I’ll be at HealthCamp this Saturday in San Francisco. The idea is to start a "health 2.0" conversation about the 2 trillion dollar (in the US) healthcare industry that’s bit like the web 2.0 discussion, or the identity 2.0 discussion, or … you get the idea. With hundreds of billions of dollars up for grabs [...]
Everybody knows about phishing these days: the attempt by an attacker to trick a victim into revealing information to them by masquerading as somebody else. For example, a site called examplé.com might attempt to pretend to be site example.com. It is often initiated by e-mail, whose sender address can be easily falsified, and often works [...]
Let’s assume that the OpenID movement continues its dramatic growth for a few more years, and instead of a dozen technology vendors supporting it for hundreds of sites and a handful of use cases, as it is today, we’ll have hundreds of different implementations on tens or hundreds of thousands of sites, applying it to [...]
Continue reading about What kind of organization is the right one for OpenID?
The Ping blog quotes Mike Neuenschwander of the Burton Group on whether there’s a winner-takes-all opportunity in identity management: “Although vendors continue to approach the IdM market as a winner-take-all proposition, features of IdM make the market extremely difficult to dominate. For one thing, the resources that identity vendors aspire to control are politically fragmented, [...]
Continue reading about Identity Management: Winner-takes-all or not?
Questions about User-Centric Identity
Stefan Brands, eminent privacy and security researcher, asks good questions about user-centric identity. (I think they apply regardless of protocol. I have taken the liberty to replace some geeky terms with more plain ones, because I think it’s important that as many people as possible understand these questions) Can the individual consent to or withhold [...]
Continue reading about Questions about User-Centric Identity