�ݺ�ߣ

ISO mdoc 101 session presented to Internet Identity Workshop IIW (IIWXXXIX)

Oct 31, 20240 likes159 views

Update about ISO 18013-5, 18013-7 and 23220 for the IIW 2024B conference, Mountain View, California.

ISO mdoc 101
Oliver Terbu (MATTR), Andrew Hughes (FaceTec)

- Work started by ISO/IEC JTC1/SC17 WG10 in 2017
- Being developed by WG10 and WG4
- ISO/IEC 18013-5:2021
- Originally defined for mobile driving license (mDL) + presentation over ��local radios��
- But mdocs are defined as a digital credential format for any credential types (i.e. doctypes)
- Scope
- mdoc data model (for all mdocs)
- mDL doctype and namespaces
- Transaction protocols for close proximity (attended) use cases (for all mdocs)
- Device engagement
- Device retrieval
- Server retrieval
- Security mechanisms (for all mdocs)
- The mDL PKI and X.509 certificate profiles
- Privacy recommendations (for all mdocs)
- ISO/IEC 18013-7:2024
- Defines online retrieval mechanisms (for all mdocs)
- OpenID4VP
- RestAPI
ISO mobile documents (mdocs)

- 2017: Formal New Work Item Proposal acceptance and
launch of the standardization project.
- April 2018: 1st Committee Draft (CD) of ISO/IEC
18013-5 for international ballot/commenting.
- October 2018: 1st mDL interoperability event in
Okayama, Japan, based on the 1st CD draft.
- December 2018: Austroads, AAMVA, and EReg
endorse the international standardization of mDLs at
their Global Summit in Melbourne, Australia.
- March 2019: 2nd CD draft for ballot, incorporating the
learnings from the first test event.
- August 2019: America��s first mDL test event at the
AAMVA AIC, based on the 2nd CD draft.
- November 2019: Australia��s first mDL test event in
Brisbane, Australia, based on the proposed text for the
Draft International Standard (DIS).
- April 2020: Approval of the DIS version of ISO/IEC
18013-5.
- August 2021: Approval of the Final Draft International
Standard version ISO/IEC 18013-5.
- September 2021: Publication of the final International
Standard ISO/IEC 18013-5:2021.
- October 2021: European test event in Rotterdam, The
Netherlands.
- November 2021: American test event in Houston, TX,
USA.
- May 2022: 6th international test event in Louisville, KY,
USA.
- December 2022: 7th international test event in
Brisbane, QLD, Australia.
- August 2023: First online-only event for testing ISO/IEC
TS 18013-7.
- December 2023: 9th in-person international test event
in Paris, France.
- October 2024: Publication of the final Technical
Specification ISO/IEC TS 18013-7:2024.
- October 2024: 10th in-person international test event in
Sydney, Australia.
Key Activities and Milestones achieved by (Members of)
ISO/IEC JTC1/SC17 WG10 and WG4

mdoc interfaces

mdoc PKI
https://learn.mattr.global/docs/formats/mdocs
- Issuing Authority Certificate
Authority (IACA) certificate
- Root certificate of issuer
- Distributed out-of-band
- Intermediate Certificates
- Not directly supported by
mDL certificate profiles
- Document Signer Certificate
(DSC)
- End-entity certificate that
signs MSOs
- Included in MSO
- Mobile Security Object
(MSO)
- Signed by DSC

https://learn.mattr.global/docs/formats/mdocs
Verified Issuing Authority
Certificate Authority List
(VICAL )
- Published by Digital Trust
Service (DTS) systems to
proxy and simplify trust,
e.g., AAMVA, Austroads
- A list of trusted IACAs for
specific credential types
signed by the VICAL
provider
- Verifier needs to trust
VICAL provider instead of
each issuer individually

mdoc close proximity
presentation flow

�� Holder and verifier engage by scanning a QR code or NFC to
establish an encrypted session to secure a wireless data
transfer protocol (e.g. BLE/WiFi-Aware/NFC)
�� When the session is being or was established, the verifier
sends one or more presentation requests to ask the holder to
present mdocs with specific namespaces/data elements
�� The presentation request optionally uses reader authentication which
allows to authenticate the verifier to the holder
�� The mdoc presentation is then sent via the same secure session to
via the chosen wireless transfer protocol to the verifier
�� Finally, the verifier receives the presentation and verifies mdoc and
issuer data authentication
https://learn.mattr.global/docs/formats/mdocs

mdoc data model (��credentials��)
- mdoc credentials encoded as CBOR structures
- Described by the following information
- Mobile Security Object (MSO)
- Uses COSE_Sign1
- Signed by issuing authority (DSC)
- Contains document signer certificate (DSC) for issuer
data authentication
- Contains salted hashes of issuer signed
namespaces/data elements to support selective
disclosure and preserve privacy
- Document type (credential type), e.g.,
org.iso.18013.5.1.mdl
- Validity info of the MSO
- Device key for mdoc authentication
- Metadata
- Other authorized keys
- ��
- A number of namespaces
- Actual namespace data values
- External to the MSO
- Contains data element identifiers, e.g., firstname and
data element values
https://learn.mattr.global/docs/formats/mdocs

mdoc data model (��presentations��)
- mdoc presentations encoded as CBOR
structures
- Described by the following information
- Mobile Security Object (MSO)
- Selectively disclosed issuer signed
namespaces, i.e., data element identifiers and
data element values including salts, for issuer
data authentication
- Device auth (COSE_Sign1 or COSE_Mac) for
mdoc authentication to prevent replay
- Optionally, selectively disclosed device signed
namespaces
https://learn.mattr.global/docs/formats/mdocs

mdoc data model

Flight path for mdoc specs
ISO has a formal publication process that includes ongoing maintenance
- Once a standard is published, an amendment (small changes) or revision
(any/all changes) can be started
What are the WGs working on now?
- SC 17/WG 10 is working on revisions for both 18013-5 and 18013-7
- 18013-5 Revision will correct bugs, adds a new device request structure
(origin info, hints from reader to mdoc for how to handle complex doc requests, purpose hints,
conditionality)
- 18013-7 Revision will add support for the W3C browser API in
anticipation of standardization
Still discussing
- On-device holder-credential-binding (aka authorization to present an mdoc)
Expect revised versions in 2025

Why mdocs?
- In addition to properties of other credential formats has the following benefits
- Global ISO standard
- Well-defined end-to-end specification for close-proximity and online transmission of digital
credentials to ensure interoperability
- Battle-tested during a lot of interop events
- Adopted by government use cases
- mDL DHS/TSA pilots in the US
- mDL Australia
- Alignment with ICAO DTC in progress
- Referenced by the EU eIDAS 2.0 Implementing Acts
- ��
- NIST and ��EU��-approved cryptography (NIST curves, Brainpool etc.)
- CBOR is optimized for close-proximity protocols, e.g., parsing of data structures
- Supports selective disclosure
- ��

Questions?

Thank you!

Recommended

Mobile Devices & BYOD Security �C Deployment & Best Practices

Mobile Devices & BYOD Security �C Deployment & Best Practices

Mobile Devices & BYOD Security �C Deployment & Best PracticesCisco Canada

?

OPC UA Connectivity with InduSoft and the OPC Foundation

OPC UA Connectivity with InduSoft and the OPC Foundation

OPC UA Connectivity with InduSoft and the OPC FoundationAVEVA

?

The document discusses the role and mission of the OPC Foundation. It states that the Foundation is the world's leading community for interoperability solutions based on OPC specifications that deliver universal connectivity. The mission of the community is to advance the development, adoption and certification of OPC-based products through global collaborations. The Foundation is also the official source for the OPC Certification Program, which ensures that OPC products plug-and-play in real-world applications.

DDS Advanced Tutorial - OMG June 2013 Berlin Meeting

DDS Advanced Tutorial - OMG June 2013 Berlin Meeting

DDS Advanced Tutorial - OMG June 2013 Berlin MeetingJaime Martin Losa

?

