Preface

• Who this book is for
• What this book covers
• To get the most out of this book
• Conventions used
• Get in touch
• Reviews
• Share Your Thoughts

1. Part 1 - Digital Identity Era: Then

2. Chapter 1: The History of Digital Identity FREE CHAPTER

• What is digital identity?
• The evolution of digital identities
• Institutional databases
• ACLs
• Public key cryptography – the origin of secure public networks
• The World Wide Web
• Social networks – Identity 2.0
• Biometric identity
• IoT and the identity of things
• Blockchain – a new model for identity
• Summary

3. Chapter 2: Identity Management Versus Access Management

• What is identity management?
• What is meant by access?
• Access management
• The pitfalls
• Summary

4. Part 2 - Digital Identity Era: Now

5. Chapter 3: IAM Best Practices

• An overview of the service components of an IAM system
• Building a comprehensive IAM strategy
• User lifecycle management and secure data-sharing practices
• Secure authentication practices
• Security token-based authentication
• Access control and authorization
• Secure data-sharing practices
• Continuous monitoring and auditing
• User awareness and training
• Compliance and regulatory considerations
• Incident response and recovery and processes for regular evaluation
• Regular evaluation and improvement
• Summary

6. Chapter 4: Trust Anchors/Sources of Truth and Their Importance

• Sources of truth
• Enhancing identity assurance
• Web of trust
• Enhancing the WoT model through blockchain infrastructure
• Summary

7. Chapter 5: Historical Source of Authority

• Practical uses of historical sources of authority
• Controlling access to the source of authority
• ACLs
• Securing access to sources of truth with ACLs
• Best practices for securing data sources with ACLs
• Cons of using historical sources of truth for verification of identity data
• Summary

8. Chapter 6: The Relationship between Trust and Risk

• The impact of trust and risk
• Risks arising from compromised identity
• Attacks made on online identity break trust
• Local network risks
• Online surveillance
• Browser-based web risks
• Social engineering
• Risk management principles and assessments
• Risk assessment
• Risk mitigation strategies
• Risk and trust management roadmap
• Risk management frameworks for identity networks
• Summary

9. Chapter 7: Informed Consent and Why It Matters

• What is informed consent?
• Educating the user about informed consent
• Understanding informed consent
• The re-purposed data problem
• Privacy by design
• The Personal Information Protection and Electronic Documents Act (PIPEDA)
• Alternatives to consent
• The future of privacy
• Summary

10. Chapter 8: IAM – the Security Perspective

• IAM security fundamentals
• IAM principals
• Access control models and frameworks
• Identity governance and administration
• Identity lifecycle management
• Threat detection and IAM security
• Security information and event management
• Repercussions of a weak SIEM system
• Compliance and regulatory considerations
• Emerging technologies in IAM security
• Challenges and future directions in IAM security
• Summary

11. Part 3 - Digital Identity Era: The Near Future

12. Chapter 9: Self-Sovereign Identity

• Introduction to SSI
• Cryptography in SSI
• Blockchain and DLT in SSI
• DIDs
• The SSI ecosystem
• SSI interoperability
• SSI and regulatory compliance
• Future trends in SSI
• SSI and blockchain scalability
• Use of tokens in SSI
• SSI and identity in IoT
• Ethical and philosophical implications of SSI
• Challenges and risks in SSI implementation
• Summary

13. Chapter 10: Privacy by Design in the SSI Space

• PbD in SSI
• The value of PbD
• PbD frameworks
• User-centric privacy controls
• Security best practices
• Threats and mitigations
• Summary

14. Chapter 11: Relationship between DIDs and SSI

• DIDs as the backbone of SSI
• DIDs and SSI relationship basics
• Emerging DID methods and innovations
• Distributed identity issuers and verifiers
• Enhancing privacy and security
• Technological challenges and future directions
• Summary

15. Chapter 12: Protocols and Standards – DID Standards

• The need for standards
• What do standards and protocols entail?
• DID standards and protocols
• W3C DID standards
• Privacy by design
• Verifiable credentials
• Summary

16. Chapter 13: DID Authentication

• Traditional authentication
• DID authentication protocols
• Implementing DID authentication
• Security and privacy considerations
• Summary

17. Chapter 14: Identity Verification

• Historical evolution of identity verification
• Challenges in traditional identity verification
• Technological innovations in identity verification
• Digital ID verification is a war on identity theft
• Biometric identity verification
• Blockchain and identity verification
• Summary

18. Part 4 - Digital Identity Era: A Probabilistic Future

19. Chapter 15: Biometrics Security in Distributed Identity Management

• Principles of biometric security in DIAM
• Securing biometrics with blockchain
• Mechanisms for biometric authentication
• Real-world applications of biometrics in DIAM
• Emerging technologies and trends in biometrics
• Summary

20. Index

• Why subscribe?

21. Other Books You May Enjoy

• Packt is searching for authors like you
• Share Your Thoughts
• Download a free PDF copy of this book