thoughts on an electronic data sharing model: a discussion

EURIM ConfidentialEURIM Confidential© Microsoft 2005© Microsoft 2005

Thoughts on an electronic Thoughts on an electronic data sharing model: a data sharing model: a

discussiondiscussion

Jerry FishendenJerry Fishenden

National Technology OfficerNational Technology Officer

Microsoft UKMicrosoft UK


data sharing issues include …data sharing issues include …

• the citizen needs to …:the citizen needs to …:• prove who they are (and potentially their circumstances)prove who they are (and potentially their circumstances)• know they are dealing with a legitimate public sector organisationknow they are dealing with a legitimate public sector organisation• provide consent to personal data collection/collation and the uses to provide consent to personal data collection/collation and the uses to

which it might be putwhich it might be put• ensure government does not misuse data (transparency/accountability)ensure government does not misuse data (transparency/accountability)• have access to all appropriate government-held information (FOI etc)have access to all appropriate government-held information (FOI etc)

• government needs to ….:government needs to ….:• achieve greater operational efficiency by enabling appropriate data to be achieve greater operational efficiency by enabling appropriate data to be

accessed and shared between systems: this raise problems of accessed and shared between systems: this raise problems of interoperability around security, access controls, semantics, metadata interoperability around security, access controls, semantics, metadata etcetc

• ensure it knows precisely who it is dealing with and the role/capacity in ensure it knows precisely who it is dealing with and the role/capacity in which they are actingwhich they are acting

• ensure data is not misused or accessed/altered/disclosed etc ensure data is not misused or accessed/altered/disclosed etc inappropriatelyinappropriately

• find some means of linking user identity and government’s many silo find some means of linking user identity and government’s many silo applications and data in a reliable wayapplications and data in a reliable way


data sharing – core requirementsdata sharing – core requirements

• to establish to establish verified electronic identityverified electronic identity for all parties for all parties (including role, where appropriate)(including role, where appropriate)

• to to associateassociate accurately a accurately a proven identity with proven identity with ownership ofownership of or entitlement to access specific or entitlement to access specific government government identifiers/identifiers/informationinformation/services/services

• to to ensure legalityensure legality (eg DPA, FOI, privacy, confidentiality, (eg DPA, FOI, privacy, confidentiality, consent and related topics)consent and related topics)

• to ensure to ensure practical interoperabilitypractical interoperability (ie the physical (ie the physical ability to communicate meaningfully data between ability to communicate meaningfully data between systems whilst respecting security etc) systems whilst respecting security etc)


UK nowUK now

Government Framework …Government Framework … … … delivered through projects such delivered through projects such as the Government Gateway, as the Government Gateway, which supports …:which supports …:

HMG Authentication Framework (and t-scheme)HMG Authentication Framework (and t-scheme) t-scheme providers such as BCC, Equifax, BT t-scheme providers such as BCC, Equifax, BT Trust ServicesTrust Services

Intermediary policyIntermediary policy Intermediary/agent and role-based access to Intermediary/agent and role-based access to government servicesgovernment services

DPA, FOI and relatedDPA, FOI and related Relevant legislation – index of identity to Relevant legislation – index of identity to government services using opt-in consentgovernment services using opt-in consent

e-GIFe-GIF Open standards (XML, SOAP, etc) including Open standards (XML, SOAP, etc) including implementation of federated ID Managementimplementation of federated ID Management

Channel independent deliveryChannel independent delivery Delivery channel and presentation tier Delivery channel and presentation tier independence (Gateway is identity management independence (Gateway is identity management and messaging middleware)and messaging middleware)

Over 4m active user accounts for online government services and growing rapidly (eg. DWP Over 4m active user accounts for online government services and growing rapidly (eg. DWP RTPF has uploaded approx 40m citizen records, DVLA uploading c.30-35m citizen records)RTPF has uploaded approx 40m citizen records, DVLA uploading c.30-35m citizen records)


the existing federated identity the existing federated identity verification and management modelverification and management model

The UK Government model uses a federated,

Web service based authentication / authorisation

architecture using WS-Security, WS-Trust, WS-

Policy etc


UK nowUK now

• the Government Gateway provides:the Government Gateway provides:• the key link between an online identity (issued by a third party) the key link between an online identity (issued by a third party)

and ownership of specific government identifiers (National and ownership of specific government identifiers (National Insurance Number for example) Insurance Number for example)

proven user identity

governmentidentifiers

proven relationship – binding a verified electronic identity to government identifiers


electronic identity and its linkage to electronic identity and its linkage to government servicesgovernment services


current data sharing modelcurrent data sharing model

• once a user’s online identity has been verified by a third once a user’s online identity has been verified by a third party (or using a Government process), it needs to be party (or using a Government process), it needs to be linked to numerous separate government identifierslinked to numerous separate government identifiers

• such identifiers include National Insurance Number, NHS such identifiers include National Insurance Number, NHS Number, Date of Birth, Unique Tax Reference Number, Number, Date of Birth, Unique Tax Reference Number, etcetc

• the current model is user opt-in based (ie. consent-the current model is user opt-in based (ie. consent-driven) – they choose which services they want to use driven) – they choose which services they want to use and the way in which the services may or may not use and the way in which the services may or may not use their datatheir data

• the Gateway keeps each information-owner’s details the Gateway keeps each information-owner’s details away from each other’s: although if the user provides away from each other’s: although if the user provides consent, they can be sharedconsent, they can be shared


some of the issuessome of the issues

System ANINO

Interoperability

User

Organisation 1

System BUTR

System ANHS No

Interoperability

Organisation 2

System BDoB, NINO

ProvenIdentity

?

Inte

rope

rabi

lity

Issues include:

- cross-matching a proven online identity with the right to access

particular records keyed off different identifiers

- physical access to a range of heterogeneous systems

- ensuring security and access controls are appropriately enforced

- consistent metadata / semantics: is this ‘taxpayer’ the same as this

‘patient’?- consistent data aggregation drawn

from multiple systems


some next stepssome next steps

1.1. facilitate the facilitate the legallegal ability to share data more easily ability to share data more easily • obtain legal clarification of whether the DPA can provide a higher obtain legal clarification of whether the DPA can provide a higher

level government registration rather than the current highly granular level government registration rather than the current highly granular model: if not, new legislation is requiredmodel: if not, new legislation is required

2.2. facilitate the facilitate the technical technical ability to share data more easily ability to share data more easily • enrich the interoperability framework to tackle the enrich the interoperability framework to tackle the practicalpractical problems of problems of

interoperability between existing and new systemsinteroperability between existing and new systems3.3. address the address the culturalcultural barriers to progress barriers to progress

• implement a new incentive/reward model in the Civil Serviceimplement a new incentive/reward model in the Civil Service4.4. simplify the user identity verification and linkage processsimplify the user identity verification and linkage process

• identify improved ways of linking a proven electronic identity with verifiable identify improved ways of linking a proven electronic identity with verifiable ownership of government identifiers / servicesownership of government identifiers / services

5.5. simplify and encourage online services take-up (internal/external)simplify and encourage online services take-up (internal/external)• encourage a broader set of identity issuers to enter the marketplace, such as encourage a broader set of identity issuers to enter the marketplace, such as

Local Authorities through their smartcard schemesLocal Authorities through their smartcard schemes6.6. provide self-service FOI / accountability reporting systemsprovide self-service FOI / accountability reporting systems

• to automate citizens’ ability to obtain their entitlementsto automate citizens’ ability to obtain their entitlements

thoughts on an electronic data sharing model: a discussion

Documents