idividual ID scenarios realistically tie well to RealID

s1>  if Jim does not have a RealID, RI issues Jim:

		a RealID w driver's license
		a DID
		a driver's license credential


s2>  if Jim has a RealID and DID from Kansas, RI issues Jim:

		a driver's license credential



a> remove 1a validate employee

i> create a did for individual, firm

a> emphasize flow w wallet, did first

a> identity scenarios for orgs ... 

	bc > gen DID and wallet
	or
	org brings DID and wallet


user brings id
starting point ..

principle ... 


slides on how DIDs can be issued

id origination scenarios ... 


poc - created in software


RI - create did


individual - brings in a did accepted


current DMV realId process ...



dbr = orgs first 

if done right .. our KEY benefits are ???

potential benefits

	automated trust
	ssi for individuals, businesses
	one source for truth on identity
	automated verification of credentials
	automated revocation of credentials
	user consent mgt
	user control with selective disclosures
	reduction in identity data correlations
	support for privacy stds, regs
	better governance, auditability
	policy driven management of identity rules
	
	factur3d.io
	faster, decentralized ctls, immutable ledger
	more accurate identity info in 1 register
	more efficient processes save costs, resources
	lower business, individual frictions, costs
	improve experience for individual, businesses



our initiatives for the State on BC
	basic education concepts on blockchain in public sector
	State blockchain council - how to leverage in dept use cases
		( really an "inside" re-engineering focus )
	do we create a similar council across the State orgs ???

Governance Concepts
Drop focus on technologies and focus on business models and governance  for network operation, growth

Governance questions  include:
what are the membership roles, responsibilities for firms, individuals, agencies ?
what authorities do they have ?
what policies are set at the member level by role?
what policies are set at the network level?
how are disputes tracked, managed, resolved?
how do the governing rules and regulations get set? 
who manages the governance of the network?
who manages the operations of the network?
who manages the support of the clients?
who provides services to the clients?
how are they chosen, trained, staffed?


Actions
Look at Sovrin, Trust Your Supplier governance models
Consider integration with State health departments on inspections, compliance, alerts, recall interfaces

F2F advantage>>
focus on business and operating model transparency
encourages active member participation and ownership of the network

Yes .. that's it.  
The primary focus for our team is to learn 
( as the email said ) is 
planning for a pilot / production project.  
We need to 
understand the current systems and 
how digital identities can be integrated 
(  UX,  api services on both ends, data sources, current authentication and authorization methods etc ).

q> do we have metrics on how many transactions we process of each type?
	helps on perf requirements 

	private, commercial, govt other ? entities
	new licenses, real ids, state ids
	renewals of all

	volumes, time to issue ( from application ) etc
	percent w good docs, validation, those need more info etc

q> access sites, permissions???

Get identity and credential related documentation 
on the DMV applications and RIMS solution for 
analysis. Typically this includes system overview, 
user, developer, admin, architecture, API, tooling, 
deployment and database documentation.

Discuss proposed requirements and solution strategies 
for a future integrated pilot solution allowing 
DMV applications to create, access and 
manage digital identities for 
external and internal users.


RIMS

alm op team
	added agile during project
	
q> do we have access to the ticketing system??
q> access to defects in time...

a> demo ... test systems

a> read-only access 

q> use api definitions ?? produce / consume

i> approval for an export ??

goal
> use cases
> requirements summary
> requirements strategies


a> overview demo

a> get dump system interfaces / apis ???
	specs ..

a> get data models - ERDs


a> get software stack


a> export alm stuff if needed. as excel 


have stories 
no comprehensive docs...

doc gen tool
- static
- dynamic

-----------------

[3:01 PM] McCarthy, Tim (DOA)
    For sure. I also had hoped it was entities writing to the chain as info changed so that was the source of truth and reduce/eliminate the need for agencies to api/call to each other to verify data. For example, death would impact various agencies, DMV, DLT, Tax, and could be used to eliminate fraud, never mind reduce spending on letters to deceased people.
?
[3:02 PM] Mason, James (DOA - Contractor)
    we don't need to implement an api for revocation vaidation. the choice is what do you store as proofs on blockchain. that's a design option. 
?    yes -- transitions for individuals and organizations could automatically trigger MANY State processes !
?    fraud, impersonation etc can be reduced dramatically with digital ID. For voting, to vote as me you would have to steal my phone, know my unlock code and ( probably ) a MFA multi factor authentication question etc ... 
?    the other key is the stack we are using  ( Indy, Aries, Ursa ) supports "wallet to wallet" communications to automate validations and proofs WITHOUT calling other APIs in many cases
?    The goal over time is to put more on to the logical blockchain and leverage automated digital trust for validations and proofs

I'm in. Makes complete sense and efficiencies, even if 20% adoption, will be measurable. 

