<meta charset="UTF-8">
<meta name="robots" content="noindex,nofollow" />
<link rel="shortcut icon" type="image/x-icon" href="/wiki/images/favicon.ico" />
<link rel="icon" type="image/x-icon" href="/wiki/images/favicon.ico" />

<pre>
!!! Overview
Introduced in [2004|Year 2004], as I recall, by [Kim Cameron] [{$pagename}] is still the Strategic guidelines that should be used to determine if [Digital Identity] systems are &quot;there yet&quot;.

[{Image src='The Seven Laws Of Identity/7_laws_of_identity.jpg' caption='The Seven Laws Of Identity' align=left width=1024 height=768 style='font-size: 120%}]

!! 1 [Law of User Control and Consent]
User Control and [Consent]: [Identity|Digital Identity] systems must only reveal information identifying a user with the user's consent.

!! 2 [Law of Minimal Disclosure For A Constrained Use]
Minimal Disclosure for a Constrained Use: The identity system must disclose the least identifying information possible, as this is the most stable, long-term solution.

!! 3 [Law of Justifiable Parties]
Justifiable Parties: [Identity|Digital Identity] systems must be designed so the disclosure of identifying information is limited to parties having a necessary and justifiable place in a given identity relationship.

!! 4 [Law of Directed Identity] 
A universal [identity|Digital Identity] system must support both &quot;omni-directional&quot; identifiers for use by public entities and &quot;uni-directional&quot; identifiers for use by private entities, thus facilitating discovery while preventing unnecessary release of correlation handles.

!! 5 [Law of Pluralism of Operators and Technologies]
 A universal [identity|Digital Identity] solution must utilize and enable the interoperation of multiple identity technologies run by multiple [identity providers|Identity Provider (IDP)].

!! 6 [Law of Human Integration]
[Identity|Digital Identity] systems must define the human user to be a component of the distributed system, integrated through unambiguous human-machine communication mechanisms offering protection against identity attacks.

!! 7 [Law of Consistent Experience Across Contexts]
The unifying [identity|Digital Identity] metasystem must guarantee its users a simple, consistent experience while enabling separation of [contexts] through multiple operators and technologies.

!! Conclusion
Those of us who work on or with [identity|Digital Identity] systems need to obey the [{$pagename}]. Otherwise, we create a wake of reinforcing side effects that eventually undermine all resulting technology. The result is similar to what would happen if civil engineers were to flaunt the law of gravity. By following them we can build a unifying [identity|Digital Identity] metasystem that is universally accepted and enduring.

!! Full Paper on [{$pagename}]
* [The Seven Laws Of Identity/TheLawsOfIdentity.pdf]

!! More Information
There might be more information for this subject on one of the following:
[{ReferringPagesPlugin before='*' after='\n' }] 
----
* [#1] - [MSDN Article on Microsoft's Vision for an Identity Metasystem|http://msdn2.microsoft.com/en-us/library/ms996422.aspx|target='_blank'] - based on information obtained 2013-04-10
* [#2] - [From Kim Cameron's Blog|http://www.identityblog.com/?p=352|target='_blank'] - based on information obtained 2013-04-10
</pre>