I’m currently looking at international identity standards and thought that I might post some thoughts about them as I look at them. The first that I have looked at is ISO/IEC FDIS 24760-1:2011(E) “A framework for identity management – Part 1: Terminology and concepts”. This standard is supposed to define key terms for identity management and specify core concepts in identity and identity management. My view is that it should be avoided. The reasons for this are many: it is confused, it is unclear, and doesn’t use terms in the way that they are standardly used in the identity industry.
This week I was lucky enough to attend the New Zealand Identity Conference 2012: Managing Digital Identity in a Networked World. Organised by the Victoria University of Wellington, School of Government; The Office of the Privacy Commissioner; and the Department of Internal Affairs, it was held at Te Papa (The Museum of New Zealand) and pulled together identity and privacy experts from New Zealand and the rest of the world. I found it very interesting and valuable, so I just thought I’d post an overview here, and then explore thinking inspired by the conference in other posts.