Key Points
- Follow PMO standards
- Define requirements as executable test cases
- Create test environments
- Done right, a blockchain solution creates a Business Value Chain of Trust
- Put Trust to Work
Project_Document_List.xlsx
https://zoom.us/j/7559713046
https://zoom.us/s/7559713046?pwd=QmpsM0w2WVllWWliekhxdnNFNHNVZz09#success
References
Reference_description_with_linked_URLs_______________________ | Notes______________________________________________________________ |
---|
|
|
|
|
https://www.politico.com/newsletters/digital-future-daily/2023/02/09/the-smallest-state-has-the-biggest-blockchain-ambitions-00082118?tab=most-read | Liz Tanner - RI RFI for Phase 2 State Identity project for businesses |
Liz Tanner - Enterprise Blockchain Award - 2021 https://www.linkedin.com/posts/elizabeth-m-tanner-esq-95a7546_blockchain-enterprise-eba2021-activity-6866541895817027584-DZxO | Liz Tanner - Enterprise Blockchain Award - 2021 *** |
|
|
https://www.linkedin.com/in/elizabeth-m-tanner-esq-95a7546/ | Liz Tanner Linkedin |
https://www.govtech.com/computing/rhode-island-eyes-blockchain-based-identity-management-project | RI Business Digital Identity Project - 2023 - RFP launched |
https://ridop.ri.gov/vendors/bidding-opportunities | RI Digital Identity Project Phase 2 - RFP#: 23002232 Digital Transformation for Business Registration and Credentialing. |
https://www.golocalprov.com/business/rhode-island-commerce-honored-as-economic-development-agency-of-the-year | RI Honored as Economic Development Agency of the year - 2022 Go Global Awards |
https://ntia.gov/press-release/2022/biden-harris-administration-awards-55-million-rhode-island-internet-all-planning | RI award for digital equity |
|
|
RI article on Blockchain in Digital Identity Verification RI article on Blockchain in Digital Identity Verification pdf |
|
|
|
Rhode Island Wants To Make It Easier To Do Business Using Blockchain Technology 2022 forbes url forbes.com-Rhode Island Wants To Make It Easier To Do Business Using Blockchain Technology.pdf file | keys SSI shifts the identity and credential management from centralized systems run by the government with all the associated silos to a peer-to-peer model using public-key cryptography, decentralized identifiers over a blockchain. The second element is Hyperledger Indy, a distributed ledger purpose-built for decentralized identity. Hyperledger Indy comes with tools, libraries, and reusable components to create and use independent digital identities on blockchains. Finally, there is Hyperledger Aries, the client part of a decentralized identity application. Aries is the client layer within Hyperledger Indy that facilitates interaction with other platforms. |
|
|
Blockchain and Identity reference pages |
|
Digital Identity Concepts |
|
m SSI / DID - Self Sovereign Identity |
|
m TOIP Trust Over IP |
|
m Blockchain Public Sector |
|
m Public Sector Sessions 1 |
|
Identity Management security concepts |
|
s Blockchain in Public Sector - Redefine Governance, Operations |
|
m Hyperledger Indy |
|
m Hyperledger Aries - identity, data management tools |
|
|
|
ri ID BC - POC Testing |
|
https://rhodeisland.service-now.com/sp?id=index | Help Desk portal |
RI Blockchain POC Project Folder | RI Blockchain POC Project Folder |
RI Confluence Page for Blockchain POC | RI Confluence Page for Blockchain POC |
RI Sharepoint project folder Blockchain POC | RI SharePoint project folder |
DBR Blockchain POC group | RI DBR Blockchain POC Group |
RI Blockchain POC SOW SOW - BlockChain - Draft_v10.docx | RI Blockchain POC SOW• |
https://401ode.atlassian.net/wiki/spaces/CPU/pages/919601349/ Blockchain+Proof-of-Concept | RI Confluence project page url |
https://rigov.sharepoint.com/sites/etss-pmo/Project%20Documents /Forms/AllItems.aspxid=%2Fsites%2Fetss%2Dpmo%2FProject%20Documents %2FDBR%2FBlockchain%20POC&viewid=86c462c7%2D1e5c%2D437f%2D8b 23%2Dcb8a76b48ba9 | RI Confluence SharePoint project status folder url |
|
|
|
|
t Todo List | my task list w time log |
https://drive.google.com/drive/u/0/folders/1AyNBvGoL nnxMm4nCSCgqykXag_W9VRlf?overridemobile=true%3Foverridemobile=true | my time sheet |
|
|
Reference materials |
|
1Drive workshop folder for poc project |
|
Rhode Island - Blockchain Use Case.pdf | vis use case 1 - cpa license |
| Jim Mason blockchain overview *** |
|
|
|
|
https://www.acenet.edu/Research-Insights/Pages /Education-Blockchain-Initiative.aspx | ACE Education Blockchain Initiative |
https://www.insidehighered.com/quicktakes/2020/06/08/ report-assesses-challenges-and-opportunity-blockchain-higher-ed
| blockchain grants in education ?? |
https://tech.ed.gov/blockchain/33 | Blockchain in Education - US Office of Education |
|
|
|
|
https://e-estonia.com/category/blockchain/ | Estonia blockchain |
https://www.pwc.com/gx/en/services/legal/tech/assets/ estonia-the-digital-republic-secured-by-blockchain.pdf | PWC on Estonia blockchain |
|
|
https://sourcecrypto.pub/posts/transcripts/VON-Presentation- Jordan-Curran-HGF/ | VONbook - Jordan, Curran - detailed |
https://trustoverip.org/ | Trust Over IP org |
|
|
https://sovrin.discoursehosting.net/t/public-facing-dids-vs-private- pairwise-dids/243Public-facing DIDs Vs. Private _pairwise_ DIDs - Technical _ DIDs (Decentralized Identifiers) - Sovrin.pdf | public vs pairwise DIDs - Sovrin |
https://github.com/WebOfTrustInfo/rwot3-sf/blob/master/draft- documents/DIDSpecificationWorkingDraft04.pdf DID-definitions-w3c-2016_DIDSpecificationWorkingDraft04.pdf at master · WebOfTrustInfo_rwot3-sf · GitHub.pdf | DID concepts - Sovrin w3c |
|
|
http://openarestaurant.www7.braveriver.com/en/general-informa tion-and-steps-to-start-and-register-a-mobile-food-establishme nt-mfe-in-rhode-island/ | RI license process for mobile food truck |
|
|
doc xfer |
|
SOW - BlockChain - Draft_v10-notes.docx |
|
M200724-project-notes1.docx |
|
Rhode Island_Blockchain_KickOffDeckFinal.pdf |
|
onotes.txt | onotes.txt *** |
jim-mason-time-200828-gsheet.xlsx |
|
POC to Production changes.xlsx POC to Production changes (1).xlsx | poc to production concepts *** |
RI-DBR-Blockchain-POC-Report-DRAFT-v1.docx RI-DBR-Blockchain-POC-Report-DRAFT-v2.docx from win RI-DBR-Blockchain-POC-Report-DRAFT-v2w.docx | POC Final Report *** |
RI DBR Blockchain Project Workshop v1.docx win RI_DBR_Blockchain_Workshop (1).pptx RI_DBR_Blockchain_Workshop (1)-jem.pptx RI_DBR_Blockchain_Workshop (2).pptx Identity Blockchain POC Integration Concepts - v6.pptx Identity Blockchain POC Integration Concepts - v7.pptx Identity Blockchain POC Integration Concepts - v8.pptx Blockchain Demo video-v1-Liz.pptx Rhode_Island_Blockchain_POC-Infosys_4-Dec-2020.pdf Transaction_Flows_POC_V6 (3).pptx dbr-bc-poc-legal-context-slides.pptx dbr-bc-poc-legal-context-slides-v2.pptx onotes.txt dbr-bc-poc-legal-context-slides.pptx poc-workshop-process-contents.xlsx publc-sector-identity-blockchain-search-v4b1.docx publc-sector-identity-blockchain-search-v4b2.docx | POC Review Workshop *** |
WP_Blockchain-RI_TC_v6_06.11.2020.docx | Infosys White Paper ** |
| RI Blockchain POC RFP ** |
BlockChain POC Identity_use_cases_v3.docx |
|
BlockchainPOC-RI-TestCases 0.3 (2).xlsx |
|
https://drive.google.com/file/d/1NcWX44eb821FjzRyF_qcQfhjePdjvYZ1/view?usp=sharing RI_Blockchain_Work_Group_plan-v1.pptx | work group pptx to ri |
https://drive.google.com/file/d/1c2PRlNy1QCMpHb5SPg3yGN03sYgbT4sw/view?usp=sharing RI_DBR-Blockchain-POC-v9-all.pptx RI_DBR-Blockchain-POC-v9-all (3).pptx RI_DBR-Blockchain-POC-v9-backup.pptx RI_DBR-Blockchain-POC-v11-DRAFT.pptx RI_DBR-Blockchain-POC-v12-all.pptx | dbr bc summary pptx to ri |
https://drive.google.com/file/d/1Ym5AhH1ah_vHvWB2wniR7FIr6MigN 2uN/view?usp=sharing swt-identity-blockchain-concepts-v2.pptx | bc concepts pptx to ri
|
process-cpa-license.xlsx publc-sector-identity-blockchain-search-v4b1.docx
| DBR use case analysis ** |
swt-publc-sector-identity-blockchain-solutions-v1.docx file swt-publc-sector-identity-blockchain-solutions-v1.docx swt-publc-sector-identity-blockchain-solutions-v1.docx swt-publc-sector-identity-blockchain-solutions-v1b.docx swt-publc-sector-identity-blockchain-solutions-v2m.docx publc-sector-identity-blockchain-search-v4.docx publc-sector-identity-blockchain-search-v4b.doc | swt-publc-sector-identity-blockchain-solutions-v1.docx **** |
