Friday, June 26, 2015

Agency requires recording and authentication of Intent or Accord

Those nine words represent a need that is very poorly delivered in today's world. I fear that while it is being less well delivered in Cyber Space, Things are going to make it far worse. In the current world our accord is often recorded by our signing and dating a document, and more recently scribbling onto the small screen of proffered device. Authentication is rarely if ever attempted. Repudiation is thus, in most cases, a trivial activity; "That isn't my signature/scribble".

Intentification, a neologism, describes the act or process of determining someone or something's intent.

In Cyber Space this is going to become more important, for in the near future our identity and location will be known to a very high degree of confidence. Our mere presence at the location where an event was triggered will likely be misused as proof our intent to trigger the event.

A current example are the pocket calls that we all have made. We should all be aware that having an International Phone Number as the number most likely to be used by our phones in such pocket calls can be a costly experience. Mobile phone operators quite happily bill us for such pocket calls, they do not care if we intended to make them or not.

The Law has addressed our ability to regain control of contracts signed remotely, the Consumer Credit Act gives us a cooling off period, but the act does not appear to address transactions under a previously agreed contract. "I did not switch on the Under Floor Heating over the summer, my Smart Home did!"

In the future Things will be able to trigger many more costly and perhaps more dangerous events, this may be as a result of accident, duress, mistake or malicious remote attack. If our presence at the point of the event being triggered is assumed to prove our intent or accord, we will be in trouble or out of pocket much more frequently than the current issue Out of Pocket calls. We seem to have accepted the lack of Intentification in pocket calls, will we continue to accept the lack of these authentication process.

Our Things will need to get much better at determining our intent and accord, as the frequency, danger and cost, of mistakenly determining our intent and accord increases this will become more a more evident need.

Trust and Safety requires an effective combination of the Identification and Intentification processes, we should not allow the continued oversimplification resulting from assuming that authenticating identity and location is all that is needed to record and authenticate our intent or accord.

This is actually quite an important Cyber Right that we have yet to acquire, mostly because an effective capability of authenticating intent or accord in Cyber Space has yet to be developed. Just as it has yet to be developed in the old paper based world, but remember repudiation is much harder in Cyber Space.

How are we to take control of our cyber space without this right and capability?


No comments:

Post a Comment

Thanks in advance for sharing your thoughts...