Introduction
We refer to "our" ecosystem as the research and education sector globally. We are seeing our ecosystem interconnected with many other such ecosystems taking part in a network of ecosystems interacting on principles of distributed identities.
Our primary stakeholders are universities, NRENs, research institutes, libraries...
In scope are also use cases crossing multiple ecosystems, where only "one end" is with "our" ecosystem.
The use cases at hand can roughly be classified as follows:
- individuals as bearers of credentials:
- presenting learning and education outcomes such as diploma, transcript of records, microcredentials or badges in order to support use case such as access to other education experiences (including mobility or at alliance partners), applying for jobs or getting registered into (or staying in) professional registers.
- presenting attestations of organisational affiliations and roles such as student, staff, alumni or org. units in order to get access to restricted resources such as buildings, libraries (including subscriptions and licensed content), discounted offers or acting on behalf of the issuing organisation.
- organisations as bearers of credentials:
- embedding attestations such as (national) accreditations, scorings, listings or compliance attestations in credentials issued to individuals in order to improve the value of the attestation to bearers or to enable them to act on their behalf.
Transformative aspects
- Digital transformation of presenting learning and education outcomes:
- current: such documents are usually presented on paper - often with security elements - or as scans - where those security elements get lost. Verification of such documents involves human interaction, is quite costly and is only performed in case of suspected misuse. Some verification services exist, such as Switch Verify, but they are not standards based, offer differing sets of functionalities and did not reach substantial market coverage.
- transformed: such documents get offered as structured data in machine readable format with security elements to protect integrity, authenticity and trust. Verification can be automated, becomes cheap and can easily be performed on all documents presented that way.
- impact:
- Scope of identity services of our community:
- current: existing identity services such as eduGAIN are used for online access to resources, but not directly for presentation of documents. Therefore, such services are only relevant to services being accessed by users.
- transformed: emerging new identity services of our community are additionally used to protect new types of transactions such as the presentation of documents.
- impact: a potentially much larger number of services - called verifier - potentially coming from a wider range of sectors outside of our own research and education sector will rely on our emerging identity services. To enable trust in our emerging services and the players in our own sector, we can no longer rely on implicit trust in our sector, but have to make it explicit to other parties. This might include elements like certifications, practice statements and sector governance.
Opportunities
- Our identity services will be offering added value of to end users by extending reach and functionality.
- By tapping into the emerging solution environment "wallet ecosystem", we might no longer need to perform certain tasks on our own.
Risks
- The "new" and "old" world might co-exist for a longer time and increase our efforts for quite some time to come.
- We as a community do not succeed at extending our identity services. Other market solution will fill the void and offer solutions not well suited to our sector and offering less functionality to end users.
- We as a community do not succeed at marketing our extended identity services. This could be related our inability to establish trust to other parties.