----------------
m200902 - DMV integration meeting 
----------------

feedback

mm
interesting
potential 
circle back internally

how it fits

bud

busy now more online

which id type?

could we have ftp drop a file ?
	our process runs, then reads

a> email deck

	sample json

note

Our POC ends at the end of November and we need to show our working POC solution and complete our Analysis Report by then. 

The 
minimized the technical ask as much as possible

a> continue the conversation

based on Amit discussion ..

a> poc 2 pilot deck

	poc scope, use cases, features, roles, goals, value realized
		reqmts > design > infra 


	pilot scope, use cases, features, roles, goals, value realized
		reqmts > design > infra 



lgoical vs physical

host as a service into existing infra

blockchain data similar to other data types

vcrs 


givens for reqmts
	oidc integration
	data integration


who's doing this??

what we need to do?

what are the foundations?


chirag
	what are we delivering for prod?
	vcrs
	issues
	strategies


video
	paper flow
	passport reqd

automate w events, notifications

i> slow to see pts


a> email link to dmv video

-------------
Liz.deck>

3 parties 

short video
short pptx

	new version for tomorrow

	did, vc
	other license example --- restaurant etc 

	summary 3 views

	state
	individual
	business

call to action


a>>> updated deck 

a>>> view ega.ee

a>>> legislation


see 
ega.ee

legal structure changes
	for did, bc trust

goals >>

	see podcasts

	can you help us??

	focus on community = dg 

book
	full digital nation estonia

see >>>
	chainyard ebc credentials video
	https://www.linkedin.com/posts/movee97_2020-hl-member-summit-licensing-activity-6719812268290265089-g2ta



long video
related pptx on points
ref on concepts


add>>>

can use wallets for crypto, tokens


DG definition 

... 

a different way to organize and work together as a community.


DG roadmap

Digital Identity 
Digital Services
Digital Community
Digital Partnerships

DBR CPA potential DID value on use cases

id bc value

DG foundation for other milestone solutions
improved service levels for users, firms
improved security & data privacy
improved compliance with regulations & standards
improved transparency & accuracy with blockchain history
improved efficiency with credentials sharing ( like phone autopay )
improved user control with consent management
improved reliability with automated agents, digital wallets
support for digital identity backup & recovery


cpa, firm flows
	auto-verification of id key
	pu license
		default fields from sos id
	1 time vs on going tasks
		qr code once, connection def cached
option to auto-fill in of cpa license, pu license from 
		the presented ids


opps

	did ctl
	did consents
	did autofill
	did history
	data provenance - governance - compliance

cavu summary 

cavu schemas to read, update on workflow automation
	
goals>

1> use the existing cavu workflow solution as the engine for automation, paperless
2> keep cavu development process the same
3> create alternate workflows for steps where data inputs are automated
4> update cavu workflow step status, application step & user info
5> extend cavu to automate workflow events using event source streams


https://portal-mmr.micropact.com/DataDictionary/Diagrams/Work%20Flow.pdf


https://portal-mmr.micropact.com/DataDictionary/ddShowObject.asp?type=U

key objects

	contact
	onlineAddress
	case = license
	workflow   Each record is a WorkFlow tied to a specific Credential 
	documents ( attached )

	logHeader
	logDetail
	mailingListType - all mailing lists

	onlineSql


==============
Good morning Jim,
I reached out to the vendor yesterday.
Below is information from the vendor.

Regarding Read Only access in CAVU, there are different security levels within CAVU, which includes Read Only.  Attached is a security document for your reference.  

Below are links to data dictionary / diagrams./  Please note the contents are very outdated, however, you may use this as a starting point.

Tables/Diagrams – Main Menu:
https://portal-mmr.micropact.com/DataDictionary/DEFAULT.ASP [nam05.safelinks.protection.outlook.com]

Tables:
https://portal-mmr.micropact.com/DataDictionary/ddShowObject.asp?type=U [nam05.safelinks.protection.outlook.com]

Diagrams:
https://portal-mmr.micropact.com/DataDictionary/ddShowDiagramMenu.asp [nam05.safelinks.protection.outlook.com]

-Mark Kent

From: Mason, James (DOA - Contractor) <James.Mason.CTR@doit.ri.gov> 
Sent: Thursday, November 12, 2020 2:25 PM
To: Kent, Mark (DOA) <Mark.Kent@doit.ri.gov>
Subject: questions on Cavu and documentation

Hi Mark,

The DBR Blockchain POC is looking at the  professional and business licensing workflows defined in Cavu. Ignoring the workflow tools, I’m looking interfacing options.

I’ve been told Cavu does not have an API layer, that everything you want to access from Cavu is a billable project to them to create the service, is that correct?

I do assume they are using some sort of standard database to store data ( eg MySQL, Oracle, Mongo etc ). Is that true?  Is there documentation on their data model and a read-only capability to access it by applications?

