{"id":59,"date":"2012-05-29T18:45:47","date_gmt":"2012-05-29T18:45:47","guid":{"rendered":"http:\/\/nicholasroy.net\/blog\/?p=59"},"modified":"2014-01-05T15:58:33","modified_gmt":"2014-01-05T15:58:33","slug":"an-idea-for-remote-proofing-and-incommon-silver","status":"publish","type":"post","link":"https:\/\/nicoleroy.net\/blog\/?p=59","title":{"rendered":"An Idea For Remote Proofing and InCommon Silver"},"content":{"rendered":"<p>The InCommon Silver <a title=\"InCommon Assurance Profiles\" href=\"http:\/\/www.incommon.org\/docs\/assurance\/IAP_V1.1.pdf\">assurance profile<\/a> has a section that allows for remote proofing of identity subjects. Many people I&#8217;ve asked about this are saving this section for &#8220;later&#8221; and aren&#8217;t going to try to do remote proofing to begin with. Someone said something to me the other day about the availability of notaries that makes me think this is possible to do in a not too terribly difficult way. Here&#8217;s the relevant section of the assurance profile:<\/p>\n<blockquote><p>4.2.2.4.3 Remote proofing<br \/>\n1. The RA shall establish the Subject\u2019s IdMS registration identity based on<br \/>\npossession of at least one valid government ID number (e.g., a driver\u2019s license or<br \/>\npassport) and either a second government ID number or financial account<br \/>\nnumber (e.g., checking account, savings account, loan or credit card) with<br \/>\nconfirmation via records of either number.<br \/>\n2. The RA verifies other information provided by the Subject using both of the ID<br \/>\nnumbers above through record checks either with the applicable agency or<br \/>\ninstitution or through credit bureaus or similar databases, and confirms that:<br \/>\nname, date of birth, and other personal information in records are on balance<br \/>\nconsistent with the application and sufficient to identify a unique individual. If<br \/>\nthis appears to be the case, the RA authorizes issuance of Credentials.<br \/>\n3. If the record checks do not confirm the Address of Record, it must be confirmed<br \/>\nas described in \u00a74.2.2.5 below.<\/p><\/blockquote>\n<p>Note that it says if you can&#8217;t confirm the information provided via record checks, you have to register the subject via the address of record. Everyone seems to be focusing on the technical problem of verifying the source document numbers via Equifax or other credit bureaus, and\/or state motor vehicle registries. I think people are so shocked by this requirement that they&#8217;re misdirected away from the critical pieces here:<\/p>\n<p>1) You only need to register the facts of the documents presented &#8211; you can do that via notaries public that are available free of charge for customers at all banks in the US.<\/p>\n<p>2) You can confirm the identity of the individual by delivery of a registration secret to an address of record. What is an address of record?<\/p>\n<p>Conveniently, section 4.2.2.5 (2)(b) says:<\/p>\n<blockquote><p>For an electronic Address of Record, the RA confirms the ability of the Subject to receive telephone communications at a telephone number or e-mail at an e-mail address.<\/p><\/blockquote>\n<p>So you can just e-mail them a short-lived registration bearer token after you receive their notarized paper form containing their identity documentation back. Can it really be that simple? \u00a0An idea for some legalese to include on the form (I am not a lawyer) might be:<\/p>\n<blockquote><p>I hereby declare that the e-mail address supplied on this form by me is a valid email address that is acceptable for use in official communications with me.\u00a0 I am the only person who has access to this email address.<\/p><\/blockquote>\n<p>Update: 5\/30\/2012: Thanks to Mark B. Jones for this interesting international tidbit on consular services and the notary function:\u00a0<a href=\"http:\/\/travel.state.gov\/law\/judicial\/judicial_2086.html\">http:\/\/travel.state.gov\/law\/judicial\/judicial_2086.html<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>The InCommon Silver assurance profile has a section that allows for remote proofing of identity subjects. Many people I&#8217;ve asked about this are saving this section for &#8220;later&#8221; and aren&#8217;t going to try to do remote proofing to begin with. Someone said something to me the other day about the availability of notaries that makes &hellip; <\/p>\n<p class=\"link-more\"><a href=\"https:\/\/nicoleroy.net\/blog\/?p=59\" class=\"more-link\">Continue reading<span class=\"screen-reader-text\"> &#8220;An Idea For Remote Proofing and InCommon Silver&#8221;<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[206,208],"tags":[62,88,61,68,91,90,89],"class_list":["post-59","post","type-post","status-publish","format-standard","hentry","category-identity-2","category-trust-2","tag-assurance","tag-identity-management","tag-incommon","tag-incommon-silver","tag-loa","tag-proofing","tag-registration"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p8dkOC-X","jetpack-related-posts":[],"_links":{"self":[{"href":"https:\/\/nicoleroy.net\/blog\/index.php?rest_route=\/wp\/v2\/posts\/59","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nicoleroy.net\/blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nicoleroy.net\/blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nicoleroy.net\/blog\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/nicoleroy.net\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=59"}],"version-history":[{"count":9,"href":"https:\/\/nicoleroy.net\/blog\/index.php?rest_route=\/wp\/v2\/posts\/59\/revisions"}],"predecessor-version":[{"id":261,"href":"https:\/\/nicoleroy.net\/blog\/index.php?rest_route=\/wp\/v2\/posts\/59\/revisions\/261"}],"wp:attachment":[{"href":"https:\/\/nicoleroy.net\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=59"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nicoleroy.net\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=59"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nicoleroy.net\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=59"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}