POC-UAT-Findings-v1m.docx POC-UAT-Findings-v2m.docx POC_UAT_Readme_v1.pdf | UAT Test documentation ** |
temp-notes1.txt | temp notes |
icons.zip |
|
VO script for governance_RI_v1.docx |
|
|
|
RI State forms, sites |
|
https://www.sos.ri.gov/doc_lib/search | RI forms inventory |
http://www.dmv.ri.gov/licenses/ | DMV site |
http://business.sos.ri.gov/loginsystem/login_form.asp | SOS site - firm registration |
https://www.sos.ri.gov/divisions/business-services | RI business services |
https://dbr.ri.gov/rules/ | RI DBR site |
https://dbr.ri.gov/documents/divisions/accountancy/InitialRh odeIslandCPAPracticeUnit.pdf | RI DBR Accounting Practice Unit pdf |
https://elicensing.ri.gov/ | RI elicensing - cavu |
https://elicensing.ri.gov/Lookup/LicenseLookup.aspx | RI elicensing lookup - cavu |
|
|
|
|
|
|
Other sites |
|
https://nasba.org/ |
|
https://nasba.org/mc/memberservices/#licensure |
|
https://nasba.org/stateboards/#rhodeisland | nasba link to Jovonna at BOA |
https://nasba.org/licensure/nasbalicensing/ | some states ( eg NH ) use NASBA site to manage license process |
|
|
https://www.govops.ca.gov/blockchain/ | CA Blockchain working group |
https://drive.google.com/file/d/1Eh6SguoYcA8Q70TlIJfzRsPHUkN6qmKz/view?usp =sharing | Delaware Blockchain Initiative - for corporate filings only - slows down |
https://www.delawareonline.com/story/news/2018/02/02/delaware-eases -off-early-blockchain-zeal-after-concerns-over-disruption-business/1082536001/ https://drive.google.com/file/d/10Cq9TXw0yplOiwivoDf-LzKe4kqIsZwx/view?usp=sharing | Delaware Blockchain Initiative - slows down compare listed potential to reasons for slow down *** |
| British Columbia Digital Transformation Services |
| Dubai Blockchain |
| Estonia Blockchain |
| UK cbdc & digital financial system re-engineering |
see m TOIP Trust Over IP m SSI / DID - Self Sovereign Identity | European Blockchain Council |
see m TOIP Trust Over IP m SSI / DID - Self Sovereign Identity | WEF Blockchain Toolkit |
see m TOIP Trust Over IP m SSI / DID - Self Sovereign Identity | EBSI - European Blockchain Services Infrastructure |
|
|
|
|
files |
|
swt-sample-bpm.pptx | sample BPM file |
Identity Blockchain POC Integration Overview-v4.pptx |
|
POC design doc |
|
Transaction_Flows_POC_V6.pptx |
|
BlockchainPOC_PM_Plan-v2.xlsx |
|
Blockchain POC project-RAID (1).xlsx |
|
BlockchainPOC-RI-TestCases 0.3.xlsx |
|
POC Architecture TechnicalDiscussion.pdf |
|
Rhode Island_Blockchain_KickOffDeckFinal (1).pdf |
|
Rhode Island_Blockchain_KickOffDeck.pptx |
|
Blockchain POC Identity_BPM-v2.pptx |
|
DBR_CITIZENPORTAL.pdf | wireframes |
Mobile App_citizen.pdf | wireframes |
poc-conceptual-data-models.xlsx |
|
State Identity Credential Issuance Flow_TestScript.docx | Sprint 1 test results |
m RI ebc pilot 1 swt-vehicle-id-blockchain-concepts-v3.pptx |
|
Blockchain in Public Sector-V2.pptx |
|
RI_Blockchain_Work_Group_plan.pptx |
|
|
|
Articles |
|
https://www.govtech.com/blogs/lohrmann-on-cybersecurity/widespread-unemployment -fraud-is-overwhelming-state-systems.html?utm_term=READ%20MORE&utm_campaign=Widespread%20Unemployment%20Fraud% 20Is%20Overwhelming%20State%20Systems&utm_content=email&utm_source=Act-On+Software&utm_medium=email | Unemployment fraud claims high under Pandemic Relief in many states |
https://docs.microsoft.com/en-us/azure/active-directory/develop/v2-protocols-oidc | Microsoft OIDC support - Azure for Microsoft apps |
https://onezero.medium.com/clear-conquered-u-s-airports-now-it-wants-to-own-your-entire-digital-identity-15d61076e44d | Clear - private companies want to own your identity and access for a fee |
https://www.wesh.com/article/florida-digital-driver-license/34370685 | Florida - digital driver's license pilot - Thales |
https://lawallet.com/the-latest-scoop/envoc-and-louisiana-launch-the-first-digital-driver-s-license/ did-dirvers-license-LA-2020-lawallet.com-Official Louisiana Digital Drivers License.pdf LA Wallet legislation support did-drivers-license-origins-lawallet.com-Official Louisiana Digital Drivers License.pdf Louisiana House Bill 481 - LA Wallet law for drivers license
| LA Wallet - LA drivers license - envoc
https://lawallet.com/origins/ - legislation support
LA Wallet Law |
|
|
|
|
2023 - Liz Tanner - RI moves forward with RFI for Business Identity Solution Phase 2
https://www.politico.com/newsletters/digital-future-daily/2023/02/09/the-smallest-state-has-the-biggest-blockchain-ambitions-00082118?tab=most-read
https://www.linkedin.com/posts/elizabeth-m-tanner-esq-95a7546_the-smallest-state-has-the-biggest-blockchain-activity-7031045830333595648-f5vu?utm_source=share&utm_medium=member_desktop
Phase 1 POC succeeded
To keep things as boring as humanly possible, she enlisted both Rhode Island’s Division of Motor Vehicles and the state’s certified public accountants for a proof-of-concept pilot program that concluded in June.
The accountants were able to get a digital ID card from the DMV, then use the digital credential to prove their identity to the Department of Business Regulation, which in turn issued them a digital copy of their CPA license.
this blockchain system was designed to be “boring and not risky,” says Commerce Secretary Elizabeth Tanner, who tells DFD that opening a restaurant in Rhode Island currently requires accessing 11 state websites.
Tanner determined that the use of a distributed blockchain database was the best way to create a single records system used by multiple agencies.
In Rhode Island’s model, most information is stored privately by the government and in users’ digital wallet apps, while the shared blockchain stores public keys — published by the issuing agency — that can be used to verify the authenticity of a user’s digital credentials.
Tanner dropped the less polarizing term “DLT,” an abbreviation of “digital ledger technology.”
2021 Enterprise Blockchain Awards - Liz Tanner - Public Sector
award show
https://vimeo.com/646533633?utm_campaign=Newsletter%202021&utm_medium=email&_hsmi=186549701&_hsenc=p2ANqtz-9aU6J2ouNWzVZqKLslbFkLekrYlVriNMjFuAmuqxN3U-VCr01gjwZZJ726pmqqt1OClp2yCHSn8ub2lQgGbTEbQEsY6Q&utm_content=186549701&utm_source=hs_email
awards list
https://blockchainrevolutionglobal.com/the-eb-awards/?utm_campaign=Newsletter%202021&utm_medium=email&_hsmi=186549701&_hsenc=p2ANqtz-8NTk0daW3FXbFDlSjLshFGG-dc7rww33jQjUH3HyKs51R4feG1weGBMOLaU3pPhiuxCRjw2aJeXanuF1O11VvMlEywaA&utm_content=186549701&utm_source=hs_email
Hyperledger Global Forum Session Overview Slides 2022
https://docs.google.com/presentation/d/1lPCgIVEY1IotWs-l8ZJK3IoqcqdeTdiLw3_I4-rMXcA/edit#slide=id.g16c17774731_0_395 gslides
RI-Leads-on-Digital-Identity-Solutions-v2.pdf file
RI-Leads-on-Digital-Identity-Solutions-v2.pdf link
Projects - Key Concepts
POC Project Goals
- Meet State SOW POC functional requirements for use case 1 ( CPA licensing ) use case 2 ( Firm registration, Certificate of Authorization ), research use case 3 SSI authentication options
- POC report from DBR and tech teams: goals > standards > eos > accomplishments > lessons learned > production considerations > solution expansion > partnerships ( int, ext )
- what are the responsibilities for a production blockchain solution for each party? individual, organization, State agency
- what are the potential net benefits of a production blockchain solution for each party? individual, organization, State agency
- what is the governance model? rules, regulations, incentives for each party and role?
- what are the functional requirements for a production identity blockchain solution in DBR for each party
- POC project case study updates
- key technologies > key solution benefits > key business value delivered > next opportunities
- RI blockchain opportunities research - ( automated ebc w IoT, API integrations ) with mapping to State Architecture strategies, services, investments
- RI blockchain education and promotion - articles, case studies, conferences, presentations, standards groups, partnerships, more ???