Thanks very much,

Jim

estonia 


q> legislation for use case


mark 
	eidas
	core concept
	simple, unified focus
	physical and digital world the same for user
		in our case that will be different .. bar example
	customer service example
		patient emr 
	q> regs on consent mgt ??
	q> use of emr systems that estonia doesn't build?

	user uid for all as public data - no rights from did
		like my email, phone nbr now
	q> doesn't the did provide access ??
	q> how do you get access online ?? mfa 

	q> id is never access.
		ids map to roles and permissions for access
	your id is similar to IDP like google id
		I am granting consent to an system to access something
			eg track my data
		oidc connects that public id to legacy systems
	estonia id shares name w uid
	some countries have more restrictive privacy data rules

	i> levels of id, data protection based on use case
		access to netflix needs less verification
		than access to my ssn acct

	estonia eid card is mandatory unlike most countries
	eid is valid for eu travel
	
	v> adoption is easy for eid based on common usage, low data risk
	q> can I use your eid card to travel or get some benefit

	i> estonia not mobile yet
	i> eid card vs mobile did ?
		not same info sharing 
	q> how does user recover did quickly?
	q> does the did belong to the user or the govt ?
		ids are credentials
	f> govt issues 2 forms of eid - card, phone option
	q> what's the process to re-establish your id ??
	v> eid card needed to get services

	f> we all have digital signature act on bc
	q> proof of free will for a signature to validate ???
	q> for online agreement, our did is proof of who signer was
		can add mfa biometrics and other proofs

	i> eid exposes name, not good for private transactions

	i> private sector companies as trust service providers
		( eg banks etc to create accounts )
		similar to aml, kyc
	
	f> estonia business registry like RI
	q> estonia firms not a legal person, in US company is legal person
	
	i> how does person represent company on corporate actions?
	f> RI has relationship for officers, persons linked to firm
		company credential automated in RI
	f> person can represent multiple companies if authorized

	f> first name, last name, eid are the exposed data elements
	i> names should be optionally private

	win> they have automated and mandated their process
	loss> they don't have the strongest privacy practices yet

	f> US has automated fraud detection on card use -- see amex
	
	i> their permanent number allows data correlation, brokering
	q> how do I get a replacement eid?

	win> estonia is small country w lower fraud risks
		existing systems work reasonably well for them, not US

	f> iam support for multiple org mappings on eid
		rbac for each org for a user

	q> are you familiar with toip.org ???

	f> eid verification process = 1 week min to get a new card
		temp eid card to use 2nd one as a did
		your eresidency card is eid card 2 - sign w diff key

	f> free access to get ids
		open source for tax payer funds usage
		open source reduces conspiracy control by govt
			how to prove?? did does that
		openssl bugs seen, fixed vs hidden

	h> move to open systems was at least 5 years from closed systems
		eg ecdsa key tools etc

	x> mobility example - insurance co accesses real owners 
		to set fair rates ...

	d> diff> we are more consent driven in data sharing
		they pre-define rights

	i> govt access granted by:
		direct by law
		user consent
		probable cause of a crime or ?
		warrant process for access

	f> eid is self identify and legal signing

	x> driver speeding only needs eid, police use to get 
		insurance, registration

	x> a mobile license would allow driving in other countries,
		rental, travel etc --- universal eid model

	sum> easy, integrated system lowers business costs
		state provides id vs businesses
		user grants consent to businesses

	sum> needs trust for server trust providers
	sum> shares names universally - not gdpr compliant
	sum> mobile id for devices - cars make decisions
		


key laws
	digital signature
	real id
	digital identity protections

a> create a deck from this ...


hr8215 - digital id task force bill to recommendations


egovernance academy
	consultants from estonia
	RI use case
	no tech solutions
	architectural consultancy
	legal process support 
	data security practices for processes
	strong did practices
	key mgt systems

	what are the operational metrics systems to manage this?

	process similar for use cases
		differences in use cases

my points
1> name should be restricted in some use cases
2> data brokering with permanent ids
3> ids for orgs, things
	legally binding for a company, individual signer is company issued credential
4> access to private data rules
	shared
	by law -- ssn
	by consent
	by probable cause for authorized agents in use cases
	by warrant 

eid paired did w key to validate


me >>> 

differences between realid (eid ) and did ( digital id )

	is the id paired with a physical id card for use by all?
	who issues the id?
	is it decentralized?
	do I own the id or the government?
	do I control the id or the government?
	does the government issue me a resident credential?
	can my data be correlated using the id?
	do I control the data I expose with my id?
	do I have control and consent over my data relations, credentials?
	where is my identity or proxy identity shared? eg google id
	can trust be fully automated with other parties (eg toip )?
	what's the process, time to recover my id? parties involved?
	how is my identity verified to issue my id or credential?

