ID-Legal

Participation
If you would like to participate in the work of ID-Legal please join the mailing list by following this link.

NEXT CALLS
Call details: Dedicated Dial-In Number: 1(309)946-5255  Access Code:659714


 * Thursday 12/11/08 4pm EST, 1pm PST - ID-Legal 12-11-08
 * Monday 11/10/08 at IIW - Notes from IIW in November
 * Thursday 10/09/08 2PM PDT - 2nd call building from Monday's goof up ID-Legal 10-09-08
 * Monday 10/06/08 4:00 PM PDT - Figuring out Next Steps for Jan Conference ID-Legal 10-06-08
 * Thurs 08/28/08 10:00 AM PDT - IIW Legal: Review Charter and Articulation ID-Legal 08-28-08
 * Thurs 07/18/08 10:00 AM - IIW Legal: Goal Review, Potential Partners ID-Legal 07-18-08
 * Tue 07/08/08 10:00 AM - IIW Legal: People and Groups ID-Legal 07-08-08
 * Tue 07/01/08 10:00 AM - IIW Legal: Setting Goals, Review Draft Description   ID-Legal 07-01-08 Call

2009


 * Thurs 1/8/09 4pm EST, 1pm PST - ID-Legal 1-8-09
 * Thurs 2/5/09 4pm EST, 1pm PST - ID-Legal 2-5-09
 * Thurs 3/5/09 4pm EST, 1pm PST - ID-Legal 3-5-09
 * Thurs 4/2/09 4pm EST, 1pm PST - ID-Legal 4-2-09
 * Tuesday 5/18/09 at IIW

Conference Planning
ID-Legal Conf Plan Outline

Draft Statement of Purpose
ID-Legal conference brings together identity technologists and lawyers, academics and & public policy experts to explore and map the gap between the two fields.

This mapping will :


 * Enable drafting of better regulation and policy being made to support safe use of online and digital identity.
 * Enable design of improved identity technologies that minimize risks, maximize protections and support policy based remedies.
 * Ensure consideration of the user experience of online and digital identity so that people have realistic expectations about the legal implications of their use.

Interesting areas of intersection might be:

This gathering is not about "finding solutions" to the above questions; the questions are big and will be solved by their respective communities. ID-Legal is about bringing the communities together so that, as they go forward with work on their respective problems, they have a common understanding of issues and a shared background of knowledge as context for their work.

We hope through shared preparation to establish common ground; at the initial ID-Legal meeting we hope to surface issues and document a clear, shared understanding of the gaps between identity technologists and legal and policy professionals dealing with identity issues.

We also see articulating from this map a core set of questions that can serve as the basis of future cross disciplinary dialogue working towards answers.

An example of questions that fall into the gap between the two fields are:
 * Who adjudicates disputes in matters of online and digital identity and privacy?
 * What happens when disputes involve multiple jurisdictions?

Traditionally the solutions in the legal world and in the technical world have been very different; it is becoming evident that there needs to be a shared understanding of issues in order to make progress in addressing them.

Information technology and the law have not been designed for each other. To cite just one example, technologists who did not understand the law of signatures designed an artifact called a "digital signature" which had few of the legal properties of a pen-and-ink signature; the result was a set of changes in the law of signatures to accommodate the new artifact. But the "digital signature" is neither technically nor legally an improvement on the old pen-and-ink signature. It places much stricter liability burdens on the signer (or presumed signer) than the pen-and-ink signature did, and it provides fewer due-process protections for those whose signatures are forged.

Technologists are in the process of inventing artifacts called "digital identities". These seem likely to take on some of the properties of legal persons online. But they are not legal persons, and they have not (yet) been designed to keep real persons who come in contact with them safe.

Digital and online identities, like robots, can be dangerous to real people. Isaac Asimov envisioned robots who would live by (that is, be compelled by their programming to obey) laws designed to keep humans safe.

The purpose of the Legal IIW workshop is to bring lawyers and technologists together to understand how the law and technology of digital and online identity interact, so that digital and online identity and the law can evolve together in ways that keep humans safe.

There is some urgency to the task. Social networks are aggregating large amounts of personal data, and pressure is building on these networks to open their databases in the name of "data portability". ISPs and telecommunications providers are carrying huge volumes of conversations whose status with respect to government surveillance, carrier surveillance, and subpoena is unclear. Data moves back and forth across jurisdictional and national boundaries whose rules for protection of data (and even protection of persons) are unclear, or clear and incompatible. Location-aware handheld devices are tagging huge quantities of information with geographic data, allowing detailed reconstruction of many individuals' daily lives. It would be good to optimize both technology and the law to make the use of digital and online identity safe for humans before we have to learn where the hazards are the hard way - by experiencing disasters of privacy or fraud.

