i-Names Pick Up Steam

There's been coverage in LJ on the whole "Identity Commons idea. Basically, it's a domain registrar for your unique name - with them on sale already. ASN has published a whitepaper on the topic as well.

25$ for 50 years ?

[mirko]

But what's the point ? Being identifiable under a name which would look like this ?

Valid I-Name formats

I-names are designed to be as simple and human-friendly as possible. Global personal i-names start with an "=" sign followed by a string of characters (no spaces.) You can use letters, digits, dots ("."), and dashes ("-"), but you can't start or end with punctuation. I-names are not case-sensitive, i.e., "a" and "A" are equivalent.

See these special instructions about internationalized (Unicode) i-names.

Examples:

• =Mary
• =Jones
• =Mary.Jones
• =Mary.W.Jones
• =Mary.Wellington.Jones
• =Mary.Martha.Wellington.Jones
• =Mary.Jones.Phd
• =Mary.Jones-Smith
• =Mary.Jones.2000
• =Pickles
• =Pickle.Sandwich
• =Foo-Foo

Note that although dots are not required (i.e., you could register "=MarySmith"), the standard practice will be to separate real names with dots, just as it has become with email addresses.

For further information on i-names please visit XDI.ORG or the OASIS XRI (Extensible Resource Identifier) home page.

Re:25$ for 50 years ?

[MORTAR_COMBAT!]

say it with me: "an i name is not a name". your "i name" can be "=fscknugget", having it be based on your actual name is up to you, but it does not (and should not) be used as data which can in and of itself be parsed into your real name. in fact, your real name is one of the pieces of private data which an "i name" purports to protect.

note that I neither affirm nor condem this "i name" business, just noting that the "i name" is not even designed to be parsed into a real name, so your points about "St. John" and double-barreled surnames are not that important. (I have a hyphenated last name and so this kind of thing is almost a hobby of mine...)

Re:What about XNS names?

[fedux]

I think they mean this: EGS

Re:How Come?

[Spoing]

1. How come when Microsoft tried to do this with passport everyone thought it was evil. But now, because it's not Microsoft, there will be a lot of people saying this is good. The reason why this stuff bothers me is because I don't want to trust anyone to control all my signing on to every site. Because no matter how secure it is, if someone breaks the security, they now have access to everything. At least I know now, that if someone breaks (guesses) one of my passwords, then they've only broken one of them, and not all of them.

The motivations for each group are entirely different. Go and listen to Owen Davis' speach here.

Re:Not necessary, next please

[Ath]

Come on, the "single sign on" idea is flawed anyway. I'm never gonna trust all my data to a single entity, nobody does that - just look at asset management. Diversify your risks.

People often confuse "single sign-on" with "centrally stored data". The Liberty Alliance solution is different because it is a federated approach based on identity.

In this solution, you identify yourself with a single method. Take for example, 3 different entities you may interact with: your bank, a government agency, and a store. If those three entities can trust each other, they will accept information from each other as legitimate. If, for example, you want your bank to share information with the government agency (account number, mortage interest paid for taxes, etc.) then you can tell your bank this is ok. If you want a store to share certain information with your bank (like valid shipping addresses when making a purchase) then it is possible with this trusted but federated system.

None of this means that all of the data relevant to each of those relationships is centrally stored or maintained by a single entity.

The question will become all about the identity itself because, if that is breached, then all the others can be breached. Some federated method of identity is probably inevitable, where the bank does not accept just some centrally managed single sign-on verified. You will need something unique if you are going to one of these entities. But in the example above, you don't need to verify yourself to the store in order to share your account information. Instead, you identify yourself to your bank and then tell your bank it can share the information with the store. The store trusts the bank and therefore trusts the information from the bank.

misconceptions: not centralized nor passport

[Broadcatch]

One of the primary misconceptions about i-names is that they're centralized. They're not.

Another is that 2idi is just another passport controlling your information. It isn't.

It's clear that Identity Commons and 2idi have to work on their messaging...

Not Passport (words from 2idi)

[Broadcatch]

People often ask: what is the difference between your technology and Microsoft Passport?

As I like to say, the only thing good about Passport is at least you know their database won't get bought by Microsoft (because they already own it!).

In functionality - such as automatic data sharing, form filling and single sign-on - we share much with Microsoft Passport. (In fact, Passport grew out of Firefly, which is descended from my 1981 thesis on a personalized newspaper - NewsPeek - at what became soon after the M.I.T. Media Lab. I named the systems "NewsPeek" for two reasons: it provided a "peek at the news," and it was a warning that if centralized control over personal profiles existed, the future depicted in George Orwell's 1984 - where the official language was "NewSpeak" - could come true.)

But all that aside, where we differ is where it gets interesting. For one, we are decentralized. There is no single i-broker or data store that you must use. While it is true that there is only one sanctioned global registry for '=' (personal) and '@' (organizational) names, many other forms of community and peer-to-peer i-name registries can exist. It's also important to note that your data is not necessarily stored in any one place. For ease of use reasons you may choose to use a single i-broker to negotiate access to you data, but each item of your profile could conceivably be stored in a different data hosting service. (Note that current service providers that store information about you are acting as a data hosting service already.)

Another point is that, through our architecture and FOSS (free and open source software) availability of our code, we don't lock you in. Rather, you are free to move around between the i-brokers of your choosing - and even to run an i-broker yourself! We (at 2idi) are committed not only to providing you this choice, but also to providing such a compelling suite of services that i-name holders choose to have their i-names hosted at 2idi.

YANANRS?

[BillX]

(Yet Another Non-Authoritative Namespace Resolution Scheme?)

I tried to RTFA, but my brain blew a buzzword fuse. How does this differ from the various other non-authorative namespace resolution schemes out there selling cute "internet names" that a majority of machines can't resolve?