Project Status Meeting - 201019

a> wpaper reviewed, updates in progress

a> dos help on planning for firm digital identity for Pilot solution

a>poc to pilot analysis and planning in progress

showed poc to pilot xlsx

t> research other states on DID, related legislation



a> detail analysis w other DBR, DMV, DOS on current operations

t>> meeting Friday with Jovonna on POC review

t>> schedule next meeting with DMV 

open>> schedule first meeting with DOS showing ID BC integration concepts deck, get feedback on support



a> test env -- Infosys setup done
use other vis aws lz env ???? Amit

a> delay in RI AWS test environment has extended test schedule by 1 week

>> no idea when RI AWS LZ will be ready yet

a> User testing started 

>> I'm going through the POC configuration now

>> Infosys providing support as needed

>> planning for a demo of POC in User Test next week



a> Digital Government Blueprint and Digital Identity research 

reviewing Estonia, BC.gov, Lichtenstein, US states and more

have multiple inputs for DG CMM - capability maturity model including Gartner lightweight summaries

a> wpaper review

a> dos help on planning

a> showed poc to pilot xlsx

a> test env -- start w infosys 
use other vis aws lz env ???? Amit

t> detail analysis w other DBR, DMV, DOS on current operations

t>> meeting for DBR Cavu demo - Jovonna, Dee or Mark ??
goals ???

t> research other states on DID


i> sandesh meeting access?



-----------------------------
p201013 tue
swt.time>


_sybal



-------------
pstatus>


> test envs

> DOS team needed for pilot planning





-------------
plan>


etss report


iam

https://docs.microsoft.com/en-us/azure/active-directory/develop/v2-protocols-oidc

https://docs.microsoft.com/en-us/azure/active-directory/develop/active-directory-v2-protocols

DOS - Dept of State support request

vis on aws now
migrating a mobile app there now

a>> follow up on vis aws LZ acct for our poc in their account
brian, amit, chirag

a>> send wpaper link

i>> legislation for DID support ??

bc.gov
estonia
lichtenstein
us.gov ???

governance model

other states on legislation ...

other states on DID for DMV

a>> chirag on gartner research for states on did legislation
currently multiple states doing digital identity, getting legislation for Liz

a>> schedule a demo of poc ....
end of next week

a>> review of pilot planning
morning review

a>> blueprint not in scope
dg cmm

our.question.list

what is did & bc?  factur3d.io
what is biz value of id bc?
what are the challenges of id bc?
where is id bc used in production now?
what public sector teams have done id bc well?
how does id bc integrate to existing IAM systems?
what are the best migration strategies for id bc?
how do we manage id bc migration?

>> other 
centralized or decentralized services?
what's the app catalog and priority usage for citizens, firms, agencies?
which ones can be accessed using did for authn?

==============================
m200918 fri


------------------------
standup>

done


------------------------
Liz presentation ...

1 to 3 minutes / pages

mission
this is what it does - before / after views
this is why you want it
this is what we propose

outcomes are
	understanding
	commitment & support
	potential funding

many supporting appendices


>> examples of GREAT projects ? executive presentations?



------------------------
brian>

test env

prod env

what other projects have done this integration ?





a>> get dbr metrics for processes
	volumes including rework
	factur3d.io

#prod.reqs

app catalog
service catalog
security iam methods
api gateways
ads ??


a>> get dbr metrics for processes
	volumes including rework
	use case list
	bpm - transaction details
	jepl
	factur3d.io
	
architecture overview doc

wpaper 
	no toc??
	abstract good but generalize from cpa license
exec sum
	not just replace paper, upgrade existing systems
	add legal, safety reqmts to sum not just impacts
	show user control over their identity, credentials and 
		private data

a> need to add the migration, integration plans to existing
	sites, systems into wpapper scope

present scenario
a> need visual for CPA license flow OLD vs NEW

r> Brian
a> heat map start ....



------------------------
dmv>

email Maureen

To: Mason, James (DOA - Contractor); Patel, Chirag (DOA); Craddock, Walter (DMV); McCarthy, Tim (DOA); McGuirk, Brian (DOA); Sedlock, Clare (DMV); Barnett, Nicole (DOA); Mazzenga, Pam (DOA); Rathor, Bhim Singh (NON-US); Bashir, Saad; Antonaccio, Lisa (DMV); Amit Trikha; Tanner, Liz (DBR) 





==============================
m200917 thu


------------------------
standup>


a>> get dbr metrics for processes
	volumes including rework
	use case list
	bpm - transaction details
	jepl
	factur3d.io
	
architecture overview doc

wpaper 
	no toc??
	abstract good but generalize from cpa license
exec sum
	not just replace paper, upgrade existing systems
	add legal, safety reqmts to sum not just impacts
	show user control over their identity, credentials and 
		private data

a> need to add the migration, integration plans to existing
	sites, systems into wpapper scope

present scenario
a> need visual for CPA license flow OLD vs NEW

r> Brian
a> heat map start ....

	fri pm

a> cost estimates on 2 med, 1 large

accounts
aws instances
arb

------------------------
other>>>






------------------------
Liz>

a> content scheduling for wpaper - press release etc ... who owns??