An extended, in-depth tutorial explaining how to fully exploit the standard's unique communication capabilities.Presented at the OMG June 2013 Berlin Meeting. Users upgrading to DDS from a homegrown solution or a legacy-messaging infrastructure often limit themselves to using its most basic publish-subscribe features. This allows applications to take advantage of reliable multicast and other performance and scalability features of the DDS wire protocol, as well as the enhanced robustness of the DDS peer-to-peer architecture. However, applications that do not use DDS's data-centricity do not take advantage of many of its QoS-related, scalability and availability features, such as the KeepLast History Cache, Instance Ownership and Deadline Monitoring. As a consequence some developers duplicate these features in custom application code, resulting in increased costs, lower performance, and compromised portability and interoperability. This tutorial will formally define the data-centric publish-subscribe model as specified in the OMG DDS specification and define a set of best-practice guidelines and patterns for the design and implementation of systems based on DDS.

OpenID for Verifiable Credentials

OpenID for Verifiable Credentials

OpenID for Verifiable CredentialsTorsten Lodderstedt

?

Convergence Best Poster Award

Convergence Best Poster Award

Convergence Best Poster AwardRethinking Audiovisual Archives

?

Internet of things at the Edge with Azure IoT Edge by sonujose

Internet of things at the Edge with Azure IoT Edge by sonujose

Internet of things at the Edge with Azure IoT Edge by sonujoseSonu Jose

?

This document provides an overview of Microsoft's Azure IoT platform and services for connecting, managing and gaining insights from IoT devices at the edge and in the cloud. It discusses Microsoft's vision for empowering devices, the opportunities for developers, their investments in IoT, and the core Azure IoT services like IoT Hub, IoT Edge and IoT Central. It also provides examples of how IoT solutions can be built using these services by collecting data from devices at the edge, processing it locally or in the cloud, and taking automated actions.

Data Capture in IBM WebSphere Premises Server - Aldo Eisma, IBM

Data Capture in IBM WebSphere Premises Server - Aldo Eisma, IBM

Data Capture in IBM WebSphere Premises Server - Aldo Eisma, IBMmfrancis

?

This document discusses IBM's Sensor & Actuator Solutions Framework and the Data Capture domain. It describes how the Device Kit and Eclipse OHF SODA project are used to develop device agents that interface with hardware devices and expose their interfaces as services. The Device Kit provides tools to generate code for communicating with devices and integrating them into solutions using IBM WebSphere Premises Server.

Identifying How WAP Can Be Used For Secure mBusiness

Identifying How WAP Can Be Used For Secure mBusiness

Identifying How WAP Can Be Used For Secure mBusinessOliver Pfaff

?

The document discusses security technologies for the Wireless Application Protocol (WAP), including: - WAP 1.0 and 2.0 protocol stacks and their use of WTLS and TLS for secure communication - WTLS limitations and enhancements like WPKI, WAPCert, and TLS over HTTP in WAP 2.0 - Information security technologies like WMLScript Crypto and the Wireless Identity Module (WIM) for digital signatures and credential storage

CPaaS.io Y1 Review Meeting - Platform Architecture

CPaaS.io Y1 Review Meeting - Platform Architecture

CPaaS.io Y1 Review Meeting - Platform ArchitectureStephan Haller

?

The platform architecture developed by the CPaaS.io project - both the overall system architecture as well as the two implementation architectures, one based on FIWARE and the other on u2 - as presented at the first year review meeting in Tokyo on October 5, 2017. Disclaimer: This document has been produced in the context of the CPaaS.io project which is jointly funded by the European Commission (grant agreement n�� 723076) and NICT from Japan (management number 18302). All information provided in this document is provided "as is" and no guarantee or warranty is given that the information is fit for any particular purpose. The user thereof uses the information at its sole risk and liability. For the avoidance of all doubts, the European Commission and NICT have no liability in respect of this document, which is merely representing the view of the project consortium. This document is subject to change without notice.

OpenID for Verifiable Credentials @ IIW 36

OpenID for Verifiable Credentials @ IIW 36

OpenID for Verifiable Credentials @ IIW 36Torsten Lodderstedt

?

OpenID for Verifiable Credentials is the next generation of OpenID that enables issuing and presenting verifiable credentials in a decentralized manner. It uses an issuer-holder-verifier model where credentials are issued to a holder (digital wallet) and then presented to a verifier (website). This allows decoupling of issuance from presentation and reuse of credentials. OpenID for Verifiable Credentials specifications provide standards for credential issuance, presentation, and authentication that build upon OAuth 2.0 and OpenID Connect to enable a variety of decentralized identity use cases.

Lecture 01 {Introduction}.pptx

Lecture 01 {Introduction}.pptx

Lecture 01 {Introduction}.pptxSurendraBasnet6

?

The document outlines the objectives and course outline for a class on data communication and computer networks. The general objectives are to familiarize students with conceptual aspects of data communication and computer networks. Specific objectives include understanding the OSI and TCP/IP models, the layers of the OSI model, and network management and security issues. The course outline covers topics like the application layer, transport layer, network layer, data link layer, physical layer, and network management and security over seven units.

Projectblueash1198

?

The document proposes a system to improve security for virtual and cloud computing environments using single sign-on with multi-factor authentication. It involves setting up a virtual networking environment using VMware, enabling LDAP user profiles and permissions, and configuring a Kerberos server for multifactor authentication and single sign-on. The system aims to provide a secure ubiquitous framework for desktop virtualization while maintaining simplicity.

Web Services and Devices Profile for Web Services (DPWS)Jorgen Thelin

?

The document discusses Web Services and how they can be applied to devices using the Device Profile for Web Services. It describes how WS specifications can be scaled down to work on limited resource devices. The Device Profile defines a lightweight subset of WS specs for device communication and includes security, discovery, and other protocols. Microsoft's implementations in Windows Vista and .NET support these standards for printer, scanner, and other device integration.

dist-access. access control in distributed systemspdf

dist-access. access control in distributed systemspdf

dist-access. access control in distributed systemspdfNohaNagy5

?

The document discusses access control in distributed systems and provides an overview of SAML and XACML. It defines SAML as allowing assertions about security properties of a subject, such as authentication, attributes, and authorization decisions. SAML uses the concepts of an Identity Provider that asserts information about a subject and a Service Provider that relies on assertions from an Identity Provider. The document also provides examples of SAML assertions and their components.

OpenID for SSITorsten Lodderstedt

?

OpenID for SSI aims to specify protocols based on OpenID Connect and OAuth 2.0 to enable self-sovereign identity (SSI) applications. This initiative is conducted by the OpenID Foundation in collaboration with the Decentralized Identity Foundation. One specification builds upon the DID-SIOP and SIOPv1 standards. Using OpenID Connect allows for variety in SSI technology choices like identifiers, credentials, and cryptography while leveraging existing OpenID Connect implementations, libraries, and developer familiarity. Demonstrations show credential presentation and issuance via OIDC4SSI specifications.

OpenChain Webinar #50 - An Overview of SPDX 3.0

OpenChain Webinar #50 - An Overview of SPDX 3.0

OpenChain Webinar #50 - An Overview of SPDX 3.0Shane Coughlan

?

SPDX 3.0 aims to increase modularity and interoperability by defining core, software, licensing, security, build, AI, and dataset profiles. The core model contains common elements, while profiles add additional elements and properties specific to their domain. Future work includes profiles for hardware and supporting automation for safety standards compliance. The build profile aims to capture build information for reproducibility, auditing, and safety. The AI profile proposes additional properties for AI components, datasets, and applications. SPDX 3.1 may include a safety profile to link safety artifacts and enable detection of retesting needs due to file updates.

Technology, Business and Regulation of the Connected Car

Technology, Business and Regulation of the Connected Car

Technology, Business and Regulation of the Connected Carmentoresd

?

Distributed Systems: How to connect your real-time applications

Distributed Systems: How to connect your real-time applications

Distributed Systems: How to connect your real-time applicationsJaime Martin Losa

?

