Identity Rights Agreements

Proposed Identity Rights Matrix
Seven icons are needed with this matrix

Each icon points to a document that describes the sharing capabilities in detail, perhaps even including special cases for certain types of data (such as credit card numbers, etc.).

This document could be anything from XML to a Word doc (or better, an OpenOffice .odt document) as both sides simply digitally sign and date a (SHA1) hash of this document as part of their agreement to its terms.

Since these documents are stable (occasionally versioned as the Creative Commons licenses are, but old versions archived and accessible) from the signed hash one can later prove what document was agreed to.

While this proof may provide legal leverage, reputation metrics will be the key. Reputation servers will collect proofs that a service provider (RP) signed an IRA and didn't abide by its requirements, and good user agents will look up and display these reputation metrics to a person when being confronted with requests for information. So sites will have a strong incentive to behave well and earn the equivalent of a Good Housekeeping Seal of Approval.