a> education plan

a> case study / bcase

a> poc video 

	final product will matter
	need intro 
	show each user journey - cpa, dbr license, 
	move admin work to appendix
	

a> coa not for cpa licenses

a>> get dbr metrics for processes
	volumes including rework

	see boa
	bpm
	jepl
	factur3d.io

views for benefits.


a>> jovonna - review jepl for cpa license - add value


------------------
Liz view of presentation 

key questions to answer 

1 to 3 minutes / pages

mission
this is what it does - before / after views
this is why you want it
this is what we propose

outcomes are
	understanding
	commitment
	potential support


who's doing this now?

	mission
	make it easy to do business in RI 

	found EU ahead
	US behind

	unique in US States ..
	see eu, ca
	estonia, dubai, lichenstein, bc.gov, ebc, ebsi, wef 
	ahead of US behind world


5WH
what problems do we want to solve?	
	improve efficiency of govt process and experience for all parties
		who?  individuals, businesses, State agencies, 
			supporting organizations ( nasba )

-------------
what is it?  
-------------
	re-engineered State services using those 3 technologies
	digital transformation? blockchain?  SSI ?


-------------
why do we want it?
-------------

citizens

businesses

State agencies

-------------
what are the next steps?
-------------

	identity blockchain poc in progress w Infosys
	cta - next steps
	
	business next steps
		liz diagram

		did first
		credentialing second
	

	it next steps
		wef toolkit diagram


	program next steps

		how do you apply this solution to other agencies?

		how do you apply this solution to outside parties?
	

------------
Jim's secret truths
------------

trust is the foundation for all relationships
we put trust to work
in theory, there's no difference between theory and practice ...
modern QA mgt focuses on six sigma and zero defects at the expense of failure management
catch 22 for new systems - everyone wants change but doesn't like new system
consultant borrow your watch to tell you the time -- good because you have all the answers
resistance to change expert - "war council" .. feelings over data
customer first doesn't mean user interface first, it means value first
in a world of digital transformation, which careers are in demand AND long-term?




------------
	extra - the appendices
------------

what projects did she like, why, how justified??

	all it history for winners
	
	leveraging new techs and operating methods to improve 
	service levels, user experience and process efficiencies

	potential savings >>
		bc.def>>
	shared  	
		vs separate silos maintained independently
		costs, quality, fraud
		near real-time
	immutable
		trusted records on entities, assets, transactions
		everything is immutable ( write-only ) digitally signed
		traceable history - important for dispute resolution, legal
	ledger & related data
		provides digital proof of all transactions meeting 
		approved rules applied by smart contracts
		all related data is tracked by transaction
	secure private data
		data privacy rules and regulations can be enforced
		ensuring confidential and PII ( Personal Identity Information )

------------------
summary slide deck


                table of contents

                landscape
                                context - trust @ work 
                                govt many services, use cases
                                firms same + id, creds
                                individuals - id, creds, services

                technology
                                what's blockchain with examples
                                what's did with examples
                                what's identity blockchain with examples

                digital trust model
                                toip - original trust triangle - issues 
                                toip - electronic trust triangle - issues 
                                toip - digital trust triangle - opportunities

                value - bcase      
                                opportunities

                challenges
                                challenges & strategies

                our sdp – solution delivery process
                                process - learn ( research poc ) >  test pilot > production
                                sri poc w governance - itg, arb, agencies, infosys

                our poc
                                user journeys - value opps: person, firm, agency
                                poc proofs - stack, tech, process improvements
                                                feedback

                moving forward
                                poc feedback
                                pilot planning
                                agency boa
                                how to get involved - sri bc wg & hlf ps
                                resources                                                                            


==============================
m200916 wed


------------------------
standup>


a>> get dbr metrics for processes
	volumes including rework
	factur3d.io



#video 

Hi Chirag

Here’s a link to POC Blockchain Sprint 2 video.  
The team did a great job adding context in this video.
There’s more we can do in a Final version video that would make this “standalone” to explain what we are doing and why ( adding context ).

In addition, the video shows administrator setup for the credentials IN SEQUENCE with the user applying for credentials.  The admin setups will be moved to an “Admin section” for the 1 time configurations so the actual video flows on the front-end will JUST show what is done for a CPA, a CPA firm or a DBR admin to process requests ( vs the 1 time setup ). We will add a single slide for each user journey as introduction to that section of the video as well.