This document provides an overview of distributed systems and how to connect real-time applications using the Data Distribution Service (DDS) standard. It introduces DDS and its architecture, including topics, instances, keys, quality of service policies. It then demonstrates how to create a basic "hello world" publisher/subscriber example in both eProsima Fast RTPS and RTI Connext DDS middleware in 3 steps: defining the data type, generating code, and building/running the publisher and subscriber.

Networking Concepts Lesson 10 part 2 - Security Appendix - Eric Vanderburg

Networking Concepts Lesson 10 part 2 - Security Appendix - Eric Vanderburg

Networking Concepts Lesson 10 part 2 - Security Appendix - Eric VanderburgEric Vanderburg

?

This document discusses various concepts related to network security. It covers topics such as understanding security costs, securing data both physically and virtually, planning network security strategies, and features of Windows operating systems that improve security such as Kerberos authentication, public key infrastructure (PKI), group policy, VPNs, and IPSec. It also discusses security tools and methods like firewalls, intrusion detection systems, honeypots, and how to protect against malicious code like viruses, Trojan horses, and worms.

IoT on azureJoanna Lamch

?

Tta 0081Hai Nguyen

?

This document defines the format for wireless certificate requests in Korea. It specifies: - The format includes type, public key, ID, encrypted virtual ID, and a signed content field. - The type field indicates if the request is for a digital signature certificate, key distribution certificate, or both. - The virtual ID is a hashed value of the ID and random number. The encrypted virtual ID protects the request. - The signed content includes the other fields hashed with a password, providing proof of possession for the private key. - Responses from the registration authority follow the defined response message format.

9. PA DIM presentation.pdf

9. PA DIM presentation.pdf

9. PA DIM presentation.pdfPROFIBUS and PROFINET InternationaI - PI UK

?

This document discusses the PA DIM (Process Automation Device Information Model) presentation. It introduces PA DIM as a standardized information model for accessing device data via OPC-UA. PA DIM is based on NAMUR requirements and reuses interfaces from the OPC UA Device Integration model. It allows mapping device information contained in packages like FDI to OPC-UA clients, providing access to signals, functions and health of devices nearly independently of the physical communication protocol. The presentation also provides an overview of common device driver types like EDD, FDT/DTM and FDI and how OPC-UA supports information modeling and both client-server and publish-subscribe communication mechanisms.

FINAL CALL - 7th International Conference on Networks and Security (NSEC 2023)

FINAL CALL - 7th International Conference on Networks and Security (NSEC 2023)

FINAL CALL - 7th International Conference on Networks and Security (NSEC 2023)IJDKP

?

Paper Submission Authors are invited to submit papers through the conference Submission System by August 12, 2023. Submissions must be original and should not have been published previously or be under consideration for publication while being evaluated for this conference. The proceedings of the conference will be published by Computer Science Conference Proceedings in Computer Science & Information Technology (CS & IT) series (Confirmed). Selected papers from NSEC 2023, after further revisions, will be published in the special issues of the following journals ? International Journal of Computer Networks & Communications (IJCNC) - ERA, WJCI, Scopus Indexed ? International Journal of Network Security & Its Applications (IJNSA) - ERA, WJCI, Indexed ? Information Technology in Industry (ITII) Important Dates ? Submission Deadline : August 12, 2023 ? Authors Notification : August 20, 2023 ? Registration & Camera-Ready Paper Due : August 22, 2023 Contact Us Here's where you can reach us :nsec@inwes2023.org or nsecconf@gmail.com Submission Link: https://inwes2023.org/submission/index.php

Towards design strong emergency and COVID-19 authentication scheme in VANET

Towards design strong emergency and COVID-19 authentication scheme in VANET

Towards design strong emergency and COVID-19 authentication scheme in VANETnooriasukmaningtyas

?

The wide use of vehicular ad hoc networks (VANETs) in the last decade has led many researchers to find efficient and reliable methods to obtain the desired benefits and offer services, such as healthcare and traffic management. However, VANETs suffer from security issues represented by authentication and data integrity. In this paper, we propose a robust mutual authentication scheme based on elliptic curve cryptography (ECC), cryptography Hash Function, and a pseudonym. The proposed work was twofold in focus: first, on healthcare in emergency cars which use VANETs, and second, on overcoming security issues, such as resisting familiar attacks (e.g. insider attacks and reply attacks). Because of the serious situation generated by the worldwide outbreak of the Covid-19 epidemic, we also found this research valuable in supporting global efforts to combat the rapid spread of this virus, by finding the safest and fastest routes to epidemic treatment centres for medical staff, assistance teams in medical operations, fumigation control, and all work teams associated with disease control. This research attempts to contribute by proposing a special signal used to define epidemic teams. The best route, fast route can be chosen by using VANETs infrastructure. This scheme also deals with metric security features, such as key management, data integrity, and data privacy. In the communication and computation cost, we noticed that our proposed scheme achieved good results compared with the related works

The importance of Quality Assurance for ICT Standardization

The importance of Quality Assurance for ICT Standardization

The importance of Quality Assurance for ICT StandardizationAxel Rennoch

?

Internet of Things: an overview

Internet of Things: an overview

Internet of Things: an overviewPascal Bodin

?

Blockchin Architecture on Azure-Part-3

Blockchin Architecture on Azure-Part-3

Blockchin Architecture on Azure-Part-3Mohammad Asif

?

FIWARE Generic Enablers introduction

FIWARE Generic Enablers introduction

FIWARE Generic Enablers introductionMiguel Garc��a Gonz��lez

?

This document provides an overview of Generic Enablers in the FIWARE platform. It describes Generic Enablers as reusable building blocks that provide common functions across multiple use cases and sectors. The Generic Enablers are divided into 7 technical chapters including data management, interfaces to devices, security, and applications. Each chapter contains several specific Generic Enablers that provide functions like data analysis, device connectivity, identity management, and marketplaces. The document also introduces Specific Enablers which are similar to Generic Enablers but offer domain-specific functions for areas like manufacturing, healthcare, and smart cities.

Kantara Initiative Consent Receipt Interoperability Demo v4

Kantara Initiative Consent Receipt Interoperability Demo v4

Kantara Initiative Consent Receipt Interoperability Demo v4Andrew Hughes

?

Hughes iso-standards-identiverse-2018-06-24 v3

Hughes iso-standards-identiverse-2018-06-24 v3

Hughes iso-standards-identiverse-2018-06-24 v3Andrew Hughes

?

More Related Content

Similar to ISO mdoc 101 session presented to Internet Identity Workshop IIW (IIWXXXIX) (20)

CPaaS.io Y1 Review Meeting - Platform Architecture

CPaaS.io Y1 Review Meeting - Platform Architecture

CPaaS.io Y1 Review Meeting - Platform ArchitectureStephan Haller

?

The platform architecture developed by the CPaaS.io project - both the overall system architecture as well as the two implementation architectures, one based on FIWARE and the other on u2 - as presented at the first year review meeting in Tokyo on October 5, 2017. Disclaimer: This document has been produced in the context of the CPaaS.io project which is jointly funded by the European Commission (grant agreement n�� 723076) and NICT from Japan (management number 18302). All information provided in this document is provided "as is" and no guarantee or warranty is given that the information is fit for any particular purpose. The user thereof uses the information at its sole risk and liability. For the avoidance of all doubts, the European Commission and NICT have no liability in respect of this document, which is merely representing the view of the project consortium. This document is subject to change without notice.

OpenID for Verifiable Credentials @ IIW 36

OpenID for Verifiable Credentials @ IIW 36

OpenID for Verifiable Credentials @ IIW 36Torsten Lodderstedt

?

OpenID for Verifiable Credentials is the next generation of OpenID that enables issuing and presenting verifiable credentials in a decentralized manner. It uses an issuer-holder-verifier model where credentials are issued to a holder (digital wallet) and then presented to a verifier (website). This allows decoupling of issuance from presentation and reuse of credentials. OpenID for Verifiable Credentials specifications provide standards for credential issuance, presentation, and authentication that build upon OAuth 2.0 and OpenID Connect to enable a variety of decentralized identity use cases.