The law, as usual, lags behind the technology - but as it works to clean up the mess disruptive technologies have caused, it undermines the assumptions made by the technologists and thereby creates uncertainty both in technology markets and in the people who use technology. The technology, as usual, moves forward without much consideration of how it will change the assumptions on which the law rests.

Draft Event Description
There is a lack of cross pollination between the legal community and technical community innovating digital identity systems.


 * Laws are not in sync with technology; this is creating friction
 * Technology when first released is not in synch with law; this puts pressure both on the technology and on the law, and both evolve
 * New Laws are coming out which create uncertainty in the technology markets; this can delay important advances in identity and privacy technology.

We need to create a space for collaboration in order to understand the answers to questions like these:
 * What does the law really think 'an identity' is (this may differ depending on context: e.g. Homeland Security/travel vs financial vs criminal)
 * What do technologists mean when they use language describing identity; what technology are they building to support this understanding.

"THE LAW" needs to needs to evolve; Daniel Solove's thesis is that the law needs to carefully evolve to handle notions of reputations and identity in the online world.

Individuals and Businesses have a joint interest in an identity system that allocates risk and rewards in a socially optimal way.

An example where this kind of early collaboration would have been helpful is the PKI this can be written into a better paragraph Technologists take things at face value
 * previous wave of badness (post PKC) digital signature ( wouldn't it be cool if we could use them instead of paper ones)
 * never bothered to ask what a 'signature' was from the point of view of the law - shape of the ink on the paper - performance of the act - intention to commit oneself to the contract

In the end Techies and Lawyers must make this whole environment that normal people can live in - they have not been talking to each other re: the problems let alone working better together to help regular people.

Potential Recommended Pre-Reading
Article (link), where published, who wrote it - who recommended it. sentence about why.

WHO

 * Governmental entitles (fed, state, local, courts) & politicians
 * DHS (Homeland Security) - some good folks
 * Lawyers and staff for decision makers and the law (in congress, governors and state level), Barak and MaCain staff
 * Commerce Committee
 * NSA (Stewart Baker)
 * Law Enforcement
 * NCCUSL (Nat'l Conf Commission on Unified State Laws)
 * NCSL (Nat'l Conf State Legislators)
 * ALEC (Amer Legis Exchange Council)


 * Business and Corporate interests
 * MySpace, Facebook
 * Google, Yahoo, etc.
 * Intel


 * Universities, professors who have published papers, and law clinics
 * Solove
 * Susan Crawford
 * Michael Froomkin - U Florida
 * Beth Novak
 * Holly Tolle and Ray (?)


 * Consumer interest groups
 * Consumer's Union
 * National Consumer Law Center
 * Privacy Coalition people
 * EPIC


 * Professional associations
 * State and National Bar Assocs
 * CyberLaw Committees of Bar Associations - and chairs
 * ACM
 * IEEE
 * Private Investigator Lobbying groups


 * Related interests
 * 22y olds - interesting Big learning curve
 * Direct Marketing Assn.
 * US Chamber of Commerce


 * International Interests
 * Prime Project? (part of 7th framework, ITU)
 * Cisco & Joe Aledef (also International)
 * International Chamber of Commerce


 * RELEVANT Conferences
 * IIW
 * CFP
 * (others from call?)

Eventually is Quick - in terms of going internationally

International Businesses are already that way.


 * Entities from economic side are already dealing with it.

By Proxy - UN folks from different initiatives, those thinking about the entire world - surrogate.

Institutional Co-Conveners?

 * MIT Media Lab - called for a dialogue about id bill of rights
 * Careful of Gov. conveners - restrictions
 * Common scaffolding - survey type thing - set of protocols. Blind men examining the elephant - handiness
 * Different Languages coming together
 * Framework for them to invite a variety - more useful
 * Berkman
 * UN?
 * OECD - many initiatives going on

For Further Reading
Here are some pointers to papers on legal aspects of online identity that =JeffH has collected:

Bibliography: Legal Aspects of Online Identity

Links to Related Efforts
Here are a few more pages that might facilitate our future conversations. The first link is to the scenarios group.

Scenarios Group http://wiki.idcommons.net/index.php/Identity_Futures

Identipedia http://wiki.idcommons.net/index.php/Identipedia

Systemic Elements http://wiki.idcommons.net/index.php/Systemic_Elements

Inferred vs Actual - The evolution of policy http://wiki.idcommons.net/index.php/Inferred_Vs._Actual_-_The_evolution_of_policy

2008 Q1 Report Identity Rights http://wiki.idcommons.net/index.php/2008_Q1_Report_Identity_Rights

We're also related to Identity Rights Agreements group http://wiki.idcommons.net/index.php/Identity_Rights_Agreements_Charter

--- Logistical Details http://www.freeconference.com Login - ID-Legal PW:privacyonline