Thanks

Jim

https://rigov.sharepoint.com/sites/DBR-Blockchain-Project-Team/Shared%20Documents/General/Sprints/RI_Sprint2_demoVideo_Final.mp4 [rigov.sharepoint.com] 



q> in our secure world, using multiple devices for
	security makes sense - Web app w mobile creds
	CAN we simplify the access flow to make it easy??


q> admin setup ( 1 time ) explanation of app download
	scan qr to connect to an agency
	4 steps --
	define cred schema
	define cred definition
	create connection invitation on state app
	set connections to state registry

credentials connection process ( every time )
	user scans qr code on app for agency
	user connects & accepts cred offer


q> production --- 
	web agent option if no phone ???


r> need flow charts for journey & interactions
	for each trans 
	- get id
	- get license etc
	- find user, firm in registry

i> which are 1 time setup vs ongoing for each trans

	make separate pre-req to user journey
	( like firm flow )

i> add 1 sheet on summary of user journey

i> cpa credential request sent to BOA for approval
once approved, the credential is issued to the walllet
with a connection request

i> user applies for employment credential ???
	user applies for position
	firm issues emp cred to user

i> separate 1 time setups for credential defs
	from user journeys

i> keep connection details on qr code for 2 parties


i> explain the firm employment credential agent app
	will be available to firms
	can be customized on schema setup

g> good showing state cred registry after cred issued
	

c> check firm ui apply for id



context slide


wpaper
get some metrics about the way things currently happen – for each point, then it will be better. Jim can help us with that?


------------------------


==============================
m200915 tue


------------------------
pstatus>




39

DMV will support project on analysis, requirements for id bc, poc

Sprint 2 complete

Sprint 2 video Wed

Sprint 3 started

Added a proxy DMV Web portal to renew State ID with create digital identity (DID) option

Infosys drafted a whitepaper on the project

Simple story board on blockchain, digital identity, POC project, opportunities

Education plan in progress with Liz on bc workgroup concept

#video	
	context - bc in ps
	table of contents

	landscape
		context - trust @ work 
		govt many services, use cases
		firms same + id, creds
		individuals - id, creds, services

	technology
		what's blockchain with examples
		what's did with examples
		what's identity blockchain with examples

	digital trust model
		toip - original trust triangle - issues 
		toip - electronic trust triangle - issues 
		toip - digital trust triangle - opportunities

	value - bcase	
		opportunities

	challenges
		challenges & strategies

	our sdp
		process - learn ( research poc ), test pilot, prod
		sri poc w governance - itg, arb, agencies, infosys

	our poc
		user journeys - value opps: person, firm, agency
		poc proofs - stack, tech, process improvements
			feedback

	moving forward
		poc feedback
		pilot planning
		agency boa
		how to get involved - sri bc wg & hlf ps
		resources					



------------------------


arb notice email


mark kents - elicensing engineer


------------------------
standup>


pstatus = 39

dmv will help us on analysis

sprint 2 video 

front-end slides

	what is a blockchain?
	what is did?
		you own your own id
		individuals, organizations, things ( IoT )
		dids, credentials, stored in dwallet
	how do dids work?
		paper-based trust model
		digital trust model
	leverage related tech for more value ...	
		analytics, automation, AI, IoT, mobile, security
	toip -- layers of technology, governance
	why is it needed? by role value
		health & safety, compliance, user ownership
		fraud, accuracy, efficiency, automation,
		optimization, incentivized behaviors, 
		cost savings, risk reduction, revenue impacts,
		resource impacts, data quality	
	who is doing it and what we can learn from others?
	what is the blockchain poc project?
		goals
		validate the technology works on State gov use cases
		learn from the poc what works well, what doesn't
		understand what a production solution needs
		educate State agencies on identity & blockchain



------------------------



==============================
m200914 mon



------------------------
DMV integration meeting

Research resources granted


DMV POC integration


get current process ...


renew real id
	option to create digital id


all records 
	birth, death, education,
	pull records from agencies

	citizens portal	
	360 view for individual 
	- existing ids
	- new ids
	- automate near-term reqmts for credential currency
	- xover to ma fishing license


gov2go
	nic
	ri interactive ...
		ri.gov
	we add services 

	
a> goals for DMV planning meeting


steps
0> background -- nicole, brian
1> understand RIMS overview now,  email ..
2> review 



------------------------
research other govt blockchain solution concepts 

bcase



------------------------
RI.env>

AWS and ...

access teams ...


did stack 


support OIDC ??

Andrew Reidl
	AWS engineering lead

Sanjiv Bhatia
	cloud pgm mgr


Andy R
need
	console, cli access in landing zone
	create dbr dev account w dev mode enabled
	enrollments ???
	azure ad for idp -- sso -- 
		m365 license for each user accounts
		federation with 
		ad security groups linked to dev mode role
		< recv multiple apps for each role

		maps existing accounts to ams roles

		aws console access
		dbr dev, uat, prod

		oidc supported

		not a control tower landing zone
		ams dev mode = aws account via console

		governance - create ams to build templates
			cloud formation template
			ams way of doing things in aws

	define vpc - ec2, storage, net ports etc
		i> ext client access to front-end ports
			ext connections open by default
			standup security group in firewall

	account has 2 av zones w pubic subnet, private internal
		internet open by default for repo downloads
		>> later will push through security stacks

	normal arb process ...
		account id for sso = 2 weeks
		sol arch - tagging for resources mgt for app only
		in dev mode, no auto backup etc
			snapshot backup

		ams rfc process for uat deployment 
			ams services available etc
			br = ssm thru aws

a> request sso accounts - dbr in aws ( 4 accounts )
	dev, uat, prod, devops
	via servicenow to andy

a> request for state accounts, dev mode role after arb approval

a> arb review for deployment to mark w / tony ?

a> email mark w / tony lib on arb radar

i> DMV oks hours 
	no data fields exported from test system to POC


q> onboard roadmap for dev mode instances?



next steps??		

prod reqmts
i> pii in cloud approved ???