Lecture 01 {Introduction}.pptx

Lecture 01 {Introduction}.pptx

Lecture 01 {Introduction}.pptxSurendraBasnet6

?

The document outlines the objectives and course outline for a class on data communication and computer networks. The general objectives are to familiarize students with conceptual aspects of data communication and computer networks. Specific objectives include understanding the OSI and TCP/IP models, the layers of the OSI model, and network management and security issues. The course outline covers topics like the application layer, transport layer, network layer, data link layer, physical layer, and network management and security over seven units.

Projectblueash1198

?

The document proposes a system to improve security for virtual and cloud computing environments using single sign-on with multi-factor authentication. It involves setting up a virtual networking environment using VMware, enabling LDAP user profiles and permissions, and configuring a Kerberos server for multifactor authentication and single sign-on. The system aims to provide a secure ubiquitous framework for desktop virtualization while maintaining simplicity.

Web Services and Devices Profile for Web Services (DPWS)Jorgen Thelin

?

The document discusses Web Services and how they can be applied to devices using the Device Profile for Web Services. It describes how WS specifications can be scaled down to work on limited resource devices. The Device Profile defines a lightweight subset of WS specs for device communication and includes security, discovery, and other protocols. Microsoft's implementations in Windows Vista and .NET support these standards for printer, scanner, and other device integration.

dist-access. access control in distributed systemspdf

dist-access. access control in distributed systemspdf

dist-access. access control in distributed systemspdfNohaNagy5

?

The document discusses access control in distributed systems and provides an overview of SAML and XACML. It defines SAML as allowing assertions about security properties of a subject, such as authentication, attributes, and authorization decisions. SAML uses the concepts of an Identity Provider that asserts information about a subject and a Service Provider that relies on assertions from an Identity Provider. The document also provides examples of SAML assertions and their components.

OpenID for SSITorsten Lodderstedt

?

OpenID for SSI aims to specify protocols based on OpenID Connect and OAuth 2.0 to enable self-sovereign identity (SSI) applications. This initiative is conducted by the OpenID Foundation in collaboration with the Decentralized Identity Foundation. One specification builds upon the DID-SIOP and SIOPv1 standards. Using OpenID Connect allows for variety in SSI technology choices like identifiers, credentials, and cryptography while leveraging existing OpenID Connect implementations, libraries, and developer familiarity. Demonstrations show credential presentation and issuance via OIDC4SSI specifications.

OpenChain Webinar #50 - An Overview of SPDX 3.0

OpenChain Webinar #50 - An Overview of SPDX 3.0

OpenChain Webinar #50 - An Overview of SPDX 3.0Shane Coughlan

?

SPDX 3.0 aims to increase modularity and interoperability by defining core, software, licensing, security, build, AI, and dataset profiles. The core model contains common elements, while profiles add additional elements and properties specific to their domain. Future work includes profiles for hardware and supporting automation for safety standards compliance. The build profile aims to capture build information for reproducibility, auditing, and safety. The AI profile proposes additional properties for AI components, datasets, and applications. SPDX 3.1 may include a safety profile to link safety artifacts and enable detection of retesting needs due to file updates.

Technology, Business and Regulation of the Connected Car

Technology, Business and Regulation of the Connected Car

Technology, Business and Regulation of the Connected Carmentoresd

?

Distributed Systems: How to connect your real-time applications

Distributed Systems: How to connect your real-time applications

Distributed Systems: How to connect your real-time applicationsJaime Martin Losa

?

This document provides an overview of distributed systems and how to connect real-time applications using the Data Distribution Service (DDS) standard. It introduces DDS and its architecture, including topics, instances, keys, quality of service policies. It then demonstrates how to create a basic "hello world" publisher/subscriber example in both eProsima Fast RTPS and RTI Connext DDS middleware in 3 steps: defining the data type, generating code, and building/running the publisher and subscriber.

Networking Concepts Lesson 10 part 2 - Security Appendix - Eric Vanderburg

Networking Concepts Lesson 10 part 2 - Security Appendix - Eric Vanderburg

Networking Concepts Lesson 10 part 2 - Security Appendix - Eric VanderburgEric Vanderburg

?

This document discusses various concepts related to network security. It covers topics such as understanding security costs, securing data both physically and virtually, planning network security strategies, and features of Windows operating systems that improve security such as Kerberos authentication, public key infrastructure (PKI), group policy, VPNs, and IPSec. It also discusses security tools and methods like firewalls, intrusion detection systems, honeypots, and how to protect against malicious code like viruses, Trojan horses, and worms.

IoT on azureJoanna Lamch

?

Tta 0081Hai Nguyen

?

This document defines the format for wireless certificate requests in Korea. It specifies: - The format includes type, public key, ID, encrypted virtual ID, and a signed content field. - The type field indicates if the request is for a digital signature certificate, key distribution certificate, or both. - The virtual ID is a hashed value of the ID and random number. The encrypted virtual ID protects the request. - The signed content includes the other fields hashed with a password, providing proof of possession for the private key. - Responses from the registration authority follow the defined response message format.

9. PA DIM presentation.pdf

9. PA DIM presentation.pdf

9. PA DIM presentation.pdfPROFIBUS and PROFINET InternationaI - PI UK

?

This document discusses the PA DIM (Process Automation Device Information Model) presentation. It introduces PA DIM as a standardized information model for accessing device data via OPC-UA. PA DIM is based on NAMUR requirements and reuses interfaces from the OPC UA Device Integration model. It allows mapping device information contained in packages like FDI to OPC-UA clients, providing access to signals, functions and health of devices nearly independently of the physical communication protocol. The presentation also provides an overview of common device driver types like EDD, FDT/DTM and FDI and how OPC-UA supports information modeling and both client-server and publish-subscribe communication mechanisms.

FINAL CALL - 7th International Conference on Networks and Security (NSEC 2023)

FINAL CALL - 7th International Conference on Networks and Security (NSEC 2023)

FINAL CALL - 7th International Conference on Networks and Security (NSEC 2023)IJDKP

?

Paper Submission Authors are invited to submit papers through the conference Submission System by August 12, 2023. Submissions must be original and should not have been published previously or be under consideration for publication while being evaluated for this conference. The proceedings of the conference will be published by Computer Science Conference Proceedings in Computer Science & Information Technology (CS & IT) series (Confirmed). Selected papers from NSEC 2023, after further revisions, will be published in the special issues of the following journals ? International Journal of Computer Networks & Communications (IJCNC) - ERA, WJCI, Scopus Indexed ? International Journal of Network Security & Its Applications (IJNSA) - ERA, WJCI, Indexed ? Information Technology in Industry (ITII) Important Dates ? Submission Deadline : August 12, 2023 ? Authors Notification : August 20, 2023 ? Registration & Camera-Ready Paper Due : August 22, 2023 Contact Us Here's where you can reach us :nsec@inwes2023.org or nsecconf@gmail.com Submission Link: https://inwes2023.org/submission/index.php

Towards design strong emergency and COVID-19 authentication scheme in VANET

Towards design strong emergency and COVID-19 authentication scheme in VANET

Towards design strong emergency and COVID-19 authentication scheme in VANETnooriasukmaningtyas

?

The wide use of vehicular ad hoc networks (VANETs) in the last decade has led many researchers to find efficient and reliable methods to obtain the desired benefits and offer services, such as healthcare and traffic management. However, VANETs suffer from security issues represented by authentication and data integrity. In this paper, we propose a robust mutual authentication scheme based on elliptic curve cryptography (ECC), cryptography Hash Function, and a pseudonym. The proposed work was twofold in focus: first, on healthcare in emergency cars which use VANETs, and second, on overcoming security issues, such as resisting familiar attacks (e.g. insider attacks and reply attacks). Because of the serious situation generated by the worldwide outbreak of the Covid-19 epidemic, we also found this research valuable in supporting global efforts to combat the rapid spread of this virus, by finding the safest and fastest routes to epidemic treatment centres for medical staff, assistance teams in medical operations, fumigation control, and all work teams associated with disease control. This research attempts to contribute by proposing a special signal used to define epidemic teams. The best route, fast route can be chosen by using VANETs infrastructure. This scheme also deals with metric security features, such as key management, data integrity, and data privacy. In the communication and computation cost, we noticed that our proposed scheme achieved good results compared with the related works

The importance of Quality Assurance for ICT Standardization

The importance of Quality Assurance for ICT Standardization

The importance of Quality Assurance for ICT StandardizationAxel Rennoch

?

