Markus Hautala and Antti Kettunen reveal how Blockchain has rapidly emerged as one of the disrupting technologies of the digital age.
Trust in the digital age is broken. Can you remember the last time you got insurance or bought something from a private person from another EU country to yours? Or when was the last time you signed a contract or gave a power of attorney online? The chances are that you rarely have. Although our private and business lives have become increasingly digital, we still seem to lack mechanisms to conduct these common interactions online. The underlying reason, of course, is that the internet was not built with trusted interactions in mind. Online nobody can verify what you say or the information you share is true.
As the amount of data generated by people, organisations and devices continue to grow at an exponential pace – the IDC predicts a ten-fold increase in data generated from now to 2025 – it is becoming essential that we have practical means to manage and share our data. The regulators in Europe have also reacted to this need by launching regulatory initiatives such as Payment Services Directive (PSD2), General Data Protection Regulation (GDPR) and ePrivacy directive, which share the common ambition of empowering citizens to have access to their data as well as being able to control and share it. Through these initiatives, the EU aims to actively enforce data protection rules and create a fairer platform for data protection, that supports consumers and businesses whilst promoting innovation.
GDPR and PSD2 regulations are significant steps to the right direction of providing identity holders access and control over their data. Both focus on enabling data portability, with the goal of enabling new digital business innovations. As such, they will fuel disruption in the digital industry by opening existing data silos by allowing customers to migrate their data to a new service provider. As Erkki Poutiainen, chairman of the EBA Clearing Board mentions, PSD2 together with new technology can revolutionise the payment landscape and even banking as we know it.
While gaining access to data is a necessity for opening up competition, more is required. The key issue in data portability is not only that data is shareable, but also that the data retains its verifiability. Just imagine receiving a power of attorney digitally but not being able to prove its validity. Clearly, verifiability is the crucial element that retains the value of data and as such is of critical importance.
Digital identities for people and organisations, as well as verifiable data, are the fundamentals needed for digital trust interactions. Portable digital identity and data will enable us to create an equal and inclusive society by allowing anyone to participate in the new economy.
Recently, a Nordic model for human-centred personal data management and processing called MyData has raised thoughts about how data could be managed with identity owner at the centre. MyData brings a fundamental change in how we view and use data. It is an ideology, driven by three main principles of:
A key prerequisite for all the regulations and models to become truly effective – is that a new infrastructure paradigm for managing identities and sharing verifiable data is needed. Even if every person and organisation has an identity, we still fail to replicate this online. This is mainly due to identities being fragmented over various data silos. MyData and the regulations aim to remove the silos, but this is still not enough, since they don’t provide the infrastructure which would foster true collaboration and competition, that are needed for the market to grow.
The rise of decentralised solutions, such as blockchain and other distributed ledger technologies (DLT), have given rise to new types of ecosystems where businesses, public organisations and individuals can form trust relationships without involving middlemen. These decentralised solutions hold also great promise for solving the identity and integrity issues prevalent in sharing and trusting on data.
One of the most promising initiatives aiming to solve the challenge of being able to trust information exchanged online is Sovrin. Sovrin is a global, decentralised identity network that delivers the Internet’s missing identity layer. Sovrin allows people and organisations to create portable, digital identities which they control.
In Sovrin, the identity holder forms secure digital connections with entities (organisations, individuals or things) that can provide information about the identity holder. This information can literally be anything such as a personal identification number, home address, power of attorney or – in the context of GDPR and PSD2 – customers consent to a service provider. This information can then be shared forward by the identity holder to a party that requires these proofs. This provides for all kinds of rich digital interactions: Know-Your-Customer, contract and transaction signing (B2B, B2C, G2C), permits, asset ownership, and so on.
Blockchain has rapidly emerged as one of the disrupting technologies of the 21st century. We at Tieto believe that it will be one of the key ingredients of success for our customers’ future business and that it can be harnessed to build more equal, inclusive and smarter societies. With this in mind, Tieto is working on various fronts to open up current data silos for the benefit of Nordic organisations and citizens.
By its design distributed ledger technology introduces a new trust model for ecosystem collaboration. To this end, Tieto is excited to explore new use cases utilising the technology in close collaboration with its customers and partners.
It’s your data. Take it back. Unlocking your health data with blockchain.
- - -
Tomi started his IT career over 25 years ago. He has held roles ranging from software development and management to entrepreneurship and consulting. Currently, he works as DevOps Transformation Lead, helping customers and delivery teams to modernize their working models, practices, and technologies.