- Final POC video
- executive summary presentation ( Sandesh & Chirag )
- DBR summary for licensing with identity blockchain
- White paper
- other resources
POC Solution Use Case Definition Steps
- Define use case context, relevant existing processes, solutions
- Define solution goals, constraints, scope, interfaces
- Define functional performance, value kpis ( current, targets )
- Define non-functional performance, kpis ( current, targets )
- Define actors, agents, objects
- Define actor responsibilities, outcomes, benefits for work flows
- Define key process work flows, outcomes, inputs
- Define events, listeners for actors, work flows
- Define process step rules, decisions, data for work flows
- Define operational, value and non-functional risks to manage with strategies
- Define solution architectures, environments, services strategies
- Define test cases for actors, processes
- Define data quality test cases
Standard Solution Use Case Definition Steps
- Define use case context, relevant existing processes, solutions
- Define solution goals, constraints, scope, interfaces
- Define functional performance, value kpis ( current, targets )
- Define non-functional performance, kpis ( current, targets )
- Define actors, agents, objects
- Define actor responsibilities, outcomes, benefits for work flows
- Define key process work flows, outcomes, inputs
- Define events, listeners for actors, work flows
- Define process step rules, decisions, data for work flows
- Define operational, value and non-functional risks to manage with strategies
- Define solution architectures, environments, services strategies
- Define test cases for actors, processes
- Define data quality test cases
#SDP
SWT > discover > define > design > deliver > implement > support
RI > initiation > plan > execute > close
Project Control Documents
https://docs.google.com/spreadsheets/d/1eVHgToXhn6VIUZ4YlGGsBkRsHyl16nszy6rQ2WkzvrM/edit?usp=sharing
I> issue w google sheets macro create embedded sheet on macos only - 200814
Item_____________________ | Notes__________________________________________________________________ | req | seq | status | phase______ | owner____________ | Link___________________________________________________________________ |
---|
RI SOW Infosys | the POC Statement of Work | Y | 1 | done | Initiation | RI team |
|
team list xlsx | resources assigned to POC project | Y | 2 | done | Initiation | Infosys |
|
pmo standards | standards, governance ctls | Y | 3 | done | Initiation | RI PMO |
|
RAID log | risks assumptions issues dependencies | Y | 4 | work | on going | J Mason |
|
project status pptx | PMO format for weekly Project Status meetings | Y | 5 | work | on going | J Mason |
|
project status Confluence | PMO SharePoint site | Y | 6 | work | on going | J Mason |
|
project plan xlsx | Project plan covering phases, responsibilities, owners, dates, timeline | Y | 7 | work | Design | Infosys |
|
poc use case doc | Define the use case in scope and the stretch goal use cases | Y | 8 | review | Design | J Mason |
|
poc use case bpm | Business Process Diagrams for use case flows showing process and |
| 9 | review | Design | J Mason |
|
poc Business Case | very limited given POC scope. A FACTUR3D.IO analysis of current KPIs and expected KPIs. Will be important for the Final Report | N | 22 |
| Design | J Mason, Liz Tanner |
|
poc Business Requirements | Needs full review by DBR and Liz Tanner for all but technical details. Brian and other RI IT staff can provide technical review OKR outcomes Scenario / Responsibility inputs as stories | Y | 10 | work | Design | Infosys |
|
daily standup | text notes file for action items >> email out action items or add to teams wiki | Y | 11 | done | ongoing | Team |
|
poc Final Report | many inputs ( RI IT, dbr rpts ), external refs, presentations etc many authors from RI needed for inputs | Y | 12 | work | Test, Close | Team |
|
architecture plan | Technical architecture first draft done. Expect updates during project | Y | 13 | work | Design | Infosys |
|
test cases | After requirements set, create the epics and stories that map to the use cases in scope. | Y | 14 | open | Design | J Mason, Infosys |
|
test plan | Test plans for both DEV and UAT environments for data, API's, blockchain, UI, services | Y | 15 | open | Design | J Mason, Infosys |
|
engineering plan | Add to RAID workbook as a log sheet - issue > options > decision > expected impacts |
| 16 | open | Design | J Mason, Infosys |
|
deployment plan | 2 instances - dev at infosys, uat at RI - both AWS | Y | 17 | open | Sprint 2 |
|
|
test results | DEV and UAT test results tracked separately with defect support | Y | 18 | open | Sprints, UAT | J Mason, Infosys |
|
poc demo docs | docs - runbook - videos - slides | Y | 19 | open | Sprints, UAT | J Mason, Infosys |
|
external documentation | Under RI control: case study, overview, white paper | N | 23 | open | UAT, Close | all participants |
|
request forms as needed | internal forms for access to POC assets as needed etc | Y | 20 | open | ongoing | all participants |
|
RI State docs | as needed on existing processes, rules, forms etc referenced | Y | 21 | open | ongoing | all participants |
|
RI Project Governance template | track progress, frame decisions for governance team Blockchain POC project - Governance.pptx | N | 24 | hold | ongoing | governance team |
|
|
|
|
|
|
|
|
|
Proposed Software Stack for Identity Blockchain POC
Software Links
Item________________________________________ | Notes_____________________________________________________________________________ | Link__________________________________________________ |
---|
POC use case overview infosys | more detailed version has sample mobile app flow etc |
|
https://trustoverip.org/ |
|
|
|
|
|
m Ubuntu Linux basics |
|
|
m VirtualBox |
|
|
m Docker containers |
|
|
|
|
|
swt Ares |
|
|
https://www.hyperledger.org/use/aries | shared, reusable, interoperable tool kit designed for initiatives and solutions focused on creating, transmitting and storing verifiable digital credentials. It is infrastructure for blockchain-rooted, peer-to-peer interactions. |
|
https://github.com/hyperledger/aries https://github.com/hyperledger/aries-cloudagent-python https://github.com/hyperledger/aries-acapy-controllers | Hyperledger Aries allows trusted online peer-to-peer interactions based on decentralized identities and verifiable credentials. Aries includes a protocol definition, tools, and reference implementations. The Aries protocol supports identities rooted in a variety of distributed ledgers or blockchains. This approach to identity is often called Self Soverign Identity (SSI).
agents > DID comm > protocols > key management > client agent SDKs |
|
https://github.com/hyperledger/aries-framework-dotnet/tree/master/src/Hyperledger.Aries.Routing .Mediator | for xamarin mobile agent routing services |
|
https://github.com/hyperledger/aries-mobileagent-xamarin | a cross platform mobile app (iOS/Android) built using the Xamarin framework in C#. More specifically the two platform specific projects share a common UI through the use of Xamarin.Forms. |
|
|
|
|
|
|
|
swt Indy |
|
|
https://www.hyperledger.org/use/hyperledger-indy | Hyperledger Indy is a distributed ledger, purpose-built for decentralized identity. Developers can use the tools and libraries from Hyperledger Indy to create identity solutions that are interoperable across jurisdictions and agencies |
|
https://github.com/topics/hyperledger-indy | Indy github - topics - links to all the Indy projects |
|
https://hyperledger-indy.readthedocs.io/en/latest/ | indy readthedocs |
|
https://github.com/hyperledger/indy-sdk#installing-the-sdk | Indy SDK provides a distributed-ledger-based foundation for self-sovereign identity. Indy provides a software ecosystem for private, secure, and powerful identity, and the Indy SDK enables clients for it. The major artifact of the SDK is a C-callable library; there are also convenience wrappers for various programming languages and Indy CLI tool. |
|
https://hyperledger-indy.readthedocs.io/projects/sdk/en/latest/docs/index.html | Indy SDK readthedocs |
|
https://github.com/hyperledger/indy-node | Indy Node all the functionality to run nodes (validators and/or observers) that provide a self-sovereign identity ecosystem on top of a distributed ledger. It is the core project for Indy Sovrin Foundation is a public utility for identity, built on top of this codebase.
|
|
|
|
|
s Blockchain in Public Sector - Redefine Governance, Operations |
|
|
m Blockchain Public Sector |
|
|
s Blockchain Opportunity Assessment - BOA |
|
|
|
|
|
|
|
|
|
|
|
Solution - Key Concepts
Digital Trust Model slide
Individual digital identities ( DID s)
How are DIDs issued ?
by independent DID orgs
by government authorities: US.gov, States or ???
or ??
Does RI require a Driver's license to issue a CPA license?
No
Can a Passport be used as a legal identity in the CPA license process?
How can the State issue individual digital identities?
DMV is the logical authority
Organization digital identities (DIDs )
Would the State use existing valid DIDs from other governments for a State ID
Call notes 8/7
idividual ID scenarios realistically tie well to RealID
s1> if Jim does not have a RealID, RI issues Jim:
a RealID w driver's license
a DID
a driver's license credential
s2> if Jim has a RealID and DID from Kansas, RI issues Jim:
a driver's license credential
a> remove 1a validate employee
i> create a did for individual, firm
a> emphasize flow w wallet, did first
a> identity scenarios for orgs ...
bc > gen DID and wallet
or
org brings DID and wallet
user brings id
starting point ..
principle ...
slides on how DIDs can be issued
id origination scenarios ...
poc - created in software
RI - create did
individual - brings in a did accepted
current DMV realId process ...
dbr = orgs first
RealD concepts
RealID overview
https://upgradedpoints.com/real-id-act
MA RMV RealID
https://www.mass.gov/guides/rmv-real-id-info-center
RealID FAQS
https://newlynamed.com/real-id/#:~:text=Can%20I%20transfer%20my%20REAL,and%20provide%20the%20required%20documents.
Potential Value Opportunities
Identity Blockchain Potential Value for Public Sector ***
- Verifiable digital identities
- Verifiable digital credentials ( licenses )
- Verifiable digital signatures for data provenance on transactions
- Verifiable consent management
- User managed identities implement Self-Sovereign Identity and privacy standards
- Better identity protection with selective disclosure proofs, non-correlated data
- Automated digital trust using smart wallets (implement Trust Over IP standards)
- Improved compliance at lower costs
- Significant fraud reductions possible
- Better data quality for analytics, reporting
- Improved data security for identities, credentials
- Authentication support to some legacy systems leveraging OIDC ( Open ID Connect ) and related interfaces
- Legal compliance with current and many future regulations ( GDPR, CCPA etc )
- Safety of of Personal Identity Information ( PII )from theft, fraud
Potential Value for Identity Blockchain network
if done right .. our KEY benefits are ???
potential benefits
automated trust
ssi for individuals, businesses
one source for truth on identity
automated verification of credentials
automated revocation of credentials
user consent mgt
user control with selective disclosures
reduction in identity data correlations
support for privacy stds, regs
better governance, auditability
policy driven management of identity rules
factur3d.io
faster, decentralized ctls, immutable ledger
more accurate identity info in 1 register
more efficient processes save costs, resources
lower business, individual frictions, costs
improve experience for individual, businesses
our initiatives for the State on BC
basic education concepts on blockchain in public sector
State blockchain council - how to leverage in dept use cases
( really an "inside" re-engineering focus )
do we create a similar council across the State orgs ???
Governance Concepts for Public Sector - Questions, Actions, Impacts
Governance Concepts
Drop focus on technologies and focus on business models and governance for network operation, growth
Governance questions include:
what are the membership roles, responsibilities for firms, individuals, agencies ?
what authorities do they have ?
what policies are set at the member level by role?
what policies are set at the network level?
how are disputes tracked, managed, resolved?
how do the governing rules and regulations get set?
who manages the governance of the network?
who manages the operations of the network?
who manages the support of the clients?
who provides services to the clients?
how are they chosen, trained, staffed?
Actions
Look at Sovrin, Trust Your Supplier governance models
Consider integration with State health departments on inspections, compliance, alerts, recall interfaces
F2F advantage>>
focus on business and operating model transparency
encourages active member participation and ownership of the network
Public Sector Blockchain Projects
s Blockchain in Public Sector - Redefine Governance, Operations
Paramount session on 9/17
Enterprise Blockchain Value Opportunities
see s Enterprise Blockchain Concepts and Value
Proposed POC Workflows based on the SOW
The POC strategy based on the SOW
Based on the SOW defined deliverables in scope, my POC strategy was:
Bootstrap the Indy network with test scripts creating:
the Indy network as part of a State Identity Registry
the network steward ID that manages Indy
the department trust anchors ( DMV, DBR) needed in the CPA license flow
DMV creates Digital ID workflow
using the proxy DMV anchor, create a DID identity and wallet for a CPA to register with the State
DBR processes CPA license app workflow
then create applications, APIs for the CPA, DBR to issue CPA license
create the process flow in the SOW for CPA licensing
CPA has a mobile app to apply for the CPA license
DBR validates the CPA identity ( DID )
DBR validates the CPA application
DBR issues the CPA credential on the ledger and to the wallet
DOS issues CPA firm Digital ID workflow
DBR processes CPA firm practice unit license workflow
Later added the stretch goal for the firm registration use case and COA
CPA firm issues employment credential to CPA workflow
Assumptions for a Production Identity Network
Usage assumptions for the State's production identity network:
Setup the State Identity network
The State IT team creates an indy ledger using a steward DID to manage the ledger as part of a State Identity Registry
The steward creates DIDs for departments that will be trust anchors to issue DIDs to individuals and organizations ( entities ):
DMV, DBR, SOS, TAX etc
DIDs for existing registered entities
When the Indy network is implemented:
The State can create DIDs for existing registered entities
and
creates wallets as needed for entities that need compatible wallets
The State records the DID on the ledger
The State can decide how to distribute the DIDs and wallets
DIDs for new entity registrations
When a new entity registers with the State
The State provides apps that create DIDs for an entity as needed to support registration processes
and
creates wallets as needed for entities that need compatible wallets
The State records the DID on the ledger
Issue Credentials for entities
When an entity applies for or qualifies for a credential
the State trust anchor verifies the qualification
the State issues the credential to the enttiy wallet and the ledger
Revoke Credentials for entities
When an entity has a credential that should be revoked
the State trust anchor verifies the revocation qualification
the State revokes the credential to the enttiy wallet and the ledger
-------------
standup.next>
1> doc synch - xuc, bpm, brd for reqmts review mtg
2> DMV integration to create CPA id ??
