Disclaimer

• This technical design is based on "Digital ID Platform" conceptual presentation by Dr. Anuchit Anuchitanukul on September 8, 2017 at Bank of Thailand.

• The filnal "Digital ID Platform" design may be different from this design which the technical team proposes in this presentation.

Layers of Architecture

Business

Data

System (Application)

Technology

Business: Main Flow

Business: UID Management

Business: Other Flows

• Juristic Person Management

•Delegation Management

•Delegation Validation

Business: Key Non Functional Requirement

•No Privacy Risk

• Performance:• Throughput > 1,000 TPS, Response Time < 500ms

• Built-in Key Management

• Scalability

•Non-repudiation

• Traceability

•Abuse Prevention (e.g. Denial of Service)

Data Architecture

Identity Provider (IdP)

ID

Calling Name

Short Name

URI

Public Key

LOA

Status

Authoritative Source (AS)

ID

Calling Name

Short Name

URI

Public Key

Status

Service Catalog Tuple

AS ID

Service ID

URI

Public Key

Status

Required LOA

Request

ID

RP ID (opt.)

IdP Response List (opt.)

Authen Complete Flag

AS Service List (opt.)

AS Response List (opt.)

Request Status

Time Stamp

TTL

Signature

UID

UID Section

Namespace/Proxy Type

ID

SignedByList

IdP Association Section

Permission Script List

Restriction Condition

System Architecture

•Decentralized & Distributed System

• Transaction Non-repudiation

• Transaction Privacy

Thank You