------------------------
pstatus>



------------------------
standup>


a> front end slides on ...
ID concepts 
triangle - 3 times
why ?  see workgroup benefits slide on idbc


a> sprint status


a> whitepaper draft


a> Hi Tim - this new document version 
(  Blockchain-POC-DMV-ID-integration-v2.docx ) 
adds another option Chirag asked for:  
Option without DMV - New POC Plan to “proxy” DMV identity process with digital identity




------------------------


==============================
DMV integration v2 

Hi Tim - this new document version 
(  Blockchain-POC-DMV-ID-integration-v2.docx ) 
adds another option Chirag asked for:  
Option without DMV - New POC Plan to “proxy” DMV identity process with digital identity




==============================

a> see mobi cmdm and other business case templates
a> create cpa license jepl for review as slides ??
a> governance models -- JM session, TOIP, Sovrin on governance
a> Indy, Aries production examples reference
	indicio, bc
a> RI agency systems access, research



==============================

poc dmv realid

Option without DMV - New POC Plan to “proxy” DMV identity process with digital identity


http://www.dmv.ri.gov/licenses/stateID/

http://www.dmv.ri.gov/documents/realid/Real%20ID%20Identification%20Documents%20List.pdf

http://www.dmv.ri.gov/video/real-id.php

form for drivers license
http://www.dmv.ri.gov/documents/forms/license/LI-1.pdf

------------------------
Liz>

pptx deck

q> do we chapter headings .. yes

a> update dg slide 

a> add federated symbols

	email symbol

a>> added my id slide
	
	w roles, agencies

a>> next slide shows how data is shared 
	by indivdual 
	from state

------------------
Liz view of presentation 

questions to answer 


1 to 3 minutes / pages


this is what it does
this is why you want it
this is what we propose

outcomes are
	understanding
	commitment
	potential support


who's doing this now?

	mission
	make it easy to do business in RI 

	found EU ahead
	US behind

	unique in US States ..
	see eu, ca
	estonia, dubai, lichenstein, bc.gov, ebc, ebsi, wef 
	ahead of US behind world


5WH
what problems do we want to solve?	
	improve efficiency of govt process and experience for all parties
		who?  individuals, businesses, State agencies, 
			supporting organizations ( nasba )

-------------
what is it?  
-------------
	re-engineered State services using those 3 technologies
	digital transformation? blockchain?  SSI ?


-------------
why do we want it?
-------------

citizens

businesses

State agencies

-------------
what are the next steps?
-------------

	identity blockchain poc in progress w Infosys
	cta - next steps
	
	business next steps
		liz diagram

		did first
		credentialing second
	

	it next steps
		wef toolkit diagram


	program next steps

		how do you apply this solution to other agencies?

		how do you apply this solution to outside parties?
	

------------
Jim's secret truths
------------

trust is the foundation for all relationships
we put trust to work
in theory, there's no difference between theory and practice ...
modern QA mgt focuses on six sigma and zero defects at the expense of failure management
catch 22 for new systems - everyone wants change but doesn't like new system
consultant borrow your watch to tell you the time -- good because you have all the answers
resistance to change expert - "war council" .. feelings over data
customer first doesn't mean user interface first, it means value first
in a world of digital transformation, which careers are in demand AND long-term?




------------
	extra - the appendices
------------

what projects did she like, why, how justified??

	all it history for winners
	
	leveraging new techs and operating methods to improve 
	service levels, user experience and process efficiencies

	potential savings >>
		bc.def>>
	shared  	
		vs separate silos maintained independently
		costs, quality, fraud
		near real-time
	immutable
		trusted records on entities, assets, transactions
		everything is immutable ( write-only ) digitally signed
		traceable history - important for dispute resolution, legal
	ledger & related data
		provides digital proof of all transactions meeting 
		approved rules applied by smart contracts
		all related data is tracked by transaction
	secure private data
		data privacy rules and regulations can be enforced
		ensuring confidential and PII ( Personal Identity Information )

------------------
summary slide deck


                table of contents

                landscape
                                context - trust @ work 
                                govt many services, use cases
                                firms same + id, creds
                                individuals - id, creds, services

                technology
                                what's blockchain with examples
                                what's did with examples
                                what's identity blockchain with examples

                digital trust model
                                toip - original trust triangle - issues 
                                toip - electronic trust triangle - issues 
                                toip - digital trust triangle - opportunities

                value - bcase      
                                opportunities

                challenges
                                challenges & strategies

                our sdp – solution delivery process
                                process - learn ( research poc ) >  test pilot > production
                                sri poc w governance - itg, arb, agencies, infosys

                our poc
                                user journeys - value opps: person, firm, agency
                                poc proofs - stack, tech, process improvements
                                                feedback

                moving forward
                                poc feedback
                                pilot planning
                                agency boa
                                how to get involved - sri bc wg & hlf ps
                                resources                                                                            

========================================
RIDTC -- Digital Transformation Council

or

ribc - RI Blockchain Council


RI BC WG ???


