Much discussion has happened recently about various attack vectors against OpenID, most brought up in the spirit of "I want to help fix it", which is great. In this post, I will try to summarize the how to achieve a "security gradient" for OpenID that allows implementors to choose the tradeoff that suits their application [...]
I’m at Doc Searls’ Vendor Relationship Management workshop in Redwood City today. It’s hosted at the sidelines of the Liberty 2.0 meeting this week.
Update: In the first version, I mistakenly had not attributed Bob Blakley who had blogged about On “The Absurdity of Owning One’s Identity” first. My apologies. Today’s news illustrates the limits of what I’d call the radical approach to user-centric identity: it is simply not acceptable to fully owning (an expansive version of) all of [...]
Jan
23
Johannes Ernst on January 23rd, 2007
The CAD/CAE systems I used with in the late 80′s were all special-purpose machines, i.e. hardware configuration, operating system, and application had been optimized for the specific purpose of doing CAD. While, obviously, general-purpose computers were underneath, that’s not how we thought about them: we thought about them as an integrated solution for a specific [...]
Continue reading about Horizontal and Vertical Identity Protocols: Where Do They Meet?
Big Words: Time Magazine on the Person of the Year — You
If you have not read Time Magazine‘s recent "Person of the Year: You" piece, I urge you to get it. It uses Big Words, Bigger Words than I have heard in a long time about anything, technology or otherwise. It is about the fundamental change in the fabric of our society that is caused by [...]
Continue reading about Big Words: Time Magazine on the Person of the Year — You