BM - how?
deck
3> test cases, env work for sprint 1, 2, 3 ???
4> BDD stories ???
5> report toc - goals
sow goals
education
opportunities
DMV Notes
Yes .. that's it.
The primary focus for our team is to learn
( as the email said ) is
planning for a pilot / production project.
We need to
understand the current systems and
how digital identities can be integrated
( UX, api services on both ends, data sources, current authentication and authorization methods etc ).
q> do we have metrics on how many transactions we process of each type?
helps on perf requirements
private, commercial, govt other ? entities
new licenses, real ids, state ids
renewals of all
volumes, time to issue ( from application ) etc
percent w good docs, validation, those need more info etc
q> access sites, permissions???
Get identity and credential related documentation
on the DMV applications and RIMS solution for
analysis. Typically this includes system overview,
user, developer, admin, architecture, API, tooling,
deployment and database documentation.
Discuss proposed requirements and solution strategies
for a future integrated pilot solution allowing
DMV applications to create, access and
manage digital identities for
external and internal users.
RIMS
alm op team
added agile during project
q> do we have access to the ticketing system??
q> access to defects in time...
a> demo ... test systems
a> read-only access
q> use api definitions ?? produce / consume
i> approval for an export ??
goal
> use cases
> requirements summary
> requirements strategies
a> overview demo
a> get dump system interfaces / apis ???
specs ..
a> get data models - ERDs
a> get software stack
a> export alm stuff if needed. as excel
have stories
no comprehensive docs...
doc gen tool
- static
- dynamic
RI Improvement Opportunities
https://www.sos.ri.gov/doc_lib/search
should be regex like, not standard string search
ex> search for practice license
should have tag searches as well by topic with tag list view option
Potential Challenges
Lack of Common Understanding of Identity Blockchains and Potential Value
Proposed Identity Blockchain Education Plan
Education Plan
- Basic education presentations on:
- Identity Blockchain concepts
- Case studies on Identity blockchain in government
- Answer questions on Identity Blockchain
- Schedule Identity Blockchain Opportunity Assessments
- Reference materials on Identity Blockchain use cases in Public Sector and Industry
Technical Challenges
Credential revocations
manage revocations from revocation list or api via did comm notes
-----------------
[3:01 PM] McCarthy, Tim (DOA)
For sure. I also had hoped it was entities writing to the chain as info changed so that was the source of truth and reduce/eliminate the need for agencies to api/call to each other to verify data. For example, death would impact various agencies, DMV, DLT, Tax, and could be used to eliminate fraud, never mind reduce spending on letters to deceased people.
?
[3:02 PM] Mason, James (DOA - Contractor)
we don't need to implement an api for revocation vaidation. the choice is what do you store as proofs on blockchain. that's a design option.
? yes -- transitions for individuals and organizations could automatically trigger MANY State processes !
? fraud, impersonation etc can be reduced dramatically with digital ID. For voting, to vote as me you would have to steal my phone, know my unlock code and ( probably ) a MFA multi factor authentication question etc ...
? the other key is the stack we are using ( Indy, Aries, Ursa ) supports "wallet to wallet" communications to automate validations and proofs WITHOUT calling other APIs in many cases
? The goal over time is to put more on to the logical blockchain and leverage automated digital trust for validations and proofs
I'm in. Makes complete sense and efficiencies, even if 20% adoption, will be measurable.
Candidate Solutions
CAVU integration concepts
integration pptx
- key challenges
Cavu not designed for integration services
Vendor does not have an open architecture for services or database
Vendor customization services are costly
- key opportunities to leverage
- SQL server is a full function, standards-based RDB that is easy to integrate and extend
- use a loosely coupled design between identity apps and cavu wkflow engine
- current usage of CAVU does not have to change for any apps that do not use identity blockchain
- simplifies dependencies on maintenance or replacement of wkflw engine
- copy existing wkflow to new one
- bypass collect demographics info page etc
- log and automate management of any integration services errors based on configured admin policies
- id.bc.apps >> read, write, react
READ data strategy
- identity applications need to read data from CAVU
(eg cpaLicense.status etc )
- read has 2 options
1> create a read api using a GraphQL concept - need 1 read api
2> create a separate service that runs the queries on
SQL server logical views
- determining logical views is easy for key queries
using existing SQL Server binary log to see queries from existing application tests
dynamic SQL isnt' a real performance issue given
smart caching by SQL Server
WRITE data strategy
- identity applications need to write data to CAVU
(eg cpaIdentity.demographicsInput etc )
- write has 2 options
1> create write apis for each update to CAVU services
- requires working with the vendor
2> create a separate update service that updates
SQL server logical views and tables for each transaction
- far more risk in this "reverse engineering" approach
- a "last resort" if the vendor won't create update apis
- determine data tables and views to update for a transaction
using existing SQL Server binary log to see specific CAVU updates from application tests
- create an update api service
REACT to events strategy
As a workflow engine, the CAVU system will generate many application events that the identity applications should be dependent on and react to: ( eg application.readyForReview, cpaLicense.Approved etc)
- currently, CAVU applications handle those events but do not "publish" them for consumption by dependent applications
- the strategy is to create an event stream for selected events from Cavu and let the identity applications react to those.
- Easy to create a local replica in SQL Server with only selected tables and views. That avoids modifying the CAVU database directly
- An event service can be created to listen to the data event stream on the replica and publish the application events to registered user or firm wallets when connected using the mediator services
self-sovereign identity authentication for existing applications
the identity applications will use the self-sovereign identity and Aries to authenticate with the State credential registry and the enterprise applications for new applications that support that identity authentication model.
Initially, most State appilcations are not setup to support self-sovereign identities so only the new, custom identity applications can use self-sovereign identities for authentication.
To increase the applications that can use self-sovereign identity authentication initially one option requiring minimal changes is to use OpenID Connect for any applications in the State catalog that support OAuth2 interfaces today.
The change to use OpenID is normally minimal for those State applications, sometimes only a configuration change.
There is a 3rd party, open-source OpenID Connect driver for Aries that can be used for authentication. There may be work to ensure the driver works with the latest production version of Aries.
Design: DMV blockchain solution for Individual Identity
We can talk tomorrow when you have time, but the ask from the DMV is to assist with a use case where the DMV is the initiator of a citizen’s ID on the State blockchain when the DMV creates the State credential. The next step in the use case is DBR issues a CPA license, verifying the person on the blockchain. Since the DMV assessed the person’s identification, this blockchain process improves identity management, compliance, trust and speed to execution.
DMV Resource Investment
- Support the research for production integration requirements, processes and strategies. (Estimated time commitment for subject matter experts is 10-20 hours.)
- Run a Test script developed by the blockchain vendor, Infosys, to create individual State ID process on the blockchain Test environment. (Estimated time commitment from Nicole or Pam - Thirty minute of training, 1-2 minutes per test script transaction.)
- Help write Proof of Concept final report. (Estimated time commitment for subject matter experts is 10-20 hours.)
Benefits for the DMV in the blockchain proof of concept project:
- Digital Identity as real-time verifiable identity proof
- Enables other agencies to use same verification process via the digital ID.
- DMV helps set identity blockchain standards and strategies for the State.
- Lower compliance costs for DMV on Digital Identities
Many other benefits but not for DMV accuracy or productivity - Digital Identity is a Self-Sovereign Identity ( SSI ) based on identity standards that protects individual privacy
- Individual Digital Identity holders have "selective disclosure" on all shared Identity data
- Potential fraud reduction in all related State and external processes using a Digital Identity
NEED USER STORY BOARDS FOR VISUALS
Chew on it and we can discuss.
Thank you!
From: Craddock, Walter (DMV) <Walter.Craddock@dmv.ri.gov>
Sent: Tuesday, August 25, 2020 4:30 PM
To: McCarthy, Tim (DOA) <Tim.McCarthy@doit.ri.gov>
Subject: RE: App
In a nut shell…are they trying to access all DMV records? If so, for what purpose?
From: McCarthy, Tim (DOA) <Tim.McCarthy@doit.ri.gov>
Sent: Tuesday, August 25, 2020 3:42 PM
To: Craddock, Walter (DMV) <Walter.Craddock@dmv.ri.gov>
Subject: RE: App
Hello Bud,
I’ve asked the project manager working on the DBR blockchain to create an informational presentation. I will schedule a meeting shortly.
Thank you,
Tim
From: Craddock, Walter (DMV) <Walter.Craddock@dmv.ri.gov>
Sent: Monday, August 24, 2020 11:54 AM
To: McCarthy, Tim (DOA) <Tim.McCarthy@doit.ri.gov>
Subject: App
Blockchain Integration Concepts pptx
Identity Blockchain POC Integration Overview-v3.pptx
----------------
m200902 - DMV integration meeting feedback
----------------
----------------
m200902 - DMV integration meeting
----------------
feedback
mm
interesting
potential
circle back internally
how it fits
bud
busy now more online
which id type?
could we have ftp drop a file ?
our process runs, then reads
a> email deck
sample json
note
Our POC ends at the end of November and we need to show our working POC solution and complete our Analysis Report by then.
The
minimized the technical ask as much as possible
a> continue the conversation
Blockchain Use Case BPM diagrams pptx
Blockchain POC Identity_BPM-v2.pptx
RI Blockchain Work Group
see Blockchain Work Group slide deck
RI_Blockchain_Work_Group_plan.pptx
========================================
RIDTC -- Digital Transformation Council
or
ribc - RI Blockchain Council
RI BC WG ???
Understand how blockchain and related technologies can be leveraged in public and private solutions integrating all stakeholders ( individuals, organizations ) effectively
Goals:
> technology accessibility for all Rhode Islangers ...
Groups to include:
Legal
announced efforts by the State's corporate legal community to explore the need for any clarifications to the Delaware corporate law to address and enable the authorization of "distributed ledger shares" by Delaware corporations.