Internet of Things: an overview

Internet of Things: an overview

Internet of Things: an overviewPascal Bodin

?

Blockchin Architecture on Azure-Part-3

Blockchin Architecture on Azure-Part-3

Blockchin Architecture on Azure-Part-3Mohammad Asif

?

FIWARE Generic Enablers introduction

FIWARE Generic Enablers introduction

FIWARE Generic Enablers introductionMiguel Garc��a Gonz��lez

?

This document provides an overview of Generic Enablers in the FIWARE platform. It describes Generic Enablers as reusable building blocks that provide common functions across multiple use cases and sectors. The Generic Enablers are divided into 7 technical chapters including data management, interfaces to devices, security, and applications. Each chapter contains several specific Generic Enablers that provide functions like data analysis, device connectivity, identity management, and marketplaces. The document also introduces Specific Enablers which are similar to Generic Enablers but offer domain-specific functions for areas like manufacturing, healthcare, and smart cities.

CPaaS.io Y1 Review Meeting - Platform Architecture

CPaaS.io Y1 Review Meeting - Platform Architecture

CPaaS.io Y1 Review Meeting - Platform ArchitectureStephan Haller

?

OpenID for Verifiable Credentials @ IIW 36

OpenID for Verifiable Credentials @ IIW 36

OpenID for Verifiable Credentials @ IIW 36Torsten Lodderstedt

?

Lecture 01 {Introduction}.pptx

Lecture 01 {Introduction}.pptx

Lecture 01 {Introduction}.pptxSurendraBasnet6

?

Projectblueash1198

?

Web Services and Devices Profile for Web Services (DPWS)Jorgen Thelin

?

dist-access. access control in distributed systemspdf

dist-access. access control in distributed systemspdf

dist-access. access control in distributed systemspdfNohaNagy5

?

OpenID for SSITorsten Lodderstedt

?

OpenChain Webinar #50 - An Overview of SPDX 3.0

OpenChain Webinar #50 - An Overview of SPDX 3.0

OpenChain Webinar #50 - An Overview of SPDX 3.0Shane Coughlan

?

Technology, Business and Regulation of the Connected Car

Technology, Business and Regulation of the Connected Car

Technology, Business and Regulation of the Connected Carmentoresd

?

Distributed Systems: How to connect your real-time applications

Distributed Systems: How to connect your real-time applications

Distributed Systems: How to connect your real-time applicationsJaime Martin Losa

?

Networking Concepts Lesson 10 part 2 - Security Appendix - Eric Vanderburg

Networking Concepts Lesson 10 part 2 - Security Appendix - Eric Vanderburg

Networking Concepts Lesson 10 part 2 - Security Appendix - Eric VanderburgEric Vanderburg

?

IoT on azureJoanna Lamch

?

Tta 0081Hai Nguyen

?

9. PA DIM presentation.pdf

9. PA DIM presentation.pdf

9. PA DIM presentation.pdfPROFIBUS and PROFINET InternationaI - PI UK

?

FINAL CALL - 7th International Conference on Networks and Security (NSEC 2023)

FINAL CALL - 7th International Conference on Networks and Security (NSEC 2023)

FINAL CALL - 7th International Conference on Networks and Security (NSEC 2023)IJDKP

?

Towards design strong emergency and COVID-19 authentication scheme in VANET

Towards design strong emergency and COVID-19 authentication scheme in VANET

Towards design strong emergency and COVID-19 authentication scheme in VANETnooriasukmaningtyas

?

The importance of Quality Assurance for ICT Standardization

The importance of Quality Assurance for ICT Standardization

The importance of Quality Assurance for ICT StandardizationAxel Rennoch

?

Internet of Things: an overview

Internet of Things: an overview

Internet of Things: an overviewPascal Bodin

?

Blockchin Architecture on Azure-Part-3

Blockchin Architecture on Azure-Part-3

Blockchin Architecture on Azure-Part-3Mohammad Asif

?

FIWARE Generic Enablers introduction

FIWARE Generic Enablers introduction

FIWARE Generic Enablers introductionMiguel Garc��a Gonz��lez

?

More from Andrew Hughes (7)

Kantara Initiative Consent Receipt Interoperability Demo v4

Kantara Initiative Consent Receipt Interoperability Demo v4

Kantara Initiative Consent Receipt Interoperability Demo v4Andrew Hughes

?

Hughes iso-standards-identiverse-2018-06-24 v3

Hughes iso-standards-identiverse-2018-06-24 v3

Hughes iso-standards-identiverse-2018-06-24 v3Andrew Hughes

?

Digital Identity Landscape for Vancouver IAM Meetup 2017 12-19

Digital Identity Landscape for Vancouver IAM Meetup 2017 12-19

Digital Identity Landscape for Vancouver IAM Meetup 2017 12-19Andrew Hughes

?

Kantara trust frameworks 2016 05-08

Kantara trust frameworks 2016 05-08

Kantara trust frameworks 2016 05-08Andrew Hughes

?

The document discusses digital trust frameworks, which define rules for interactions between organizations handling digital identity, authentication, and authorization. It provides an example of how a trust framework allows a festival organization to easily verify a resident's identity with telco providers to give out free flags. The key benefits of trust frameworks are lowering negotiation burdens between organizations and enabling interoperability by having all parties comply with the framework's protocols, standards, and policies. The document encourages the reader to get involved with the Kantara Initiative, a non-profit focused on developing innovations for trusted online experiences.

NSTIC ID Ecosystem - A Conceptual Model v03 - Andrew Hughes

NSTIC ID Ecosystem - A Conceptual Model v03 - Andrew Hughes

NSTIC ID Ecosystem - A Conceptual Model v03 - Andrew HughesAndrew Hughes

?

The document presents a conceptual model of the NSTIC ID Ecosystem that views it as consisting of different online communities that use interoperable technology, processes, and policies. It describes key elements of the ecosystem like online communities setting their own rules according to member needs and interacting with each other. It also discusses the role of the IDESG in establishing the framework and programs to evaluate online communities seeking participation.

NSTIC IDESG ID Ecosystem Conceptual Model v02

NSTIC IDESG ID Ecosystem Conceptual Model v02

NSTIC IDESG ID Ecosystem Conceptual Model v02Andrew Hughes

?

A Conceptual Model for the NSTIC ID Ecosystem - Discussion Draft

A Conceptual Model for the NSTIC ID Ecosystem - Discussion Draft

A Conceptual Model for the NSTIC ID Ecosystem - Discussion DraftAndrew Hughes

?

This document presents a conceptual model for understanding the NSTIC ID Ecosystem. It describes the ecosystem as consisting of online communities whose central concern is the transaction between an e-service provider and customer. The transaction involves terms of service that must be fulfilled for the customer to receive the service. Key entities like identity providers and relying parties exist to support these transactions according to standards and policies defined by the ID Ecosystem Framework and overseen by the IDESG and accreditation authorities. The conceptual model is intended to help analyze potential ecosystem participants and foster interoperability across communities.

Kantara Initiative Consent Receipt Interoperability Demo v4

Kantara Initiative Consent Receipt Interoperability Demo v4

Kantara Initiative Consent Receipt Interoperability Demo v4Andrew Hughes

?

Hughes iso-standards-identiverse-2018-06-24 v3

Hughes iso-standards-identiverse-2018-06-24 v3

Hughes iso-standards-identiverse-2018-06-24 v3Andrew Hughes

?

