First of all, it's very well written.Report (draft)I think so. I have great respect for the secretariat and the committee members. I would like to point out the following two points.
| (3) Trends in international organizations | |
| (Relevant section) ② Following ITU-T | (Opinion) The section on ITU-T briefly touches on ISO, but ISO/IEC JTC 1, a joint committee with IEC, is currently developing ISO/IEC 24931-1 Information Technology - Metaverse in SC 24. Also, ISO/IEC 27573 Privacy protection of user avatar and system avatar interactions in the metaverse is currently under development in SC 27. It would be nice to see some mention of these standards as well. Other Metaverse-related standards are also being developed. Below is a list of them. ISO/IEC TR 23090-27:2025 Information technology — Coded representation of immersive media — Part 27: Media and architectures for render-based systems and applications ISO/IEC TR 23844:2023 Information technology for learning, education, and training — Immersive content and technology ISO/IEC DIS 24931-1 Information Technology — Metaverse — Part 1: Concepts, definitions and terminology ISO/IEC CD TR 25468 Information technology — Learning, education, and training — Metaverse services for LET ISO/IEC AWI 27573 Privacy protection of user avatar and system avatar interactions in the metaverse ISO/IEC CD 23090-39 Information technology — Coded representation of immersive media — Part 39: Avatar representation format |
| (2.0) Metaverse Principles (Version XNUMX) | |
| (Relevant section) Measures to verify authenticity ●In situations where it is necessary to identify the person responsible for an action within a space, information to identify the person responsible or the fact that the person responsible has been identified by the metaverse-related service provider must be made clear to users through terms of use, community guidelines, etc. | (Opinion) The third point, ●, states, "In situations where the identity of the person responsible for an action within a space needs to be verified, it should be possible to determine that the identity has been verified, including the verification method." This is important. One method that can be used for this purpose is OpenID for Identity Assurance, which is also adopted by the Digital Agency. This can be used in conjunction with technologies such as ID linking and verifiable credentials to create verifiable data, providing even greater benefits. On the other hand, from a privacy perspective, it is undesirable for information used for identity verification to be spread widely. This is especially true considering that matching avatars with real-life names could pose a significant privacy risk. To address this, a "semi-anonymous authentication" system is desirable, in which pseudonym providers verify identities, provide "pseudonyms" and "anonymous authentication functions" along with the above metadata to metaverse providers and communities, and, if necessary, disclose information to Designated Openers (see ISO/IEC 29191), such as authorities and disclosure requesters. In light of this, we propose revising the first ● as follows: - In situations where it is necessary to identify the person responsible for the actions within the space, information to identify the person responsible or the person responsibleThe metaverse relies on pseudonymous and semi-anonymous providers |