Versions Compared

Old Version 17

changes.mady.by.user Marvin Berstecher

Saved on

compared with

New Version 18

changes.mady.by.user Vipin Bharathan

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

NameOrganizationemail
Vipin Bharathan


Kelly Cooper
Independentkellycooper.2ds@gmail.com
Richard Esplin
evernym

Drummond Reed

evernym
Marvin Berstecheresatus AGm.berstecher@esatus.com

Recording:

audio

Minutes

Anti-trust policy reviewed.

Introductions:

Drummond Reed - evernym Evernym Chief Trust Officer. Board member Sovrin Foundation.

Vipin Bharathan - 5 years blockchain. Software industryFinancial Services, now independent consultant (dlt.nyc). Work on systems toward privacy-preserving architectures.

Marvin Berstecher esatus

Richard Esplin - products - evernymEvernym. Upstream projects like HyperledgerIdentity WG. Bring into actual code to deploy in a couple of years.

Kelly Cooper - working on Identity White Paper.

Drummond - current presentations on Sovrin, etc. 

Three efforts ( Legal underpinning for DPR, TOIP, guardianship)

By Drummond

Sovrin - by December 4, 2019, will submit the data protection revisions to the SVF. Finished 2nd generation in March. Tackled everything except GDPR compliance (DPR compliance). DPR is the generalized form of Data Protection Rules.

A number of our stewards and customers pointed out GDPR is one set of compliance regulations. Some potential Sovrin customers are governments. Provenances

Provinces of BC and Ontario, for example.

Transaction endorser agreement. The transaction author is anyone who wants to write to the Sovrin Network.

Working with BC.gov to close on addressing issues.

How does SSI, which is ultimately backed by blockchain immutable ledgers, GDPR rights of data subjects (right of erasure)? In systems like Sovrin, there is very little on the ledger. Widely acknowledged even a DID, if it identifies an individual (even pseudo-anonymous) is subject to GDPR. Eight documents involved. Contract - transaction author agreement. Sovrin is a legal representative of the stewards as a whole. There will be a web page, there currently is a diagram. 

...

Three roles GDPR sets out. GDPR did not anticipate SSI where the ultimate data controller is the individual. Individuals and Things will eventually be able to write to the ledger. Two policy paths, the only path today is permission write access. Driving toward public write access. Now, need to go through Transaction Endorser > Steward > you submit a proper transaction that is validated and it goes on the ledger. In public, transaction authors write directly to the ledger via the Stewards, with a fee to be paid in SOV tokens . This means the section on the left of the document will transition to the right of the document. (no commitment to Sovrin tokens or dates - only future possibility).

Revisions to the SVF. The legal analysis arrived at is to say, the role of the Sovrin Foundation is not as a data controller; transaction authors are the data controllers. The role of SF is something called a joint controller that does not have control; for legal purposes called a designated data controller. Stewards have contracts for SF. Transaction authors and transaction endorsers - SF transaction author agreement. 

...

Discussion in Decentralized Identity foundation if the set of RFCs will be housed there. 

Paper roadmap and comments

Comments on the Hyperledger Identity white paper.  Web How do get a snapshot basis into the paper since topic is constantly evolvinbg. Web of Trust - snapshot. Getting the paper into GitHub. Version 2019. Start on version 2020. Will be in GitHub this week. 

...

Issues with labeling implementation and decentralized implementation. (Decentralization as a panacea)

FATF beneficial ownership discussion:

Vipin: Rules within which the financial system operates. Multiple ways to deal with the beneficial ownership conundrum. Registries should contain accurate information about owners. Remove bearer shares or nominees who are delegated to act on the benefit of someone else (don't see the real owner). All of these are real problems and how do we solve them through the constructs we have today? How do we move things to edge devices in a good way? 

Provide FATF Provides guidance, but if you don't follow, jurisdiction may be deemed high risk . These guidances and may fall out of the global financial system or operates on a high margin basis. This guidance or recommendations become important in real financial systems or real interchanges. 

Beneficial ownership paper - discusses for companies - legal persons - legal identifier. One way to identify entities. GLEIF houses the legal entity identifiers. The GLEIF has worked with Viewport uPort to use credentials to support who can control corporation, employees, roles of the corporation. Including regulatory filings. The corporation exists as a legal entity. At the end, people are filing. Chain of credentialing that follows the GLEIF situation. At the end of the chain are the actual individuals who can act on behalf of the company. 

EURO Filing - eurofiling.info

LEI and Digital Verifiable Credentials.

...

How GLEIF could work with INDY PoC. 


Industry pushback

No structure today to support selective disclosure as part of the proofing process in identity. Will selective disclosure be used? 

...