Accounting
Finance
topics
------------------------
investment themes
------------------------
solution themes
CIP - continuous improvement process
EOS
CDS
TDD
SSM smart service mgt
SDM smart data mgt
SOE service oriented engineering
XUC reqmts = executable use cases
EDS event driven systems
AQM automated quality mgt
------------------------
other Govt sites
british columbia digital transformation >>
https://www.govops.ca.gov/blockchain/
delaware blockchain initiative
corp filings only
DUBAI
RI BC Work Group Slide deck adds
RI_Blockchain_Work_Group_plan.pptx
add iam decks ...
questions
who am I
what is ssi
how it's different
what are potential benefits
how can we get there
prod plan - create use case, boa, solution strategies
what are success keys
clear bcase
leverage existing experience, solutions
phased rollouts - pilot w feedback, adjustments
design for change
privacy by design
current iam systems
ssi id bc
new toip
aries agent arch ex
boa
about me
Education Products
Blockchain Video concepts
Blockchain Demo video-v1-Liz.pptx
This is a very good start. In addition to defining digital identities, their potential benefits and some reference use cases, the detail analysis on journeys from an individual, a business and a State agency perspective are definitely a great way to present this.
Identity Blockchain Concepts pptx
Work Products
our.work.products
poc solution
mon - prod reqmts mtg
wed - prod architecture mtg ( meet prod reqmts, arch stds)
whitepaper
case study
poc final report
workgroup plan - biz, tech audiences
RI_Blockchain_Work_Group_plan.pptx
Digital Government Blueprint
Identity Blockchain POC to Pilot Plan and Comparison
based on Amit discussion ..
a> poc 2 pilot deck
poc scope, use cases, features, roles, goals, value realized
reqmts > design > infra
pilot scope, use cases, features, roles, goals, value realized
reqmts > design > infra
lgoical vs physical
host as a service into existing infra
blockchain data similar to other data types
vcrs
givens for reqmts
oidc integration
data integration
who's doing this??
what we need to do?
what are the foundations?
chirag
what are we delivering for prod?
vcrs
issues
strategies
video
paper flow
passport reqd
automate w events, notifications
i> slow to see pts
a> email link to dmv video
DBR Digital Identity Blockchain POC deck
-------------
Liz.deck>
3 parties
short video
short pptx
new version for tomorrow
did, vc
other license example --- restaurant etc
summary 3 views
state
individual
business
call to action
a>>> updated deck
a>>> view ega.ee
a>>> legislation
see
ega.ee
legal structure changes
for did, bc trust
goals >>
see podcasts
can you help us??
focus on community = dg
book
full digital nation estonia
see >>>
chainyard ebc credentials video
https://www.linkedin.com/posts/movee97_2020-hl-member-summit-licensing-activity-6719812268290265089-g2ta
long video
related pptx on points
ref on concepts
add>>>
can use wallets for crypto, tokens
DG definition
...
a different way to organize and work together as a community.
DG roadmap
Digital Identity
Digital Services
Digital Community
Digital Partnerships
#Key POC .question.list
- what is id bc?
- what is biz value of id bc by role?
- what are the challenges of id bc?
- where is id bc used in production now?
- which public sector teams have done id bc well?
- how does id bc integrate to existing IAM systems?
- what are the best migration strategies for id bc?
- how do we manage id bc migration?
- what are the agency and IT priorities that would delay a production project?
- what are the foundational identity focus areas? ( DMV, SOS ) ?
- what are the highest benefit areas for ID bc by agency?
- how, when and where do we provide multiple ID formats ? (eg paper, DID etc )
- how can users get max value, convenience from their digital IDs, credentials and wallets?
- how centralized or decentralized services should services be?
- what's the app catalog and priority usage for citizens, firms, agencies?
- which ones can be accessed using did for authn?
- which ones have API interfaces, agents and / or data interfaces?
- which apps should be prioritized?
- how do we conplete BOA ( Blockchain Opportunity Assessments ) with FACTUR3D.io, OKRs?
- what's the best migration strategy for each user role?
- what are the recommended services to backup and restore user wallets easily, safely?
- when should MFA ( Multi-Factor Authentication and Authorizations ) be used ?
- what does the recommended production services stack look like for each tier in the architecture ?
- what does a production project plan, documentation control list look for DID project phase 1 ?
- what are the key project decisions?
- what does the project team look like?
- what are the supporting State resources needed? when?
Tasks
Chirag - 9/29/20 deliverables for POC team
White paper :
Chirag to review
multiple products - Infosys, Joint, RI press release
What is the Digital Roadmap and Milestones for Digital ID in State Government
- RI DG Blueprint
- deliver better services, efficiency, trust, transparency with milestones and metrics
- RI DG Work Group
- an expanding team to define the blueprint, the milestone deliverables and work on projects
Evolve a Digital ID - Maturity Model for State Governments
- RI DG CMM
- open > planned > tactical > strategic > sustainable
- sample metrics for each stage
- RI DG SDP
- solution delivery model - combines SWT SDP, WEF toolkit and PMO standards
- RI DG BOA
- blockchain opportunity assessment - from SWT BOA
What is the Blockchain POC project
- dbr mission > DG program > BC POC project
- What the POC solution does
- Why it's needed
- Recommended next steps
What is different between POC - Pilot - Prod
RI POC to Pilot Comparison
- functional
- non-functional
- governance
- operations
- support
The output of POC has to be Demo, User Journey etc.
POC outputs ...
Video
Slides
User journey maps
Learnings
Recommended Next Steps .
..
Liz meeting 201001
DBR CPA potential DID value on use cases
id bc value
DG foundation for other milestone solutions
improved service levels for users, firms
improved security & data privacy
improved compliance with regulations & standards
improved transparency & accuracy with blockchain history
improved efficiency with credentials sharing ( like phone autopay )
improved user control with consent management
improved reliability with automated agents, digital wallets
support for digital identity backup & recovery
cpa, firm flows
auto-verification of id key
pu license
default fields from sos id
1 time vs on going tasks
qr code once, connection def cached
option to auto-fill in of cpa license, pu license from
the presented ids
opps
did ctl
did consents
did autofill
did history
data provenance - governance - compliance
Current Week task list
2> workflows compared: old vs new
create old slide
create new slide
discuss net payoffs
a>>>
validate processes w Dee / Jovonna
cpa license > old v new
firm license > old v new
-------------
standup>
last test ---
get more screen shots of a test to match to benefits
reviews needed ..
jovonna, Liz, mark, Brian ?
JB - auto load data, automated workflow are keys - other?
- survey Liz, Jovonna on benefits
deck content review w jem notes
- results & findings
cpaApplicationApproved.xlsx >> to validate w DBR, then slide
- integration strategies - dmv,dos and cavu
mark kent - review DBR apis, event data sources >> update doc
- referenced examples ...
estonia - eid, services, full integration
bc.gov - ssi, business licenses gain 4x faster when automated
singapore - liz references --
-------------
old process
user goes to nasba - registers for RI, exam, transcript
go to RI fill out paper form send in
admin enters profile info
nasba data matched on user ID and loads exam, transcript
firm supplies experience credential as a form
admin enters experience into system
new process
nasba
apply at dbr using RI ID, shared
auto load user data
match nasba on user ID to load exam, transcript
user notified firm work history needed with a link
i send my employer a request for experience w callback
firm enters work experience online
the system matches the work experience on the cpa RI ID nbr
when app complete
notify user via email or text
move app status to ready for review for admin
3 of 4 steps automated
4th step has an automated workflow but requires firm input on web link
add notes on re-engineering:
dbr - cavu dstreams for event notification msgs
read-only db for dashboards
custom workflows ... cps
load demographics to db ( update authz )
nasba exams
nasba transcript
load firm work experience from online app
ready for review page
dmv - use integration deck docx
ui - did option select, did request status
api - call create did on callback to ui
email user ??
dos - same integration model
ui - did create notice, did request status
api - call create did on callback to ui
email user ??
wp references from state
emphasis on DG, roadmap, id foundations, modernize in place themes
then update pilot wbook
Liz
Does the project / solution summary below work for you?
The key is the potential benefits which are long ( see list below ).
I realize now the benefits will come from 3 main areas:
- Identity Blockchain
- Services integration ( vs the relatively standalone applications we have today in departments – the POC actually includes this in the CPA licensing workflow )
- Data quality with better data validation available in the services model
I have 2 key goals for our Thursday meeting.
- Spend a few minutes letting you test the POC live from your Chrome browser with me
- Get quotes on the potential value of the production solution that we can use in our Final Report on the project
Mark Kent - CAVU db
CAVU Corporation_Permission_Level.pdf
cavu-notes1.docx
cavu summary
cavu schemas to read, update on workflow automation
goals>
1> use the existing cavu workflow solution as the engine for automation, paperless
2> keep cavu development process the same
3> create alternate workflows for steps where data inputs are automated
4> update cavu workflow step status, application step & user info
5> extend cavu to automate workflow events using event source streams
https://portal-mmr.micropact.com/DataDictionary/Diagrams/Work%20Flow.pdf
https://portal-mmr.micropact.com/DataDictionary/ddShowObject.asp?type=U
key objects
contact
onlineAddress
case = license
workflow Each record is a WorkFlow tied to a specific Credential
documents ( attached )
logHeader
logDetail
mailingListType - all mailing lists
onlineSql
==============
Good morning Jim,
I reached out to the vendor yesterday.
Below is information from the vendor.
Regarding Read Only access in CAVU, there are different security levels within CAVU, which includes Read Only. Attached is a security document for your reference.
Below are links to data dictionary / diagrams./ Please note the contents are very outdated, however, you may use this as a starting point.
Tables/Diagrams – Main Menu:
https://portal-mmr.micropact.com/DataDictionary/DEFAULT.ASP [nam05.safelinks.protection.outlook.com]
Tables:
https://portal-mmr.micropact.com/DataDictionary/ddShowObject.asp?type=U [nam05.safelinks.protection.outlook.com]
Diagrams:
https://portal-mmr.micropact.com/DataDictionary/ddShowDiagramMenu.asp [nam05.safelinks.protection.outlook.com]
-Mark Kent
From: Mason, James (DOA - Contractor) <James.Mason.CTR@doit.ri.gov>
Sent: Thursday, November 12, 2020 2:25 PM
To: Kent, Mark (DOA) <Mark.Kent@doit.ri.gov>
Subject: questions on Cavu and documentation
Hi Mark,
The DBR Blockchain POC is looking at the professional and business licensing workflows defined in Cavu. Ignoring the workflow tools, I’m looking interfacing options.
I’ve been told Cavu does not have an API layer, that everything you want to access from Cavu is a billable project to them to create the service, is that correct?
I do assume they are using some sort of standard database to store data ( eg MySQL, Oracle, Mongo etc ). Is that true? Is there documentation on their data model and a read-only capability to access it by applications?
