First, let me begin by defining the parameters in which I mean automating ID. The context for this observation is the Internet, and the lack of automation simply is the amount of sign-on’s we must go through to access any account on-line (social, financial, business or otherwise). Everything in the ID world requires a multi step process. The verification procedure is exactly that: process after process, accessing this database to move to another. We are even instructed to fill out our ‘memory cue’ or ‘where were you born?’ question and answer. There is a high rate of non-repeat users of these systems, based on the difficulty in using them.
The fundamental problem with not having automation is the human experience attached to the complexity of enrollment and continuous sign-on’s. OpenID has made inroads but still suffers from a lot of growing pains (a phishing attack is an example of this vulnerability).
There are many ways to look at user-centric identity but really it has to be based on the person, and in some form of an automated way. Biometrics, in all forms, has been pursued to develop a more robust identity system, but still has fallen short. There needs to be a ubiquitous user-centric identity system whereby automation is inherent in its design. This would allow for greater usage and above all, a system that actually works.
I’m not pretending to have the answer but at Plantiga we are researching and developing a system that has, innate in its design, automation. Not only will it be automated but mobile. Whether or not we reach our goal in the ways we have envisioned, we have used the concept of automating ID as an over-arching vision for where ID needs to go.
Technorati Tags:
identity management, security, IDM, biometrics, identity, Technology, OpenID
