National Strategy for Trusted Identities in Cyberspace (NSTIC) calls for the formation of a standards-based interoperable identity ecosystem. The proposed identity ecosystem is composed of 3 layers: An execution layer for conducting transactions, a management layer for identity policy management and enforcement, and a governance layer. The key to me is building a federated, plug-and-play, distributed identity ecosystem that doesn’t rely on central authority or massive identity repository. The Feds should push Symantec and others to embed certificates in more places, applications, and devices.”]