Understand how blockchain and related technologies can be leveraged in public and private solutions integrating all stakeholders ( individuals, organizations ) effectively


Goals:
> technology accessibility for all Rhode Islangers ...


Groups to include: 

Legal
announced efforts by the State's corporate legal community to explore the need for any clarifications to the Delaware corporate law to address and enable the authorization of "distributed ledger shares" by Delaware corporations.

Accounting

Finance

topics

------------------------
investment themes


------------------------
solution themes 


CIP - continuous improvement process
EOS
CDS
TDD
SSM 	smart service mgt
SDM 	smart data mgt
SOE 	service oriented engineering
XUC 	reqmts = executable use cases
EDS 	event driven systems
AQM 	automated quality mgt



------------------------
other Govt sites


british columbia digital transformation >>


https://www.govops.ca.gov/blockchain/


delaware blockchain initiative 
	corp filings only


DUBAI 

a> Design to sign

a> Melissa call good

cpa re-engineering starts w Jovonna

a> DMV sme for id integration

a> define report TOC

a> research items list for PROD integration 
DBR ... 
cavu, db

a> Business case journeys for Bijay ...

Jovonna 
DMV SME

id journey - before, after 
cpa license - before, after 
shows using id, create cpa license
firm hire cpa journey
shows using cpa license, id

Dear Rhode Island team,

Infosys thanks you for the opportunity to work on the Blockchain POC and also for your support over the last 3 months to bring this to life. Today’s discussion was a culmination of the work done by the project team over the past several months and stands as a testament to the quality and agility of work Infosys can deliver. Obviously, the advice, guidance, and direction from leaders of IT and Business at the state played a huge role in the outcome of this project As discussed during the workshop, we covered not only the key highlights of the project, but also walked through a roadmap for industrializing blockchain adoption in the state. This includes several dimensions along users, use cases, stakeholders, legislation and other emerging technologies.

As you close this phase and begin the journey to the next phase of the project, Infosys stands with you as a strategic partner to assist and help drive the initiative to success. All collaterals created for this project including the videos we shared during the workshop can be utilized for internal evangelization with other state agencies. Amit T will ensure that all of this is made available on the state SharePoint.

I’d also like to take this opportunity to once again formally thank Chirag, Liz, Bijay, Brian, Jim and the entire Rhode Island team for making this project a success. Also, kudos to the Infosys team led by Ashima, Debo, Anchit, Abhishek and supported by the larger practice.

Bijay – As agreed during the workshop, we will push forward with the whitepaper, blog, case study, and press release. For the case study, I’m able to confirm a leading analyst firm to write it by interviewing a few key folks from the state. I shall initiate this thread on the case study, however, will await your signal for timing over the next week or so.

I do not have Danielle’s email ID, kindly forward this email and the attached presentation to all required recipients at the state.

Wishing you all a happy Friday and thank you!

Thanks,
Sri
+1 (510) 833-1129 

Blockchain POC project context
dbr mission
dg program
bc poc project 
	foundation step
	digital identity for everyone


Blockchain POC project

did bc POC summary

view use cases diagram



did bc potential values

DG foundation for other milestone solutions
improved service levels for users, firms
improved security & data privacy
improved compliance with regulations & standards
improved transparency & accuracy with blockchain history
improved efficiency with credentials sharing ( like phone autopay )
improved user control with consent management
improved reliability with automated agents, digital wallets
support for digital identity backup & recovery


recommended next steps

launch DG work group
complete DID BC POC
plan DID BC Pilot project
plan DG Strategy & Blueprint
plan DG standards - DG CMM, SDP, BOA
plan DG governance 
plan DG rollout for solutions
plan DG training for solutions



references

estonia
	https://e-estonia.com/
	https://e-estonia.com/solutions/e-governance/
bc.gov
	https://digital.gov.bc.ca/digital-transformation/
uk.gov
	https://www.gov.uk/government/organisations/government-digital-service
liechtenstein
	https://joinup.ec.europa.eu/sites/default/files/inline-files/Digital_Government_Factsheets_Liechtenstein_2019.pdf
us.gov
	https://www.state.gov/digital-government-strategy/
	https://digital.gov/

ssi - did 
did bc - indy, aries, ursa
ent bc - hlf
jim's bc sessions


faqs

potential access to digital services
digital integrations to other systems
did security
did data privacy & protection
did history
did recovery strategies