Thanks very much,
Jim
Estonia First Call
estonia
q> legislation for use case
mark
eidas
core concept
simple, unified focus
physical and digital world the same for user
in our case that will be different .. bar example
customer service example
patient emr
q> regs on consent mgt ??
q> use of emr systems that estonia doesn't build?
user uid for all as public data - no rights from did
like my email, phone nbr now
q> doesn't the did provide access ??
q> how do you get access online ?? mfa
q> id is never access.
ids map to roles and permissions for access
your id is similar to IDP like google id
I am granting consent to an system to access something
eg track my data
oidc connects that public id to legacy systems
estonia id shares name w uid
some countries have more restrictive privacy data rules
i> levels of id, data protection based on use case
access to netflix needs less verification
than access to my ssn acct
estonia eid card is mandatory unlike most countries
eid is valid for eu travel
v> adoption is easy for eid based on common usage, low data risk
q> can I use your eid card to travel or get some benefit
i> estonia not mobile yet
i> eid card vs mobile did ?
not same info sharing
q> how does user recover did quickly?
q> does the did belong to the user or the govt ?
ids are credentials
f> govt issues 2 forms of eid - card, phone option
q> what's the process to re-establish your id ??
v> eid card needed to get services
f> we all have digital signature act on bc
q> proof of free will for a signature to validate ???
q> for online agreement, our did is proof of who signer was
can add mfa biometrics and other proofs
i> eid exposes name, not good for private transactions
i> private sector companies as trust service providers
( eg banks etc to create accounts )
similar to aml, kyc
f> estonia business registry like RI
q> estonia firms not a legal person, in US company is legal person
i> how does person represent company on corporate actions?
f> RI has relationship for officers, persons linked to firm
company credential automated in RI
f> person can represent multiple companies if authorized
f> first name, last name, eid are the exposed data elements
i> names should be optionally private
win> they have automated and mandated their process
loss> they don't have the strongest privacy practices yet
f> US has automated fraud detection on card use -- see amex
i> their permanent number allows data correlation, brokering
q> how do I get a replacement eid?
win> estonia is small country w lower fraud risks
existing systems work reasonably well for them, not US
f> iam support for multiple org mappings on eid
rbac for each org for a user
q> are you familiar with toip.org ???
f> eid verification process = 1 week min to get a new card
temp eid card to use 2nd one as a did
your eresidency card is eid card 2 - sign w diff key
f> free access to get ids
open source for tax payer funds usage
open source reduces conspiracy control by govt
how to prove?? did does that
openssl bugs seen, fixed vs hidden
h> move to open systems was at least 5 years from closed systems
eg ecdsa key tools etc
x> mobility example - insurance co accesses real owners
to set fair rates ...
d> diff> we are more consent driven in data sharing
they pre-define rights
i> govt access granted by:
direct by law
user consent
probable cause of a crime or ?
warrant process for access
f> eid is self identify and legal signing
x> driver speeding only needs eid, police use to get
insurance, registration
x> a mobile license would allow driving in other countries,
rental, travel etc --- universal eid model
sum> easy, integrated system lowers business costs
state provides id vs businesses
user grants consent to businesses
sum> needs trust for server trust providers
sum> shares names universally - not gdpr compliant
sum> mobile id for devices - cars make decisions
key laws
digital signature
real id
digital identity protections
a> create a deck from this ...
hr8215 - digital id task force bill to recommendations
egovernance academy
consultants from estonia
RI use case
no tech solutions
architectural consultancy
legal process support
data security practices for processes
strong did practices
key mgt systems
what are the operational metrics systems to manage this?
process similar for use cases
differences in use cases
my points
1> name should be restricted in some use cases
2> data brokering with permanent ids
3> ids for orgs, things
legally binding for a company, individual signer is company issued credential
4> access to private data rules
shared
by law -- ssn
by consent
by probable cause for authorized agents in use cases
by warrant
eid paired did w key to validate
me >>>
differences between realid (eid ) and did ( digital id )
is the id paired with a physical id card for use by all?
who issues the id?
is it decentralized?
do I own the id or the government?
do I control the id or the government?
does the government issue me a resident credential?
can my data be correlated using the id?
do I control the data I expose with my id?
do I have control and consent over my data relations, credentials?
where is my identity or proxy identity shared? eg google id
can trust be fully automated with other parties (eg toip )?
what's the process, time to recover my id? parties involved?
how is my identity verified to issue my id or credential?
Project Status Meeting - 201109
on target for final delivery
issue - no direct planning inputs from DOS for Pilot
RI AWS should be available this week
Pilot solution analysis continues
Project Report in progress
Project slide deck, video in final edits
User Test continues to next week as expected
Project Status Meeting - 201026
a> Brian, Tim project status, strategy meeting
a> Amit - presentation meeting
a> wpaper reviewed, updates in progress
a> dos help on planning for firm digital identity for Pilot solution
a>poc to pilot analysis and planning in progress
showed poc to pilot xlsx
t> research other states on DID, related legislation
a> detail analysis w other DBR, DMV, DOS staff on current operations
t>> met Friday with Jovonna on POC review, how digital ID can improve CPA, firm licensing
t>> met Thursday with Liz on
t>> schedule next meeting with DMV
open>> schedule first meeting with DOS showing ID BC integration concepts deck, get feedback on support
a> test env -- Infosys setup done
use other vis aws lz env ???? Amit
a> delay in RI AWS test environment has extended test schedule by 1 week
>> testing in infosys UAT environment
>> no idea when RI AWS LZ will be ready yet
a> User testing started
>> I'm going through the POC configuration now
>> Infosys providing support as needed
>> planning for a demo of POC in User Test next week
a> Digital Government Blueprint and Digital Identity research
reviewing Estonia, BC.gov, Lichtenstein, US states and more
have multiple inputs for DG CMM - capability maturity model including Gartner lightweight summaries
Prior Week task list
w201019
Project Status Meeting - 201019
a> wpaper reviewed, updates in progress
a> dos help on planning for firm digital identity for Pilot solution
a>poc to pilot analysis and planning in progress
showed poc to pilot xlsx
t> research other states on DID, related legislation
a> detail analysis w other DBR, DMV, DOS on current operations
t>> meeting Friday with Jovonna on POC review
t>> schedule next meeting with DMV
open>> schedule first meeting with DOS showing ID BC integration concepts deck, get feedback on support
a> test env -- Infosys setup done
use other vis aws lz env ???? Amit
a> delay in RI AWS test environment has extended test schedule by 1 week
>> no idea when RI AWS LZ will be ready yet
a> User testing started
>> I'm going through the POC configuration now
>> Infosys providing support as needed
>> planning for a demo of POC in User Test next week
a> Digital Government Blueprint and Digital Identity research
reviewing Estonia, BC.gov, Lichtenstein, US states and more
have multiple inputs for DG CMM - capability maturity model including Gartner lightweight summaries
w201013
a> wpaper review
a> dos help on planning
a> showed poc to pilot xlsx
a> test env -- start w infosys
use other vis aws lz env ???? Amit
t> detail analysis w other DBR, DMV, DOS on current operations
t>> meeting for DBR Cavu demo - Jovonna, Dee or Mark ??
goals ???
t> research other states on DID
i> sandesh meeting access?
-----------------------------
p201013 tue
swt.time>
_sybal
-------------
pstatus>
> test envs
> DOS team needed for pilot planning
-------------
plan>
etss report
iam
https://docs.microsoft.com/en-us/azure/active-directory/develop/v2-protocols-oidc
https://docs.microsoft.com/en-us/azure/active-directory/develop/active-directory-v2-protocols
DOS - Dept of State support request
vis on aws now
migrating a mobile app there now
a>> follow up on vis aws LZ acct for our poc in their account
brian, amit, chirag
a>> send wpaper link
i>> legislation for DID support ??
bc.gov
estonia
lichtenstein
us.gov ???
governance model
other states on legislation ...
other states on DID for DMV
a>> chirag on gartner research for states on did legislation
currently multiple states doing digital identity, getting legislation for Liz
a>> schedule a demo of poc ....
end of next week
a>> review of pilot planning
morning review
a>> blueprint not in scope
dg cmm
w200925
our.question.list
what is did & bc? factur3d.io
what is biz value of id bc?
what are the challenges of id bc?
where is id bc used in production now?
what public sector teams have done id bc well?
how does id bc integrate to existing IAM systems?
what are the best migration strategies for id bc?
how do we manage id bc migration?
>> other
centralized or decentralized services?
what's the app catalog and priority usage for citizens, firms, agencies?
which ones can be accessed using did for authn?
w200925 week
==============================
m200918 fri
------------------------
standup>
done
------------------------
Liz presentation ...
1 to 3 minutes / pages
mission
this is what it does - before / after views
this is why you want it
this is what we propose
outcomes are
understanding
commitment & support
potential funding
many supporting appendices
>> examples of GREAT projects ? executive presentations?
------------------------
brian>
test env
prod env
what other projects have done this integration ?
a>> get dbr metrics for processes
volumes including rework
factur3d.io
#prod.reqs
app catalog
service catalog
security iam methods
api gateways
ads ??
a>> get dbr metrics for processes
volumes including rework
use case list
bpm - transaction details
jepl
factur3d.io
architecture overview doc
wpaper
no toc??
abstract good but generalize from cpa license
exec sum
not just replace paper, upgrade existing systems
add legal, safety reqmts to sum not just impacts
show user control over their identity, credentials and
private data
a> need to add the migration, integration plans to existing
sites, systems into wpapper scope
present scenario
a> need visual for CPA license flow OLD vs NEW
r> Brian
a> heat map start ....
------------------------
dmv>
email Maureen
To: Mason, James (DOA - Contractor); Patel, Chirag (DOA); Craddock, Walter (DMV); McCarthy, Tim (DOA); McGuirk, Brian (DOA); Sedlock, Clare (DMV); Barnett, Nicole (DOA); Mazzenga, Pam (DOA); Rathor, Bhim Singh (NON-US); Bashir, Saad; Antonaccio, Lisa (DMV); Amit Trikha; Tanner, Liz (DBR)
==============================
m200917 thu
------------------------
standup>
a>> get dbr metrics for processes
volumes including rework
use case list
bpm - transaction details
jepl
factur3d.io
architecture overview doc
wpaper
no toc??
abstract good but generalize from cpa license
exec sum
not just replace paper, upgrade existing systems
add legal, safety reqmts to sum not just impacts
show user control over their identity, credentials and
private data
a> need to add the migration, integration plans to existing
sites, systems into wpapper scope
present scenario
a> need visual for CPA license flow OLD vs NEW
r> Brian
a> heat map start ....
fri pm
a> cost estimates on 2 med, 1 large
accounts
aws instances
arb
------------------------
other>>>
------------------------
Liz>
a> content scheduling for wpaper - press release etc ... who owns??
a> education plan
a> case study / bcase
a> poc video
final product will matter
need intro
show each user journey - cpa, dbr license,
move admin work to appendix
a> coa not for cpa licenses
a>> get dbr metrics for processes
volumes including rework
see boa
bpm
jepl
factur3d.io
views for benefits.
a>> jovonna - review jepl for cpa license - add value
------------------
Liz view of presentation
key questions to answer
1 to 3 minutes / pages
mission
this is what it does - before / after views
this is why you want it
this is what we propose
outcomes are
understanding
commitment
potential support
who's doing this now?
mission
make it easy to do business in RI
found EU ahead
US behind
unique in US States ..
see eu, ca
estonia, dubai, lichenstein, bc.gov, ebc, ebsi, wef
ahead of US behind world
5WH
what problems do we want to solve?
improve efficiency of govt process and experience for all parties
who? individuals, businesses, State agencies,
supporting organizations ( nasba )
-------------
what is it?
