Trust framework

4min

Data sharing ecosystems rely on sustained technical trust, which a Trust Framework offers by enabling a "single connection for multiple access". These frameworks can be tailored for national, private, or enterprise trust needs and regardless of what model emerges, organisations require Trust capabilities in order to participate in Trust frameworks.

Defining access to data and services is essential for establishing trust, and Public Key Infrastructure (PKI) has played a significant role in technology's trust framework.

The establishment of trust involves defining who, what, and how data and services will be accessed.

  • Identity (Who): Defining the identity of the organization requesting data or services and verifying their authenticity
  • Authorization (What): Determining the scope of authorized access to specific data or services, and ensuring that only authorized data or services are accessed
  • Authentication (How): Securing the method of accessing the data or services

And the cornerstone of trust in technology has largely been established using Public Key Infrastructure (PKI)

  • Key Pairs: Data is encrypted using a public key and decrypted using a related private key, kept confidential.
  • Digital Certificates: Proves the identity of the public key holder. Protected by asymmetric cryptography.
  • Digital Signatures: Private keys used to sign digital certificates.
  • Certificate Authority: Trusted third-party organization responsible for creating, revoking, and distributing digital certificates



Establishing a Trust Framework creates a network where accredited participants can discover and connect with one another, resulting in a "single connection for multiple access" network effect.

  • Centralized trust infrastructure is established
    • Defines rules, processes, standards, and services to facilitate trusted connections between accredited participants.
  • Allows for a single connection for multiple access
    • The Trust Framework provides a secure and trustworthy environment for participants to interact with one another.
  • Consumer enjoy Discovery
    • Consumers can view all available providers within a specific ecosystem, enabling them to establish a technical relationship and access authorized data and services.
  • Providers benefit from Simplicity
    • By advertising their available services (such as payments, mortgages, account information) in one location, providers have a straightforward way of verifying the accreditation, trustworthiness, and authorization of entities they interact with.
  • Operating a Live Participant Directory
    • A centralized, continuously updated directory of accredited participants is maintained, providing a single location for verifying trust and revoking it as necessary.
      



Trust Framework
Trust Framework




Credit Cards as a Trust Framework

The concept of Trust Framework is not new and is often utilized in different industries. Credit cards, for instance, have been a prime example of a Trust Framework. In this case, both cardholders and merchants establish trust with a card network, which facilitates transactions without the need for a direct relationship.





Credit Cards x Open Banking
Credit Cards x Open Banking




Updated 25 Mar 2024
Doc contributor
Doc contributor
Did this page help you?
PREVIOUS
Data Provider Services
NEXT
Modelling an Ecosystem
Docs powered by Archbee