Gartner Blog Network


Does Decentralized Identity Need an Identity Neutrality Manifesto

by Homan Farahmand  |  July 12, 2018  |  Submit a Comment

If you are not familiar with the decentralized identity, you can start here.

The promise of decentralized identity – self-sovereign identity in the case of people identity – is to put people in charge of their identity and personal data. Obviously this is a noble idea and great step forward for identity management. But what about all the existing identity providers that invested so much in establishing people identity within their organizations?

For decentralized identity to take root, both enterprise organizations and third party identity providers need to view identity and relationship identifiers as two distinct constructs. People core identity can be decentralized and drive relationship identifiers for different organizations. However, each organization has to still manage its own corresponding relationship identifier for each person to address other identity governance and access management requirements.

This is not an easy transition as many organizations and identity providers still couple identity and identifiers tightly and manage them as part of their overall identity and access management discipline. Also, for many business reasons, organizations may prefer to use their own established identity of people rather than accepting a decentralized identity. This brings up a fundamental question that whether we need to have an “Identity Neutrality” manifesto.

Identity Neutrality must guide organizations to view identity and relationship identifiers as two separate constructs. Such a manifesto should provide a vision that allows people to control their own identity and guide organizations to seed people’s corresponding relationship identifier (derived from people core decentralized identity) in their environment.

So what do you think? Do we need an Identity Neutrality manifesto? We would like to hear from you and learn what you think. Please share your comments with us.

Note:

  • Gartner introduced the decentralized identity conceptual architecture in “Blockchain: The Dawn of Decentralized Identity [1],” which was published in September 2016 and refreshed in May 2018. In a decentralized identity model, users generate and manage their own digital identity without relying on a central repository.
  • Gartner captured the advancement in self-sovereign decentralized identity design in ” Blockchain: Evolving Decentralized Identity Design [1],” which was published in December 2017. Self-sovereign identity networks and verification services are key mechanisms to implement decentralized identity and relationship identifiers for people. In a self-sovereign decentralized identity model, users are practically in control of their identity and related attributes.

[1] Full report is available to Gartner for Technical Professionals subscribers.

Category: blockchain  decentralized-identity  iam  innovation  self-sovereign-identity  

Tags: blockchain  decentralized  iam  identity  ssi  

Homan Farahmand
Research Director
6 years at Gartner
26 years IT Industry

Homan Farahmand is a Research Director covering digital identity and access management (IAM) within Gartner for Technical Professionals (GTP) across different identity domains. Read Full Bio




Leave a Reply

Your email address will not be published. Required fields are marked *

Comments or opinions expressed on this blog are those of the individual contributors only, and do not necessarily represent the views of Gartner, Inc. or its management. Readers may copy and redistribute blog postings on other blogs, or otherwise for private, non-commercial or journalistic purposes, with attribution to Gartner. This content may not be used for any other purposes in any other formats or media. The content on this blog is provided on an "as-is" basis. Gartner shall not be liable for any damages whatsoever arising out of the content or use of this blog.