Operation Horcrux

Protect & control access to your data using a common physical token: a cell phone.

In Harry Potter, Voldemort stores his soul in various places called horcruxes which had to be destroyed to defeat him. To many teenagers, taking a cell phone away is like destroying a part of their soul.  Therefore, an identity solution built around the cell phone will be most readily adopted by the next generation.

Operation Horcrux begins with a way to link a persons identity.

A few years ago during a presentation panel, I was asked what Google could do with a magic to solve a problem with their technology.  I answered that we needed a unified identification platform stored digitally using your cell phone as your ID

Why do we have passports and drivers licenses?  They are easily stolen & lost with no encryption.

However, virtually everyone carries a cell phone even in growing economies.  Cell phones are easily encrypted and can be protected with a PIN.  We also treat them very carefully and carry them virtually always.

We need a unique identifier but that unique identifier cannot be a authorization code in and of itself.  The Social Security Number (SSN) in the US was an example of a widely accepted unique identifier that grew in use but because it was an "authorization code", simply knowing someone's SSN became a security concern.

A unique identifier also tied to a physical item such as a cell phone IMEI is the first step in any system tying any data to your ID.  For this, the IMEI on a phone would be tied to a unique ID which together would let you attach your identity to your phone and access/control your data.

Your cell phone would become your primary physical token using application-based push technology. 

A transfer of your ID from one phone to another could be done by having the old phone and registering your new one with approval from the previous one.  Or in the event it is lost, the same verification process used today to reissue a lost/stolen ID would be done.

Once you have an ID code tied to a physical device, you can tie it to records.  And these records could be used to log access using a blockchain ledger as distributed, irrevocable method of tracking.

From there, the TDF format (https://en.wikipedia.org/wiki/Trusted_Data_Format) could be used to encrypt any data attached to your ID with keys that are revocable on an individual basis.

This would allow for things like electronic medical records to be shared with a doctor, tracked completed and revoked instantly.

Our innovation is combining cybersecurity expertise with an item we carry already with open source, cloud and web solutions.

We are cyber and cloud experts that fully understand cybersecurity risks involved in both information and operational technology.

We understand the need for security and will use of nation state grade
encryption designed for post-9/11 US interagency communications

We understand the need to share data such as medical data to save lives

We understand the right to individual privacy, the need to protect it and to prevent abuse

We have done incident response for things such as the OPM breach and understand that preventing the issue is the best defense.

Our founder has championed open source software for over 2 decades.

The system is inherently designed to be a digital identification system using a cell phone which is ubiquitous and accessible even in developing countries.

By using a device that is carried already, the cell phone, the system builds on something we already for convenience.  By removing the need for other ID and giving people simple, trustable, controllable encryption and easily revoked access to data, the system can centralize numerous records to make things easier for people.  We also understand all the users in such a system from the administrator to the record owner to providers that need access to records.

By using open standards like TDF, API calls, and standard protocols like HTTPS, we envision a full product designed and implemented under an Open Source model.  As experts at the Apache Software Foundation we would use the Apache Way to build a community around the solution with vendor-neutrality to further ensure interoperability.

By using caching, push capabilities and offline queueing, low connectivity is a primary concern.  We have also been working to help 3rd world countries on financial literacy and using tools like Apache Fineract to power SACCOs and Credit Unions in developing countries.  We would look to work with organizations like Amplio/Literacy Bridge to assist with low literacy/numeracy concerns.

The key to any solution is traction and we see winning this challenge as a key step gain credibility.  Additionally, we would work to have the ID system implemented in open source tools like Apache Fineract to prove it's functionality and usability. 

We are also working with Quicken to improve financial literacy for teens and the elderly as well as designing open source summits in Africa in the same time frame. 

The McGrail Foundation's mission is to provide services, education and advocacy for private, secure and unimpeded business and communications.

We have been working with Quicken to launch a financial literacy group
We have been volunteering for 15 years with the Apache Software Foundation
We have been discussing the OSS Roadshow with the Apache Software Foundation with plans for 2019 or 2020 to start as well as discussions on funding with two major organizations.
We have been discussing our ideas with the Mifos Initiative

Open Source Expertise, Cybersecurity Expertise, Healthcare Expertise, Business Acumen, Community Development Expertise, Financial Expertise, Start-up Experience, Public Speaking Expertise, Social Media Expertise, & Fundraising Expertise

Our revenue model is completely based on sponsorship, grants, open source software & open standards using commercial off the shelf hardware.  We have experience since 2004 working with the Apache Software Foundation and understand community growth and sustainability concerns.

We are applying for the Mission Billion Challenge because the opportunity to be vetted by a prestigious organization like SOLVE and MIT would smooth the road for us to seek partners, funding and users.  We also believe this will elicit more funders and community members to invest their time and energy into the project.

The key barriers are adoption of the security protocl.  Our plan to overcome them is to work initially with organizations like the Mifos Initiative and SACCOs to prove the standard and then approach organizations like the IADB and WBO for expansion.  Additionally, by working with industry players like Quicken, we will work to gain the attention of other organizations as well as pitch to innovation and open source offices in the traditional banking industry.