Domain: identity20.com
Stories and comments across the archive that link to identity20.com.
Comments · 8
-
Re:Wait...
Well, it looks like the year of many things:
2008: The year of the big airline merger
2008: The year of RSS
2008: The year of OpenID
2008: The year of layout engine - CSS3
2008: The year of principles
2008: The year of Palestine
And all along I thought it was the year of the rat... -
Nice presentation on the subjectI know this is a bit old, but Dick Hardt's presentation at OSCON 2005 is well worth checking out - and seemingly just as relevant today.
Bonus points for the "Lawrence Lessig" presentation style too...
:-) -
Re:They taught you wrongThe article says that what you propose is the wrong way to do Powerpoint. The basic idea is that when people have to read and hear the same thing, they don't take it in. Visuals should be used for things that are visual, not written. An alternative approach, which is very effective, is simply to use text slides to emphasise the key points (with only a word or short sentence per slide) of what is otherwise a normal speech. This is the "Lessig Style", and it can be very effective when done well. This also allows you to freely mix in visual material as well. The catch with this approach is that it is hard to do well -- you actually need to really rehearse you presentation, and be able to synchronise your (many, and rapid) slide transitions with your speech.
-
The Identity Problems
The majority of the comments so far only show how poor the online identity problems are percieved even by the geeks around here, and even though almost all of us have them. So the problem that OpenID and similar identity protocols are trying to solve is... :
"Wouldn't it be nice if, instead of keeping a long list of usernames/passwords for all the sites you have registered at, there could be only one that can be used anywhere, and keeping everything secure of course?"
A typical use case would be:
- you get up in the morning, start your browser, authenticate at your Identiti Provider (which YOU have chosen or you can even host it yourself), and you are password-free for as long you keep the browser open (or configured between you and your IdP)
- you go to a site which requires you to login, and supports OpenID
- put it your ID (no password), and click login
- the site resolves the ID and contacts the IdP to obtain an assertion about the user's identity
- (the cool part) the IdP prompts you (the user) about the information that's requested so you can approve the transaction
- (optionally you can streamline the step above for trusted sites)
- you're logged in!
And all except the first step happened in a couple of seconds, with a click. The only thing you have to remember is your ID and password at your IdP, not a whole bunch of them!
Trying to answer some of the questions I've seen:
- Can something like this be done with emails as identifieres? don't think so.
- Is this secure? Yes, but don't take my word for it. Go check the protocol specs. This is what's called user-centric: the IdP needs the user's approval for all authentication requests, and the data disclosed along with them.
- Are the $20 XRIs mandatory? No, you can use URLs as identifiers, though there are / may be costs associated with them as well (registration, setup and hosting, depending how much you want to "own" them). The XRIs are the full service package.
- Are you stuck with an ID for life (someone said he liked being able to regularly change IDs)? No - you can get as many as you want, but if you do want to stick to one - you can, and you will still be able to switch Identity Providers (this is done through the delegation feature).
So please check a bit into the details of it before bashing it, or watch this presentation which explains it pretty well (though it's not OpenID, but something similar):
http://www.identity20.com/media/OSCON2005/
Disclaimer: I do work in this field. -
Re:Spamif you're on their server, they can kick your ass off and ban you, but coming from other servers it's a lot more difficult to regulate
Identity 2.0 - credentials issued from sources you choose to trust or not
-
not offtopic
the article is about amazon building up information about you and your preferences. this leads to "silos" that do not interoperate. can this be shared with ebay, or other sites so that you don't have to teach all media commerce sites what types of things you like? no. perhaps a community based repository for preferences makes more sense. watch dick hardt's message from oscon - it just makes sense.
http://www.identity20.com/media/OSCON2005/ -
Identity 2.0
This is pretty cool, but as someone else noted, a lot of accounts means a lot of fobs. The CEO of Sxip did an entertaining presentation on these types of issues. One piece that would be relevant is the idea of separating the credentialing from the site.
http://www.identity20.com/media/OSCON2005/ -
Argghhh, fer crisakes
Identity 2.0 it's nearly been blogged to death.
Take a look at this really cool presentation, even if you find the subject matter boring the presentation is sharp, http://www.identity20.com/media/OSCON2005/ /. news for the lazy and ignorant