Open Mustard Seed
= seeks to enable users to build new sorts of decentralized, dynamically responsive and transparent digital institutions.
URL = http://idcubed.org/open-platform/platform/
an open data platform to enable people to share all their personal data within a legally constituted trust framework
Definition
"With the help of researchers, developers and entrepreneurs, primarily from Harvard and MIT and the Boston Community, we are building an open data platform to enable people to share all their personal data within a legally constituted trust framework. This framework will allow people to have their own personal data service that can securely store and process static and dynamic data about themselves. Governed by ‘privacy by design’ principles, all agreements of the trust framework support open authentication, storage, discovery, payment, auditing, market making and monetized “app store” services. The goal is to take all of these services and make them available within an open-source framework that can be “mashed up” to enable the development of high value applications."
Description
David Bollier:
"Collaboration between Institute for Data-Driven Design (ID3), a tech nonprofit based in Boston, Massachusetts, headed by Dr. John H. Clippinger, and the M.I.T. Media Lab’s Human Dynamics Group, led by Professor Alex “Sandy” Pentland. Working with a range of partners, the ID3/MIT team is developing a new software platform, Open Mustard Seed (OMS), that seeks to enable users to build new sorts of decentralized, dynamically responsive and transparent digital institutions. By enabling people to build trust and cooperation among each other, Open Mustard Seed seeks to fulfill the promise of Reed’s Law.
Soon to be available as an alpha-release, OMS will provide a new infrastructure to let people build their own highly distributed social ecosystems for reliably governing all sorts of shared resources, including their personal data. The software is a synthesis of a variety of existing software systems – for digital identity, security, computable legal contracts and data-management – designed to serve as a new platform for social exchange and online governance. Just as the original html code gave rise to the World Wide Web and new types of bottom-up social communication and collaboration, OMS can be conceived as a new “social stack” of protocols and software for self-organized governance. Instead of looking to (unreliable, unwieldy) external institutions of law and policy, OMS uses software code to internalize governance to individuals and online communities.
OMS solves a number of interrelated problems about Big Data. Users have not had an easy or reliable means to express their preferences for how their personal data may be accessed and used, especially when one context (a bank) differs so much from another (a healthcare provider) and still others (family and friends). A user may not know with whom they are really transacting, nor can they readily verify that their privacy preferences are actually respected and enforced. Users are often wary of exposing or sharing their data with third parties whose trustworthiness is not known. In this context, it is not surprisingly that protecting one’s personal information is seen as antithetical to commercial and governmental uses of it.
The Open Mustard Seed project seeks to overcome these problems through a technical architecture called the “Trustworthy Compute Framework” (TCF). The TCF extends the core functionality of “Personal Data Stores” (PDS) – digital repositories in the cloud that let users strictly control their personal information – by enabling online users to interact flexibly with third parties in secure, trustworthy ways. The system architecture uses nested tiers of “trusted compute cells” starting at the “private” level and moving up to portal and group levels. The idea is to enable trusted social relationships and collaboration that can scale. Each trusted compute cell (TCC) – the basic unit of individual control over data – enables users to curate their digital personas; manage the data that they collect, produce and distribute; manage privacy settings for the various social scenes and commercial vendors they interact with; and manage group-specific apps for secure communication and data-sharing.
The terms of interaction between an individual’s private TCC and a “portal TCC” is mediated with OpenID Connect-authenticated API connections. These application-programming interfaces ascertain the terms of interaction and information-disclosure through “trust wrappers” or “trust manifests” that encase a communications module. “Wrappers” amount to digital legal contracts that outline the opt-in terms of agreement for online interactions. They specify what data may be collected, accessed, stored, etc.; what access control mechanisms and policies will govern data; and the “constitutional rules” by which groups may form, manage themselves and evolve.
By enabling individual users to express and enforce their own bottom-up preferences in the management of data, the Trust Compute Framework enables the development of entirely new types of network-based governance institutions. People can develop trusted online social and commercial relationships that can persist and scale. This capacity depends critically on people being able to control their own personal information – and to be able to efficiently authenticate other people’s identities based on self-selected criteria for mutual association, trust and risk.
In such a network environment, one can imagine an ecosystem of “branded portals” emerging as central repositories for people’s personal data. One can also imagine companies arising to serve as “trust providers” of social, secure, cloud-based applications. Users could begin to enjoy many benefits that stem from sharing their data (avoidance of advertising, group discounts, trusted interactions with affinity groups and strangers, etc.) Businesses that engage with this architecture (app developers, service providers, retailers) could gain trusted access to large, highly refined pools of personal data that can be monetized directly or indirectly, using new business models. Government institutions, similarly, could gain access to large pools of personal data without violating people’s privacy or the Fourth Amendment, and craft more reliable, effective and demographically refined policies and programs. As a completely decentralized and open source platform, OMS cannot be “captured” by any single player or group. It aims to be always capable of the kinds of open-ended innovation that we have seen in open-source software, the Web and other open platforms." (http://bollier.org/blog/next-great-internet-disruption-authority-and-governance)