-------------
re-engineered State services using those 3 technologies
digital transformation? blockchain? SSI ?
-------------
why do we want it?
-------------
citizens
businesses
State agencies
-------------
what are the next steps?
-------------
identity blockchain poc in progress w Infosys
cta - next steps
business next steps
liz diagram
did first
credentialing second
it next steps
wef toolkit diagram
program next steps
how do you apply this solution to other agencies?
how do you apply this solution to outside parties?
------------
Jim's secret truths
------------
trust is the foundation for all relationships
we put trust to work
in theory, there's no difference between theory and practice ...
modern QA mgt focuses on six sigma and zero defects at the expense of failure management
catch 22 for new systems - everyone wants change but doesn't like new system
consultant borrow your watch to tell you the time -- good because you have all the answers
resistance to change expert - "war council" .. feelings over data
customer first doesn't mean user interface first, it means value first
in a world of digital transformation, which careers are in demand AND long-term?
------------
extra - the appendices
------------
what projects did she like, why, how justified??
all it history for winners
leveraging new techs and operating methods to improve
service levels, user experience and process efficiencies
potential savings >>
bc.def>>
shared
vs separate silos maintained independently
costs, quality, fraud
near real-time
immutable
trusted records on entities, assets, transactions
everything is immutable ( write-only ) digitally signed
traceable history - important for dispute resolution, legal
ledger & related data
provides digital proof of all transactions meeting
approved rules applied by smart contracts
all related data is tracked by transaction
secure private data
data privacy rules and regulations can be enforced
ensuring confidential and PII ( Personal Identity Information )
------------------
summary slide deck
table of contents
landscape
context - trust @ work
govt many services, use cases
firms same + id, creds
individuals - id, creds, services
technology
what's blockchain with examples
what's did with examples
what's identity blockchain with examples
digital trust model
toip - original trust triangle - issues
toip - electronic trust triangle - issues
toip - digital trust triangle - opportunities
value - bcase
opportunities
challenges
challenges & strategies
our sdp – solution delivery process
process - learn ( research poc ) > test pilot > production
sri poc w governance - itg, arb, agencies, infosys
our poc
user journeys - value opps: person, firm, agency
poc proofs - stack, tech, process improvements
feedback
moving forward
poc feedback
pilot planning
agency boa
how to get involved - sri bc wg & hlf ps
resources
==============================
m200916 wed
------------------------
standup>
a>> get dbr metrics for processes
volumes including rework
factur3d.io
#video
Hi Chirag
Here’s a link to POC Blockchain Sprint 2 video.
The team did a great job adding context in this video.
There’s more we can do in a Final version video that would make this “standalone” to explain what we are doing and why ( adding context ).
In addition, the video shows administrator setup for the credentials IN SEQUENCE with the user applying for credentials. The admin setups will be moved to an “Admin section” for the 1 time configurations so the actual video flows on the front-end will JUST show what is done for a CPA, a CPA firm or a DBR admin to process requests ( vs the 1 time setup ). We will add a single slide for each user journey as introduction to that section of the video as well.
Thanks
Jim
https://rigov.sharepoint.com/sites/DBR-Blockchain-Project-Team/Shared%20Documents/General/Sprints/RI_Sprint2_demoVideo_Final.mp4 [rigov.sharepoint.com]
q> in our secure world, using multiple devices for
security makes sense - Web app w mobile creds
CAN we simplify the access flow to make it easy??
q> admin setup ( 1 time ) explanation of app download
scan qr to connect to an agency
4 steps --
define cred schema
define cred definition
create connection invitation on state app
set connections to state registry
credentials connection process ( every time )
user scans qr code on app for agency
user connects & accepts cred offer
q> production ---
web agent option if no phone ???
r> need flow charts for journey & interactions
for each trans
- get id
- get license etc
- find user, firm in registry
i> which are 1 time setup vs ongoing for each trans
make separate pre-req to user journey
( like firm flow )
i> add 1 sheet on summary of user journey
i> cpa credential request sent to BOA for approval
once approved, the credential is issued to the walllet
with a connection request
i> user applies for employment credential ???
user applies for position
firm issues emp cred to user
i> separate 1 time setups for credential defs
from user journeys
i> keep connection details on qr code for 2 parties
i> explain the firm employment credential agent app
will be available to firms
can be customized on schema setup
g> good showing state cred registry after cred issued
c> check firm ui apply for id
context slide
wpaper
get some metrics about the way things currently happen – for each point, then it will be better. Jim can help us with that?
------------------------
==============================
m200915 tue
------------------------
pstatus>
39
DMV will support project on analysis, requirements for id bc, poc
Sprint 2 complete
Sprint 2 video Wed
Sprint 3 started
Added a proxy DMV Web portal to renew State ID with create digital identity (DID) option
Infosys drafted a whitepaper on the project
Simple story board on blockchain, digital identity, POC project, opportunities
Education plan in progress with Liz on bc workgroup concept
#video
context - bc in ps
table of contents
landscape
context - trust @ work
govt many services, use cases
firms same + id, creds
individuals - id, creds, services
technology
what's blockchain with examples
what's did with examples
what's identity blockchain with examples
digital trust model
toip - original trust triangle - issues
toip - electronic trust triangle - issues
toip - digital trust triangle - opportunities
value - bcase
opportunities
challenges
challenges & strategies
our sdp
process - learn ( research poc ), test pilot, prod
sri poc w governance - itg, arb, agencies, infosys
our poc
user journeys - value opps: person, firm, agency
poc proofs - stack, tech, process improvements
feedback
moving forward
poc feedback
pilot planning
agency boa
how to get involved - sri bc wg & hlf ps
resources
------------------------
arb notice email
mark kents - elicensing engineer
------------------------
standup>
pstatus = 39
dmv will help us on analysis
sprint 2 video
front-end slides
what is a blockchain?
what is did?
you own your own id
individuals, organizations, things ( IoT )
dids, credentials, stored in dwallet
how do dids work?
paper-based trust model
digital trust model
leverage related tech for more value ...
analytics, automation, AI, IoT, mobile, security
toip -- layers of technology, governance
why is it needed? by role value
health & safety, compliance, user ownership
fraud, accuracy, efficiency, automation,
optimization, incentivized behaviors,
cost savings, risk reduction, revenue impacts,
resource impacts, data quality
who is doing it and what we can learn from others?
what is the blockchain poc project?
goals
validate the technology works on State gov use cases
learn from the poc what works well, what doesn't
understand what a production solution needs
educate State agencies on identity & blockchain
------------------------
==============================
m200914 mon
------------------------
DMV integration meeting
Research resources granted
DMV POC integration
get current process ...
renew real id
option to create digital id
all records
birth, death, education,
pull records from agencies
citizens portal
360 view for individual
- existing ids
- new ids
- automate near-term reqmts for credential currency
- xover to ma fishing license
gov2go
nic
ri interactive ...
ri.gov
we add services
a> goals for DMV planning meeting
steps
0> background -- nicole, brian
1> understand RIMS overview now, email ..
2> review
------------------------
research other govt blockchain solution concepts
bcase
------------------------
RI.env>
AWS and ...
access teams ...
did stack
support OIDC ??
Andrew Reidl
AWS engineering lead
Sanjiv Bhatia
cloud pgm mgr
Andy R
need
console, cli access in landing zone
create dbr dev account w dev mode enabled
enrollments ???
azure ad for idp -- sso --
m365 license for each user accounts
federation with
ad security groups linked to dev mode role
< recv multiple apps for each role
maps existing accounts to ams roles
aws console access
dbr dev, uat, prod
oidc supported
not a control tower landing zone
ams dev mode = aws account via console
governance - create ams to build templates
cloud formation template
ams way of doing things in aws
define vpc - ec2, storage, net ports etc
i> ext client access to front-end ports
ext connections open by default
standup security group in firewall
account has 2 av zones w pubic subnet, private internal
internet open by default for repo downloads
>> later will push through security stacks
normal arb process ...
account id for sso = 2 weeks
sol arch - tagging for resources mgt for app only
in dev mode, no auto backup etc
snapshot backup
ams rfc process for uat deployment
ams services available etc
br = ssm thru aws
a> request sso accounts - dbr in aws ( 4 accounts )
dev, uat, prod, devops
via servicenow to andy
a> request for state accounts, dev mode role after arb approval
a> arb review for deployment to mark w / tony ?
a> email mark w / tony lib on arb radar
i> DMV oks hours
no data fields exported from test system to POC
q> onboard roadmap for dev mode instances?
next steps??
prod reqmts
i> pii in cloud approved ???
------------------------
pstatus>
------------------------
standup>
a> front end slides on ...
ID concepts
triangle - 3 times
why ? see workgroup benefits slide on idbc
a> sprint status
a> whitepaper draft
a> Hi Tim - this new document version
( Blockchain-POC-DMV-ID-integration-v2.docx )
adds another option Chirag asked for:
Option without DMV - New POC Plan to “proxy” DMV identity process with digital identity
------------------------
==============================
DMV integration v2
Hi Tim - this new document version
( Blockchain-POC-DMV-ID-integration-v2.docx )
adds another option Chirag asked for:
Option without DMV - New POC Plan to “proxy” DMV identity process with digital identity
==============================
a> see mobi cmdm and other business case templates
a> create cpa license jepl for review as slides ??
a> governance models -- JM session, TOIP, Sovrin on governance
a> Indy, Aries production examples reference
indicio, bc
a> RI agency systems access, research
==============================
poc dmv realid
Option without DMV - New POC Plan to “proxy” DMV identity process with digital identity
http://www.dmv.ri.gov/licenses/stateID/
http://www.dmv.ri.gov/documents/realid/Real%20ID%20Identification%20Documents%20List.pdf
http://www.dmv.ri.gov/video/real-id.php
form for drivers license
http://www.dmv.ri.gov/documents/forms/license/LI-1.pdf
u201029 - Liz - presentation deck updates
------------------------
Liz>
pptx deck
q> do we chapter headings .. yes
a> update dg slide
a> add federated symbols
email symbol
a>> added my id slide
w roles, agencies
a>> next slide shows how data is shared
by indivdual
from state
t200917 - Liz presentation design deck
------------------
Liz view of presentation
questions to answer
1 to 3 minutes / pages
this is what it does
this is why you want it
this is what we propose
outcomes are
understanding
commitment
potential support
who's doing this now?
mission
make it easy to do business in RI
found EU ahead
US behind
unique in US States ..
see eu, ca
estonia, dubai, lichenstein, bc.gov, ebc, ebsi, wef
ahead of US behind world
5WH
what problems do we want to solve?
improve efficiency of govt process and experience for all parties
who? individuals, businesses, State agencies,
supporting organizations ( nasba )
-------------
what is it?
