| 4.4 Access Control
03. Online Wallet | |
|---|
| 4.4.03. Online Wallet. | | 1. Approved people are being assigned an online wallet that is part of the block chain technology that is used for secure transactions. An approved person with an online wallet will never need to login to a web site again - their personal online wallet contains all the credentials needed to do it for them. Block chain as used by bit coins and other digitial currencies has inherent replicated encryption that means data cannot be stolen and cannot be lost. | | 2. An online wallet is a secure encrypted personal web page that may be bookmarked as a favourite on any personal computing device. Nobody else should ever see this personal web page that may be customised to match a persons evolving business requirements. Your online wallet acts like a hardware dongle in that it is something you have that nobody else can steal. | | 3. The mission of your online wallet is to eliminate more than 90% of all login requests and to retain all login passwords in a safe and secure environment that cannot be accessed by other parties. All communicated and stored data is encrypted and no readable data is stored on a local computer that may be stolen or lost. | | 4. Your online wallet is also your personal welcome web page - the page you see after authentication. Extensive configuration facilities using the whole page with applicable icons provide a very clickable user interface. The voice user interface, demands a unique label for each link. |
| 2. Glossary. | | Online Wallet was known as the post-authentication welcome page, it is now customised and unique to each approved person. | | Token is a link or button in your online wallet where a click pops up the applicable web page with minimum login disruption. |
| 3. Private Tokens. | | 1. The use of bookmarked links in a browser will be stolen and sold to other parties - they will be copied and will be used against you. A browser with no bookmarked favourite links is faster, safer and will leek less data to other parties. | | 2. You online wallet provides tokens as an equivalent bookmarked favourite link mechanism that is encrypted, cannot be stolen and cannot be lost. In addition, because your online wallet is personal, it provides a unique identity to web sites in the same way as login has done for years. | | 3. For example; if you wish to login to your Amazon account, your online wallet will do it for you. Edition 1.0 uses a click user interface while edition 2.0 adds a voice user interface. | | 4. Access control to functions and data is provided by only permitting links that the approved person may use - every token shown is evidence that access control has been granted. |
| 4. Deployment. | | 1. Block chain technology delivers very high quality replicated encryption that eliminates the threat of data being stolen. Cookies and local storage add an extra verification factor to identify a person by how they use their private computing device. People who do not use a provide computing device may not qualify to be assigned an online wallet. | | 2. Each persons online wallet is full of tokens that grant them access to specific web sites and web pages. Private web pages that cannot be accessed using a normal browser address may be configured to grant known people to known web pages. | | 3. A one-time configuration of a persons local computing device is needed - an access code is used with a personal web page to get things started - this is time-limited. Once a person has viewed their personal online wallet, they shoud never need to use an access code again until they get another computing device. If a persons behaviour changes then a security verification cycle may be requested after cookies have been deleted, a new browser installed, a new operating system, a new screen or unusual time-of-day. | | 4. Eliza encrypts every variable length token field as a code using different methods and inserts field and record terminating codes - the entire file as a long string is scrambled and hidden in an image. A hash of the file is hidden in the file so if the file is changed in any way, a different replicated file from a different data center will be used. |
| 5. Privacy. | | 1. Agencies may demand you disclose your passwords, but an agency cannot demand you disclose a password that you do not know. Eliza is your artificial intelligent assistant that will assign and manage passwords on your behalf, but your online wallet does not have facilities to disclose such login details. A person who has registered with more than 100 different web sites needs Eliza to manage a unique strong password for each web site. A person with an online wallet will never need to know a single password, will never be able to disclose a password and will never have a password stolen. | | 2. Ask Eliza; it is practical to ask Eliza "what is my ebay password" and Eliza will reply with a very long string of characters. However, Eliza has been taught that once a password has been disclosed, it should be renewed with a very different password - this may take a few moments. | | 3. Today, people are living with 100 or more registered web site passwords, but in the next few years, that should increase to more than 1000 registered web sites. Electricity, gas, water, TV, rates, phone, mobile, Internet, domains, banks, credit cards, ISA, savings, investments, tax, VAT, insurances, mortgage, pension, private accounts, news, games, wellbeing, holidays, garages, food, retail, books, computers, gardnerx, deliveries, taxis, builders, restaurants, pubs, sports, medical, dentist, optician, health, doctor,... | | 4. It is strongly recommended that a unique email address is used for each token - it is reasonable to have 1000 different email prefixes to the same personal email suffix or domain. |
| 6. What Did I Do. | | 1. Your online wallet is continually monitored to eliminate criminal behaviour. Every link clicked is recorded as evidence with the date and time - the evidence chain is read-only and cannot be changed in any way. |
| 7. Token (TOK). | | 01. Token key. | | 02. Person key. | | 03. Sequence Number. | | 04. Status, active or hidden. | | 05. Name as Label. | | 06. Image as Icon. | | 07. URL to web page. | | 08. User Name or account. | | 09. Email Prefix. | | 10. Email Suffix as domain. | | 11. Password. | | 12. Password style: n20, x8, auto. | | 13. Comment. |
| 8. Eliza assign password. | | 1. Eliza will assign a password when registering a web site and encrypt that password so nobody will ever know what the password is. |
| Document Control: | | 1. Document Title: Online Wallet. | | 2. Reference: 164403. | | 3. Keywords: ITIL Online Wallet. | | 4. Description: Online Wallet. | | 5. Privacy: Public education service as a benefit to humanity. | | 6. Issued: 13 Feb 2017. | | 7. Edition: 2.2. |
|
|