1. Technical identity systems must only reveal information identifying
a user with the user’s consent.
2. The solution which discloses the least identifying information is
the most stable, long-term solution.
3. Technical identity systems must be designed so the disclosure of
identifying information is limited to parties having a necessary and
justifiable place in a given identity relationship.
5. The Law of Pluralism:
A universal identity system MUST channel and enable the interworking
of multiple identity technologies run by multiple identity providers.
Must complete the list and get a grip on all this
All somewhere maybe on
Kim Cameron’s
http://www.identityblog.com/
~
I heard a great IT conversations on this topic… Gilmore Gang
Link?