national digital id platform technical forum
TRANSCRIPT
Disclaimer
• This technical design is based on "Digital ID Platform" conceptual presentation by Dr. Anuchit Anuchitanukul on September 8, 2017 at Bank of Thailand.
• The filnal "Digital ID Platform" design may be different from this design which the technical team proposes in this presentation.
Layers of Architecture
Business
Data
System (Application)
Technology
Business: Main Flow
Business: UID Management
Business: Other Flows
• Juristic Person Management
•Delegation Management
•Delegation Validation
Business: Key Non Functional Requirement
•No Privacy Risk
• Performance:• Throughput > 1,000 TPS, Response Time < 500ms
• Built-in Key Management
• Scalability
•Non-repudiation
• Traceability
•Abuse Prevention (e.g. Denial of Service)
Data Architecture
Identity Provider (IdP)
ID
Calling Name
Short Name
URI
Public Key
LOA
Status
Authoritative Source (AS)
ID
Calling Name
Short Name
URI
Public Key
Status
Service Catalog Tuple
AS ID
Service ID
URI
Public Key
Status
Required LOA
Request
ID
RP ID (opt.)
IdP Response List (opt.)
Authen Complete Flag
AS Service List (opt.)
AS Response List (opt.)
Request Status
Time Stamp
TTL
Signature
UID
UID Section
Namespace/Proxy Type
ID
SignedByList
IdP Association Section
Permission Script List
Restriction Condition
System Architecture
•Decentralized & Distributed System
• Transaction Non-repudiation
• Transaction Privacy
Thank You