-------------
re-engineered State services using those 3 technologies
digital transformation? blockchain? SSI ?
-------------
why do we want it?
-------------
citizens
businesses
State agencies
-------------
what are the next steps?
-------------
identity blockchain poc in progress w Infosys
cta - next steps
business next steps
liz diagram
did first
credentialing second
it next steps
wef toolkit diagram
program next steps
how do you apply this solution to other agencies?
how do you apply this solution to outside parties?
------------
Jim's secret truths
------------
trust is the foundation for all relationships
we put trust to work
in theory, there's no difference between theory and practice ...
modern QA mgt focuses on six sigma and zero defects at the expense of failure management
catch 22 for new systems - everyone wants change but doesn't like new system
consultant borrow your watch to tell you the time -- good because you have all the answers
resistance to change expert - "war council" .. feelings over data
customer first doesn't mean user interface first, it means value first
in a world of digital transformation, which careers are in demand AND long-term?
------------
extra - the appendices
------------
what projects did she like, why, how justified??
all it history for winners
leveraging new techs and operating methods to improve
service levels, user experience and process efficiencies
potential savings >>
bc.def>>
shared
vs separate silos maintained independently
costs, quality, fraud
near real-time
immutable
trusted records on entities, assets, transactions
everything is immutable ( write-only ) digitally signed
traceable history - important for dispute resolution, legal
ledger & related data
provides digital proof of all transactions meeting
approved rules applied by smart contracts
all related data is tracked by transaction
secure private data
data privacy rules and regulations can be enforced
ensuring confidential and PII ( Personal Identity Information )
------------------
summary slide deck
table of contents
landscape
context - trust @ work
govt many services, use cases
firms same + id, creds
individuals - id, creds, services
technology
what's blockchain with examples
what's did with examples
what's identity blockchain with examples
digital trust model
toip - original trust triangle - issues
toip - electronic trust triangle - issues
toip - digital trust triangle - opportunities
value - bcase
opportunities
challenges
challenges & strategies
our sdp – solution delivery process
process - learn ( research poc ) > test pilot > production
sri poc w governance - itg, arb, agencies, infosys
our poc
user journeys - value opps: person, firm, agency
poc proofs - stack, tech, process improvements
feedback
moving forward
poc feedback
pilot planning
agency boa
how to get involved - sri bc wg & hlf ps
resources
t200915 - DMV support, education plans
Create test users
Per our conversation with Andy Reidl (CC’ed) earlier this week, please create the attached users in Active Directory. (James.Mason.CTR and myself already exist, but we’re on the list for the second part of the request.)
About these users:
Second part:
- Once established in AD, please configure these users via SSO to have access to/be members of DBR’s Amazon Web Services account.
Honestly, I’d create the users myself but I wanted to confirm that they don’t need a full O365 license first in order to use the account to SSO to AWS.
I yield to Mr. Reidl on that last one.
t200820 - Liz meeting tasks on Design
-------------
Liz>
updates on flows and ???
approval of BRD
deck review for DMV
Liz>
RI CPA society
likes automated digital credentials
automated compliance
Melissa Travis - RI CPA president on NASBA
Jovonna with Nasba
a> common workflows module ..
cavu ... portable
frameworks ...
design professionals -- diff than CPA
realtor --
security licenses ...
vonnage founder
Jeff
a> create high level workflow
-------------
dmv.deck>
why id chain?
immutable ledger
integrated
automated
why ssi?
legal - gdpr, ccpa,
data privacy
security
control
why now?
tech here now
ri.gov opportunities
t200727
my role - ri pm, test mgr, report author
review draft plan, timeline
setup meeting on dev env, tools, process
update arch plan
update eng plan
update test plan
reqmts scope
- ux ?? web ( mobile ?)
- 5 actors w aries wallets
cpa1, firm, dmv, dbr, cpa2
flow ...
- create cpa id at dmv
- create firm id at dbr as an org
- dbr issues x license to firm
- firm issues employment credential to cpa
- cpa applies for license
- dbr issues cpa license credential
- cpa logs on to dbr site to view credential
- cpa2 has a RI dmv realid
- firm hires cpa2
- cpa2 applies for cpa license using dmv realid
- dbr authenticates cpa2 using oidc to ads
extended reqmts
- ads oidc authn for ssi
a> brian - who can demo our ads oidc use case now?
- acct firm relation to cpa
pm200811 Senior Status Meeting
chirag
a> reqs doc signoff 1 meeting w Liz, BM, CP
a> define sprint deliverables sprint on timeline
a> final report toc
what does chirag want in weekly and final report ?
show goals - activity to support
1 use case poc done well vs mult use cases
a> show reports on current progress
a> realid input to poc flow
h> how to integrate DMV
define what's needed w slide deck ...
goals
bcase
flows
what we need from DMV
prep meeting for deck ...
a> standup
review slide deck for DMV integration
bk>>
what are we doing?
why will this be successful?
itg in next few weeks...
pstatus - 200825
========================================
RIDTC -- Digital Transformation Council
or
ribc - RI Blockchain Council
RI BC WG ???
Understand how blockchain and related technologies can be leveraged in public and private solutions integrating all stakeholders ( individuals, organizations ) effectively
Goals:
> technology accessibility for all Rhode Islangers ...
Groups to include:
Legal
announced efforts by the State's corporate legal community to explore the need for any clarifications to the Delaware corporate law to address and enable the authorization of "distributed ledger shares" by Delaware corporations.
Accounting
Finance
topics
------------------------
investment themes
------------------------
solution themes
CIP - continuous improvement process
EOS
CDS
TDD
SSM smart service mgt
SDM smart data mgt
SOE service oriented engineering
XUC reqmts = executable use cases
EDS event driven systems
AQM automated quality mgt
------------------------
other Govt sites
british columbia digital transformation >>
https://www.govops.ca.gov/blockchain/
delaware blockchain initiative
corp filings only
DUBAI
m800827 - review tasks, RI BC wg concept
a> Design to sign
a> Melissa call good
cpa re-engineering starts w Jovonna
a> DMV sme for id integration
a> define report TOC
a> research items list for PROD integration
DBR ...
cavu, db
a> Business case journeys for Bijay ...
Jovonna
DMV SME
id journey - before, after
cpa license - before, after
shows using id, create cpa license
firm hire cpa journey
shows using cpa license, id
Step-by-step guide for Example
sample code block
Recommended Next Steps
POC Project Workshop Agenda
report workshop
1> contents
2> delivery schedule including review
what are the earlier questions and findings?
> why did we do the poc? rfp, sow
> what is BC? an automated proof system between parties
> what is DID?
id evolution to ssi, did, vc, user centric services, controls
> what are the current opportunities in DBR, other agencies?
standalone systems, trust, data quality, SLAs, user experiences
> an example: CPA licensing
issues now
did process
differences
did process = user ctlr, automated, validated, fast, easy, online
flow
did load
nasba api - exams
nasba api - transcript
firm work credential automated via did comm
>> ready for admin review
may leverage open bpm solution
> feedback on: concepts? on poc? on business case for DBR?
what are the questions to answer going forward?
> what are the benefits for this solution for: people, firms, RI?
> what are key differences, strategies for pilot solution?
> where will we see the fastest paybacks? firm licenses
> what's the long term value for this DG focus? id bc, soa, dq,comply,
communit, partnerships
> feedback on: dbr benefits, pilot strategies, payback focus, LT value
deliverables list
project workshop
pilot plan
final report updates
dos integration plan deck
poc testing
ri aws deployment test
research - dids, legal
publications
Infosys POC wrap up note - Srikanth
Dear Rhode Island team,
Infosys thanks you for the opportunity to work on the Blockchain POC and also for your support over the last 3 months to bring this to life. Today’s discussion was a culmination of the work done by the project team over the past several months and stands as a testament to the quality and agility of work Infosys can deliver. Obviously, the advice, guidance, and direction from leaders of IT and Business at the state played a huge role in the outcome of this project As discussed during the workshop, we covered not only the key highlights of the project, but also walked through a roadmap for industrializing blockchain adoption in the state. This includes several dimensions along users, use cases, stakeholders, legislation and other emerging technologies.
As you close this phase and begin the journey to the next phase of the project, Infosys stands with you as a strategic partner to assist and help drive the initiative to success. All collaterals created for this project including the videos we shared during the workshop can be utilized for internal evangelization with other state agencies. Amit T will ensure that all of this is made available on the state SharePoint.
I’d also like to take this opportunity to once again formally thank Chirag, Liz, Bijay, Brian, Jim and the entire Rhode Island team for making this project a success. Also, kudos to the Infosys team led by Ashima, Debo, Anchit, Abhishek and supported by the larger practice.
Bijay – As agreed during the workshop, we will push forward with the whitepaper, blog, case study, and press release. For the case study, I’m able to confirm a leading analyst firm to write it by interviewing a few key folks from the state. I shall initiate this thread on the case study, however, will await your signal for timing over the next week or so.
I do not have Danielle’s email ID, kindly forward this email and the attached presentation to all required recipients at the state.
Wishing you all a happy Friday and thank you!
Thanks,
Sri
+1 (510) 833-1129
DG presentation notes
Blockchain POC project context
dbr mission
dg program
bc poc project
foundation step
digital identity for everyone
Blockchain POC project
did bc POC summary
view use cases diagram
did bc potential values
DG foundation for other milestone solutions
improved service levels for users, firms
improved security & data privacy
improved compliance with regulations & standards
improved transparency & accuracy with blockchain history
improved efficiency with credentials sharing ( like phone autopay )
improved user control with consent management
improved reliability with automated agents, digital wallets
support for digital identity backup & recovery
recommended next steps
launch DG work group
complete DID BC POC
plan DID BC Pilot project
plan DG Strategy & Blueprint
plan DG standards - DG CMM, SDP, BOA
plan DG governance
plan DG rollout for solutions
plan DG training for solutions
references
estonia
https://e-estonia.com/
https://e-estonia.com/solutions/e-governance/
bc.gov
https://digital.gov.bc.ca/digital-transformation/
uk.gov
https://www.gov.uk/government/organisations/government-digital-service
liechtenstein
https://joinup.ec.europa.eu/sites/default/files/inline-files/Digital_Government_Factsheets_Liechtenstein_2019.pdf
us.gov
https://www.state.gov/digital-government-strategy/
https://digital.gov/
ssi - did
did bc - indy, aries, ursa
ent bc - hlf
jim's bc sessions
faqs
potential access to digital services
digital integrations to other systems
did security
did data privacy & protection
did history
did recovery strategies
Related articles