I was reading Kim’s 3rd law of Identity and I got wondering how trust is involved in an identity transaction.

Technical identity systems MUST be designed so the disclosure of identifying information is limited to parties having a necessary and justifiable place in a given identity relationship.

Who determines what is “necessary and justifiable”? Do all the parties trust each other? What is meant by trust?

I describe trust as social, not technical. Trust is dependent on the parties involved and the reputation between the parties at the time of the trust decision. Trust is dependent on the transaction. I might be ok . I wonder how Trust fits into Kim Cameron’s Identity Laws.

Perhaps one of Kim’s next laws will explain how trust fits into an identity system.