We have digital identities so computers can mediate our relationships with people and organisations. Universities are already networks of relationships and as they become digital identity services become essential to their success.
This presentation will outline a reference architecture for digital identity that works at scale and over complex networks. The architecture uses a functional analysis of identity transactions to address the inherent complexity of digital identity services. It provides a clear and simple method for analysing and designing identity systems using any architecture or technology.
The IdEAs reference architecture for digital identity systems separates capability, architecture and technology. It provides a requirements-driven mix-and-match methodology that allows identity dependent projects to quickly assess their needs and plan solutions.
The presentation and accompanying paper will outline the four business capabilities found in all identity providing organisations. It will provide a generalised production model for each that includes processes, data, and services. It will then describe how four common identity architectures provide these capabilities. The strengths and weaknesses of each architecture, and common problems in implementing them will be discussed.
The presentation will conclude with a brief walk through of three scenarios to demonstrate how the architecture works at different scales, for different stake holders and different use cases.