preliminary works in the context of the Italian digital identity ecosystem to move toward an SSI-based solution using the Italian OpenID Connect profile as a starting point.

Past, Present and Future of the Italian Digital Identity Ecosystem
Event Recording
Past, Present and Future of the Italian Digital Identity Ecosystem
Click here to watch the recording of this session. Please note that this video is only available to event participants and subscribers. You'll need to log in to watch it.
Past, Present and Future of the Italian Digital Identity Ecosystem
Presentation deck
Past, Present and Future of the Italian Digital Identity Ecosystem
Click here to download the slide deck. Please note that downloads are only available for event participants and subscribers. You'll need to log in to download it.
Francesco Antonio Marino
Francesco Antonio Marino
Poligrafico e Zecca dello Stato (IPZS)
As an Innovation Manager and Solution Architect with a specific emphasis on Digital Identity, I bring over 15 years of experience in research and developing innovative digital products to the...
Dr. Giada Sciarretta
Dr. Giada Sciarretta
Fondazione Bruno Kessler (FBK)
Giada Sciarretta is a researcher of the Security & Trust research unit of Fondazione Bruno Kessler. She obtained her MSc in mathematics at the University of Trento in 2012 and received her...
Dr. Amir Sharif
Dr. Amir Sharif
Fondazione Bruno Kessler (FBK)
Amir Sharif is a researcher in the Security & Trust Research Unit of the Cybersecurity Center at Fondazione Bruno Kessler, Trento, Italy. He earned his Ph.D. in Secure and Reliable Systems from...
Subscribe for updates
Please provide your email address