Digital Identity Landscape for Vancouver IAM Meetup 2017 12-19

Digital Identity Landscape for Vancouver IAM Meetup 2017 12-19

Digital Identity Landscape for Vancouver IAM Meetup 2017 12-19Andrew Hughes

?

Kantara trust frameworks 2016 05-08

Kantara trust frameworks 2016 05-08

Kantara trust frameworks 2016 05-08Andrew Hughes

?

NSTIC ID Ecosystem - A Conceptual Model v03 - Andrew Hughes

NSTIC ID Ecosystem - A Conceptual Model v03 - Andrew Hughes

NSTIC ID Ecosystem - A Conceptual Model v03 - Andrew HughesAndrew Hughes

?

NSTIC IDESG ID Ecosystem Conceptual Model v02

NSTIC IDESG ID Ecosystem Conceptual Model v02

NSTIC IDESG ID Ecosystem Conceptual Model v02Andrew Hughes

?

A Conceptual Model for the NSTIC ID Ecosystem - Discussion Draft

A Conceptual Model for the NSTIC ID Ecosystem - Discussion Draft

A Conceptual Model for the NSTIC ID Ecosystem - Discussion DraftAndrew Hughes

?

Recently uploaded (20)

UiPath Automation Developer Associate Training Series 2025 - Session 2

UiPath Automation Developer Associate Training Series 2025 - Session 2

UiPath Automation Developer Associate Training Series 2025 - Session 2DianaGray10

?

In session 2, we will introduce you to Data manipulation in UiPath Studio. Topics covered: Data Manipulation What is Data Manipulation Strings Lists Dictionaries RegEx Builder Date and Time Required Self-Paced Learning for this session: Data Manipulation with Strings in UiPath Studio (v2022.10) 2 modules - 1h 30m - https://academy.uipath.com/courses/data-manipulation-with-strings-in-studio Data Manipulation with Lists and Dictionaries in UiPath Studio (v2022.10) 2 modules - 1h - https:/academy.uipath.com/courses/data-manipulation-with-lists-and-dictionaries-in-studio Data Manipulation with Data Tables in UiPath Studio (v2022.10) 2 modules - 1h 30m - https:/academy.uipath.com/courses/data-manipulation-with-data-tables-in-studio ?? For any questions you may have, please use the dedicated Forum thread. You can tag the hosts and mentors directly and they will reply as soon as possible.

Integrated Operating Window - A Gateway to PM

Integrated Operating Window - A Gateway to PM

Integrated Operating Window - A Gateway to PMFarhan Tariq

?

30B Images and Counting: Scaling Canva's Content-Understanding Pipelines by K...

30B Images and Counting: Scaling Canva's Content-Understanding Pipelines by K...

30B Images and Counting: Scaling Canva's Content-Understanding Pipelines by K...ScyllaDB

?

[Webinar] Scaling Made Simple: Getting Started with No-Code Web Apps

[Webinar] Scaling Made Simple: Getting Started with No-Code Web Apps

[Webinar] Scaling Made Simple: Getting Started with No-Code Web AppsSafe Software

?

Ready to simplify workflow sharing across your organization without diving into complex coding? With FME Flow Apps, you can build no-code web apps that make your data work harder for you �� fast. In this webinar, we��ll show you how to: Build and deploy Workspace Apps to create an intuitive user interface for self-serve data processing and validation. Automate processes using Automation Apps. Learn to create a no-code web app to kick off workflows tailored to your needs, trigger multiple workspaces and external actions, and use conditional filtering within automations to control your workflows. Create a centralized portal with Gallery Apps to share a collection of no-code web apps across your organization. Through real-world examples and practical demos, you��ll learn how to transform your workflows into intuitive, self-serve solutions that empower your team and save you time. We can��t wait to show you what��s possible!

Early Adopter's Guide to AI Moderation (Preview)

Early Adopter's Guide to AI Moderation (Preview)

Early Adopter's Guide to AI Moderation (Preview)nick896721

?

Q4_TLE-7-Lesson-6-Week-6.pptx 4th quarter

Q4_TLE-7-Lesson-6-Week-6.pptx 4th quarter

Q4_TLE-7-Lesson-6-Week-6.pptx 4th quarterMariaBarbaraPaglinaw

?

Computational Photography: How Technology is Changing Way We Capture the World

Computational Photography: How Technology is Changing Way We Capture the World

Computational Photography: How Technology is Changing Way We Capture the WorldHusseinMalikMammadli

?

? Computational Photography (Computer Vision/Image): How Technology is Changing the Way We Capture the World He? d��?��nm��s��n��zm��, m��asir smartfonlar v? kameralar nec? bu q?d?r g?z?l g?r��nt��l?r yarad?r? Bunun sirri Computational Fotoqrafiyas?nda(Computer Vision/Imaging) gizlidir��??kill?ri ??km? v? emal etm? ��sulumuzu t?kmill??dir?n, komp��ter elmi il? fotoqrafiyan?n inqilabi birl??m?si.

The Future of Repair: Transparent and Incremental by Botond De?nes

The Future of Repair: Transparent and Incremental by Botond De?nes

The Future of Repair: Transparent and Incremental by Botond De?nesScyllaDB

?

Regularly run repairs are essential to keep clusters healthy, yet having a good repair schedule is more challenging than it should be. Repairs often take a long time, preventing running them often. This has an impact on data consistency and also limits the usefulness of the new repair based tombstone garbage collection. We want to address these challenges by making repairs incremental and allowing for automatic repair scheduling, without relying on external tools.

DAO UTokyo 2025 DLT mass adoption case studies IBM Tsuyoshi Hirayama (ƽɽ��)

DAO UTokyo 2025 DLT mass adoption case studies IBM Tsuyoshi Hirayama (ƽɽ��)

DAO UTokyo 2025 DLT mass adoption case studies IBM Tsuyoshi Hirayama (ƽɽ��)Tsuyoshi Hirayama

?

DevNexus - Building 10x Development Organizations.pdf

DevNexus - Building 10x Development Organizations.pdf

DevNexus - Building 10x Development Organizations.pdfJustin Reock

?

Developer Experience is Dead! Long Live Developer Experience! In this keynote-style session, we��ll take a detailed, granular look at the barriers to productivity developers face today and modern approaches for removing them. 10x developers may be a myth, but 10x organizations are very real, as proven by the influential study performed in the 1980s, ��The Coding War Games.�� Right now, here in early 2025, we seem to be experiencing YAPP (Yet Another Productivity Philosophy), and that philosophy is converging on developer experience. It seems that with every new method, we invent to deliver products, whether physical or virtual, we reinvent productivity philosophies to go alongside them. But which of these approaches works? DORA? SPACE? DevEx? What should we invest in and create urgency behind today so we don��t have the same discussion again in a decade?

Gojek Clone Multi-Service Super App.pptx

Gojek Clone Multi-Service Super App.pptx

Gojek Clone Multi-Service Super App.pptxV3cube

?

EaseUS Partition Master Crack 2025 + Serial Key

EaseUS Partition Master Crack 2025 + Serial Key

EaseUS Partition Master Crack 2025 + Serial Keykherorpacca127

?

https://ncracked.com/7961-2/ Note: >> Please copy the link and paste it into Google New Tab now Download link EASEUS Partition Master Crack is a professional hard disk partition management tool and system partition optimization software. It is an all-in-one PC and server disk management toolkit for IT professionals, system administrators, technicians, and consultants to provide technical services to customers with unlimited use. EASEUS Partition Master 18.0 Technician Edition Crack interface is clean and tidy, so all options are at your fingertips. Whether you want to resize, move, copy, merge, browse, check, convert partitions, or change their labels, you can do everything with a few clicks. The defragmentation tool is also designed to merge fragmented files and folders and store them in contiguous locations on the hard drive.

Both Feet on the Ground - Generative Artificial Intelligence

Both Feet on the Ground - Generative Artificial Intelligence

Both Feet on the Ground - Generative Artificial IntelligencePete Nieminen

?

Brave Browser Crack 1.45.133 Activated 2025

Brave Browser Crack 1.45.133 Activated 2025

Brave Browser Crack 1.45.133 Activated 2025kherorpacca00126

?

https://ncracked.com/7961-2/ Note: >> Please copy the link and paste it into Google New Tab now Download link Brave is a free Chromium browser developed for Win Downloads, macOS and Linux systems that allows users to browse the internet in a safer, faster and more secure way than its competition. Designed with security in mind, Brave automatically blocks ads and trackers which also makes it faster, As Brave naturally blocks unwanted content from appearing in your browser, it prevents these trackers and pop-ups from slowing Download your user experience. It's also designed in a way that strips Downloaden which data is being loaded each time you use it. Without these components

L01 Introduction to Nanoindentation - What is hardness

L01 Introduction to Nanoindentation - What is hardness

L01 Introduction to Nanoindentation - What is hardnessRostislavDaniel

?

How Discord Indexes Trillions of Messages: Scaling Search Infrastructure by V...

How Discord Indexes Trillions of Messages: Scaling Search Infrastructure by V...

How Discord Indexes Trillions of Messages: Scaling Search Infrastructure by V...ScyllaDB

?

Transform Your Future with Front-End Development Training

Transform Your Future with Front-End Development Training

Transform Your Future with Front-End Development TrainingVtechlabs

?

Kickstart your career in web development with our front-end web development course in Vadodara. Learn HTML, CSS, JavaScript, React, and more through hands-on projects and expert mentorship. Our front-end development course with placement includes real-world training, mock interviews, and job assistance to help you secure top roles like Front-End Developer, UI/UX Developer, and Web Designer. Join VtechLabs today and build a successful career in the booming IT industry!

Field Device Management Market Report 2030 - TechSci Research

Field Device Management Market Report 2030 - TechSci Research

Field Device Management Market Report 2030 - TechSci ResearchVipin Mishra

?

The Global Field Device Management (FDM) Market is expected to experience significant growth in the forecast period from 2026 to 2030, driven by the integration of advanced technologies aimed at improving industrial operations. ? According to TechSci Research, the Global Field Device Management Market was valued at USD 1,506.34 million in 2023 and is anticipated to grow at a CAGR of 6.72% through 2030. FDM plays a vital role in the centralized oversight and optimization of industrial field devices, including sensors, actuators, and controllers. Key tasks managed under FDM include: Configuration Monitoring Diagnostics Maintenance Performance optimization FDM solutions offer a comprehensive platform for real-time data collection, analysis, and decision-making, enabling: Proactive maintenance Predictive analytics Remote monitoring By streamlining operations and ensuring compliance, FDM enhances operational efficiency, reduces downtime, and improves asset reliability, ultimately leading to greater performance in industrial processes. FDM��s emphasis on predictive maintenance is particularly important in ensuring the long-term sustainability and success of industrial operations. For more information, explore the full report: https://shorturl.at/EJnzR Major companies operating in Global?Field Device Management Market are: General Electric Co Siemens AG ABB Ltd Emerson Electric Co Aveva Group Ltd Schneider Electric SE STMicroelectronics Inc Techno Systems Inc Semiconductor Components Industries LLC International Business Machines Corporation (IBM) #FieldDeviceManagement #IndustrialAutomation #PredictiveMaintenance #TechInnovation #IndustrialEfficiency #RemoteMonitoring #TechAdvancements #MarketGrowth #OperationalExcellence #SensorsAndActuators

UiPath Agentic Automation Capabilities and Opportunities

UiPath Agentic Automation Capabilities and Opportunities

UiPath Agentic Automation Capabilities and OpportunitiesDianaGray10

?

Learn what UiPath Agentic Automation capabilities are and how you can empower your agents with dynamic decision making. In this session we will cover these topics: What do we mean by Agents Components of Agents Agentic Automation capabilities What Agentic automation delivers and AI Tools Identifying Agent opportunities ? If you have any questions or feedback, please refer to the "Women in Automation 2025" dedicated Forum thread. You can find there extra details and updates.

AIXMOOC 2.3 - Modelli di reti neurali con esperimenti di addestramento

AIXMOOC 2.3 - Modelli di reti neurali con esperimenti di addestramento

AIXMOOC 2.3 - Modelli di reti neurali con esperimenti di addestramentoAlessandro Bogliolo

?

UiPath Automation Developer Associate Training Series 2025 - Session 2

UiPath Automation Developer Associate Training Series 2025 - Session 2

UiPath Automation Developer Associate Training Series 2025 - Session 2DianaGray10

?

Integrated Operating Window - A Gateway to PM

Integrated Operating Window - A Gateway to PM

Integrated Operating Window - A Gateway to PMFarhan Tariq

?

30B Images and Counting: Scaling Canva's Content-Understanding Pipelines by K...

30B Images and Counting: Scaling Canva's Content-Understanding Pipelines by K...

30B Images and Counting: Scaling Canva's Content-Understanding Pipelines by K...ScyllaDB

?

[Webinar] Scaling Made Simple: Getting Started with No-Code Web Apps

[Webinar] Scaling Made Simple: Getting Started with No-Code Web Apps

[Webinar] Scaling Made Simple: Getting Started with No-Code Web AppsSafe Software

?

Early Adopter's Guide to AI Moderation (Preview)

Early Adopter's Guide to AI Moderation (Preview)

Early Adopter's Guide to AI Moderation (Preview)nick896721

?

Q4_TLE-7-Lesson-6-Week-6.pptx 4th quarter

Q4_TLE-7-Lesson-6-Week-6.pptx 4th quarter

Q4_TLE-7-Lesson-6-Week-6.pptx 4th quarterMariaBarbaraPaglinaw

?

Computational Photography: How Technology is Changing Way We Capture the World

Computational Photography: How Technology is Changing Way We Capture the World

Computational Photography: How Technology is Changing Way We Capture the WorldHusseinMalikMammadli

?

The Future of Repair: Transparent and Incremental by Botond De?nes

The Future of Repair: Transparent and Incremental by Botond De?nes

The Future of Repair: Transparent and Incremental by Botond De?nesScyllaDB

?

DAO UTokyo 2025 DLT mass adoption case studies IBM Tsuyoshi Hirayama (ƽɽ��)

DAO UTokyo 2025 DLT mass adoption case studies IBM Tsuyoshi Hirayama (ƽɽ��)

DAO UTokyo 2025 DLT mass adoption case studies IBM Tsuyoshi Hirayama (ƽɽ��)Tsuyoshi Hirayama

?

DevNexus - Building 10x Development Organizations.pdf

DevNexus - Building 10x Development Organizations.pdf

DevNexus - Building 10x Development Organizations.pdfJustin Reock

?

Gojek Clone Multi-Service Super App.pptx

Gojek Clone Multi-Service Super App.pptx

Gojek Clone Multi-Service Super App.pptxV3cube

?

EaseUS Partition Master Crack 2025 + Serial Key

EaseUS Partition Master Crack 2025 + Serial Key

EaseUS Partition Master Crack 2025 + Serial Keykherorpacca127

?

Both Feet on the Ground - Generative Artificial Intelligence

Both Feet on the Ground - Generative Artificial Intelligence

Both Feet on the Ground - Generative Artificial IntelligencePete Nieminen

?

Brave Browser Crack 1.45.133 Activated 2025

Brave Browser Crack 1.45.133 Activated 2025

Brave Browser Crack 1.45.133 Activated 2025kherorpacca00126

?

L01 Introduction to Nanoindentation - What is hardness

L01 Introduction to Nanoindentation - What is hardness

L01 Introduction to Nanoindentation - What is hardnessRostislavDaniel

?

How Discord Indexes Trillions of Messages: Scaling Search Infrastructure by V...

How Discord Indexes Trillions of Messages: Scaling Search Infrastructure by V...

How Discord Indexes Trillions of Messages: Scaling Search Infrastructure by V...ScyllaDB

?

Transform Your Future with Front-End Development Training

Transform Your Future with Front-End Development Training

Transform Your Future with Front-End Development TrainingVtechlabs

?

Field Device Management Market Report 2030 - TechSci Research

Field Device Management Market Report 2030 - TechSci Research

Field Device Management Market Report 2030 - TechSci ResearchVipin Mishra

?

UiPath Agentic Automation Capabilities and Opportunities

UiPath Agentic Automation Capabilities and Opportunities

UiPath Agentic Automation Capabilities and OpportunitiesDianaGray10

?

AIXMOOC 2.3 - Modelli di reti neurali con esperimenti di addestramento

AIXMOOC 2.3 - Modelli di reti neurali con esperimenti di addestramento

AIXMOOC 2.3 - Modelli di reti neurali con esperimenti di addestramentoAlessandro Bogliolo

?

ISO mdoc 101 session presented to Internet Identity Workshop IIW (IIWXXXIX)

1. ISO mdoc 101 Oliver Terbu (MATTR), Andrew Hughes (FaceTec)

2. - Work started by ISO/IEC JTC1/SC17 WG10 in 2017 - Being developed by WG10 and WG4 - ISO/IEC 18013-5:2021 - Originally defined for mobile driving license (mDL) + presentation over ��local radios�� - But mdocs are defined as a digital credential format for any credential types (i.e. doctypes) - Scope - mdoc data model (for all mdocs) - mDL doctype and namespaces - Transaction protocols for close proximity (attended) use cases (for all mdocs) - Device engagement - Device retrieval - Server retrieval - Security mechanisms (for all mdocs) - The mDL PKI and X.509 certificate profiles - Privacy recommendations (for all mdocs) - ISO/IEC 18013-7:2024 - Defines online retrieval mechanisms (for all mdocs) - OpenID4VP - RestAPI ISO mobile documents (mdocs)

3. - ISO/IEC 23220 series (for all mdocs) - Extracts general concepts and protocols from ISO/IEC 18013-5 and ISO/IEC TS 18013-7 - Remains backwards compatible with ISO/IEC 18013-5 and ISO/IEC TS 18013-7 - Defines how to create specific profiles of mdocs for new document types, e.g., mVRC, micov, PhotoID, PID - Adds additional features such as credential holder verification, reader engagement, �� - Several parts of ISO/IEC 23220 are being defined - 23220-1: Generic system architectures of mobile eID systems - 23220-2: Common namespaces - 23220-3: Building blocks for issuance (data structures, backend to backend protocol, OID4VCI profile, ��) - 23220-4: Building blocks for presentation (close proximity and online) - 23220-5: Trust models and confidence levels - 23220-6: Certification of trustworthiness - 23220-7: Doctype registry ISO mobile documents (mdocs)

4. - 2017: Formal New Work Item Proposal acceptance and launch of the standardization project. - April 2018: 1st Committee Draft (CD) of ISO/IEC 18013-5 for international ballot/commenting. - October 2018: 1st mDL interoperability event in Okayama, Japan, based on the 1st CD draft. - December 2018: Austroads, AAMVA, and EReg endorse the international standardization of mDLs at their Global Summit in Melbourne, Australia. - March 2019: 2nd CD draft for ballot, incorporating the learnings from the first test event. - August 2019: America��s first mDL test event at the AAMVA AIC, based on the 2nd CD draft. - November 2019: Australia��s first mDL test event in Brisbane, Australia, based on the proposed text for the Draft International Standard (DIS). - April 2020: Approval of the DIS version of ISO/IEC 18013-5. - August 2021: Approval of the Final Draft International Standard version ISO/IEC 18013-5. - September 2021: Publication of the final International Standard ISO/IEC 18013-5:2021. - October 2021: European test event in Rotterdam, The Netherlands. - November 2021: American test event in Houston, TX, USA. - May 2022: 6th international test event in Louisville, KY, USA. - December 2022: 7th international test event in Brisbane, QLD, Australia. - August 2023: First online-only event for testing ISO/IEC TS 18013-7. - December 2023: 9th in-person international test event in Paris, France. - October 2024: Publication of the final Technical Specification ISO/IEC TS 18013-7:2024. - October 2024: 10th in-person international test event in Sydney, Australia. Key Activities and Milestones achieved by (Members of) ISO/IEC JTC1/SC17 WG10 and WG4

5. mdoc interfaces

6. mdoc PKI https://learn.mattr.global/docs/formats/mdocs - Issuing Authority Certificate Authority (IACA) certificate - Root certificate of issuer - Distributed out-of-band - Intermediate Certificates - Not directly supported by mDL certificate profiles - Document Signer Certificate (DSC) - End-entity certificate that signs MSOs - Included in MSO - Mobile Security Object (MSO) - Signed by DSC

7. https://learn.mattr.global/docs/formats/mdocs Verified Issuing Authority Certificate Authority List (VICAL ) - Published by Digital Trust Service (DTS) systems to proxy and simplify trust, e.g., AAMVA, Austroads - A list of trusted IACAs for specific credential types signed by the VICAL provider - Verifier needs to trust VICAL provider instead of each issuer individually

8. mdoc close proximity presentation flow

9. �� Holder and verifier engage by scanning a QR code or NFC to establish an encrypted session to secure a wireless data transfer protocol (e.g. BLE/WiFi-Aware/NFC) �� When the session is being or was established, the verifier sends one or more presentation requests to ask the holder to present mdocs with specific namespaces/data elements �� The presentation request optionally uses reader authentication which allows to authenticate the verifier to the holder �� The mdoc presentation is then sent via the same secure session to via the chosen wireless transfer protocol to the verifier �� Finally, the verifier receives the presentation and verifies mdoc and issuer data authentication https://learn.mattr.global/docs/formats/mdocs

10. mdoc data model (��credentials��) - mdoc credentials encoded as CBOR structures - Described by the following information - Mobile Security Object (MSO) - Uses COSE_Sign1 - Signed by issuing authority (DSC) - Contains document signer certificate (DSC) for issuer data authentication - Contains salted hashes of issuer signed namespaces/data elements to support selective disclosure and preserve privacy - Document type (credential type), e.g., org.iso.18013.5.1.mdl - Validity info of the MSO - Device key for mdoc authentication - Metadata - Other authorized keys - �� - A number of namespaces - Actual namespace data values - External to the MSO - Contains data element identifiers, e.g., firstname and data element values https://learn.mattr.global/docs/formats/mdocs

11. mdoc data model (��presentations��) - mdoc presentations encoded as CBOR structures - Described by the following information - Mobile Security Object (MSO) - Selectively disclosed issuer signed namespaces, i.e., data element identifiers and data element values including salts, for issuer data authentication - Device auth (COSE_Sign1 or COSE_Mac) for mdoc authentication to prevent replay - Optionally, selectively disclosed device signed namespaces https://learn.mattr.global/docs/formats/mdocs

12. mdoc data model

13. Flight path for mdoc specs ISO has a formal publication process that includes ongoing maintenance - Once a standard is published, an amendment (small changes) or revision (any/all changes) can be started What are the WGs working on now? - SC 17/WG 10 is working on revisions for both 18013-5 and 18013-7 - 18013-5 Revision will correct bugs, adds a new device request structure (origin info, hints from reader to mdoc for how to handle complex doc requests, purpose hints, conditionality) - 18013-7 Revision will add support for the W3C browser API in anticipation of standardization Still discussing - On-device holder-credential-binding (aka authorization to present an mdoc) Expect revised versions in 2025

14. Why mdocs? - In addition to properties of other credential formats has the following benefits - Global ISO standard - Well-defined end-to-end specification for close-proximity and online transmission of digital credentials to ensure interoperability - Battle-tested during a lot of interop events - Adopted by government use cases - mDL DHS/TSA pilots in the US - mDL Australia - Alignment with ICAO DTC in progress - Referenced by the EU eIDAS 2.0 Implementing Acts - �� - NIST and ��EU��-approved cryptography (NIST curves, Brainpool etc.) - CBOR is optimized for close-proximity protocols, e.g., parsing of data structures - Supports selective disclosure - ��