May
21

LID, OpenID and the Personal Cloud

jernst on May 21st, 2012

When I started working on LID — the first proposal for a decentralized web identity system — about eight years ago, I did not just have a set of techie protocols in mind, but a technical architecture with social ramifications:

  • people would grab a URL (say http://upon2020.com/), and set up their personal web presence at that URL, under their own control, using the software they chose;
  • that personal web presence could be queried by others (people and software) for information the owner would selectively make available; at that URL (e.g. http://upon2o2o.com/?lid-xpath=/VCARD/N/GIVEN would return my first name to those people who I decided could have it)
  • when visiting a third-party site, I would leave a pointer to my web presence as a form of leaving a business case for “I have been here”. With a bit of crypto around it, that could easily be authenticated and used as single-sign on in a web login flow. The exact same protocol could also be used for API authentication.

Note the logical sequence: because I, as an individual, want to have control over my web presence, I do things in a particular way to accomplish my goals such as selective information sharing and single-sign-on. Because many individuals want to have the same control over their own web presence, a decentralized network of selective, identity-aware, secure, and privacy-protecting information sharing would emerge.

Unfortunately what people mostly picked up from LID and then OpenID was the single-sign-on aspect, ignoring the decentralized “everybody owns their own web presence” aspect (which, of course, is the far more interesting one.) Perhaps it was too radical at the time. In a way, I pitched the Personal Computer to mainframe people who could not conceive of the use for a “personal” computer, but took some inspiration from the single-sign-on aspect, as if mainframe people ignored the invention of a personal computer but took inspiration from the design of its keyboard.

The current way of thinking about internet identity is all about “big site with lots of users” (e.g. Google, Yahoo, Facebook). Their logical sequence of thought by its proponents was, and is: Because I (e.g. Google) want to enable my users to be able to log into other websites without requiring additional accounts, we design a protocol that does that, in a way that maximizes benefits for us as identity provider and our business partner relying parties, while not making it too hard for the user.

Which is why OpenID is so very different today from its roots and much more corporate in nature, why user-centric identity is dead, and while almost all of us who helped start the movement dropped out over the years.

But it seems we’re having a bit of a reunion these days, on the subject of Personal Clouds. Perhaps the idea of cloud computing had to mature further before we could talk about user control over it. Perhaps Facebook, the most non-user-centric identity system ever, had to have a market capitalization of more than $100 billion first, making all its money off monetizing our information. But the signs are in the air, and because the world (and we) have progressed in the meantime, there’s a much better chance of success. I’ll write about it more from now on.

I’m excited again.

Tags:

Big Picture, Cloud, Digital Identity, Personal No comments »
May
16

Personal Clouds and Life Management Platforms

jernst on May 16th, 2012

Martin Kuppinger, of analyst firm Kuppinger Cole, has an interesting report out titled “Life Management Platforms: Control and Privacy for Personal Data“. In it, he brings together some major technology and social trends to predict an opportunity for individuals to manage their own data, in a privacy-protecting way, while improving interaction with major vendor organizations like insurance companies or car manufacturers.

His thinking is very similar to what led to the idea of Personal Clouds. Whatever its name, it seems the technology pendulum is beginning to swing back from centralization to individual control, which all of us should welcome.

Tags: , , ,

Big Picture, Cloud, Comments, Personal No comments »
May
11

Personal Clouds mailing list

jernst on May 11th, 2012

From the list overview:

Cloud computing today typically means that we have to hand over our data to big companies who decide which features they give us (and sometimes force on us), and who can and do unilaterally change their terms of service on us whenever they like.

What if instead, we could each have our own, personal cloud? Where we decide what data to put there and whom to share it with, where we decide which apps to run on it, and where we define the terms of service?

Personal Cloud is a fairly new idea. It has been compared to the wild idea back in the 1970′s that everybody could have a Personal Computer, instead of having to accept whatever the mainframe guys gave us. Obviously, Personal Computers turned out to be an idea that has appealed to hundreds of millions of people who today all own PCs. Could it be the same for Personal Clouds?

Personal Cloud right now is barely beyond the Homebrew Computer Club stage, but things are happening.

This mailing list is the place where the community hangs out that makes this idea real. Why don’t you join us?

It is hosted by the Personal Data Ecosystem Consortium, and open to all. Subscribe here.

Tags:

Big Picture, Cloud, Community, Personal No comments »
May
2

Personal Cloud Meeting at IIW

jernst on May 2nd, 2012

We had an excellent brainstorming meeting on Personal Clouds at IIW yesterday. About 20 people showed up to discuss their views on Personal Clouds: what they are and aren’t, what they need to do, will do in the future, and what they can’t and shouldn’t do. I was really surprised by how much agreement there was, and how much we were on the same page even about some rather advanced details.

Personal Clouds are coming, watch my words.

Here are my notes from the meeting:

Personal Clouds are to cloud computing what the Personal Computer was to (mainframe-based) computing at the time: in the mainframe world, a central group of people (the computer operators) would deliver the apps they choose, with the data they controlled, with their terms of service, to users who had to use whatever was given to them. The Personal Computer with personal productivity apps such as spreadsheets was the counter-trend, which put all aspects of computing in the hands of the users, who could add and remove hardware, create, delete and modify data at will, run whatever apps they chose on whatever data they had.

Cloud computing today is largely the same as mainframe computing was back then: a central group of people (the operators of SaaS apps such as Facebook or Salesforce) decide which features to give to users. They can change features at will without requiring the consent of their users (e.g. Facebook timeline, no way of not using it), who control the user’s data and often make it hard to move the data somewhere else, or even access it from somewhere else (e.g. no Google crawling of Facebook) and subject to their terms of use. E.g. Facebook or Google can unilaterally ban users and delete their data, which they have done.

Personal cloud computing puts control back in the hands of the users, but this time in a cloud / networked environment.

There are three major parts of personal clouds:

  • data
  • capabilities (aka apps)
  • terms and governance

For the cloud to be personal, the owner of the personal cloud must be able:

  • to choose and remove the apps they run on their personal cloud
  • to control who does and does not get access to the data on the personal cloud.
  • to process data created with one app with another in a similar way as files on a PC may be opened by apps from a different vendor (something not possible with SaaS today)
  • to set the terms of use themselves of the personal cloud
  • to move the personal cloud from one host / infrastructure / hosting provider to another if needed (e.g. from an Amazon cloud server to a Rackspace one)

Cloud computing features such as replication, and high-availability features should be available. Backup must be available.

Contrast to what some people called “personal data centers” — set of computing resources some people (usually techies) have control over at home or work. This wouldn’t be cloud computing because in cloud computing, somebody else takes care of failing hard disks etc.

Personal clouds interact with each other as peers. So we don’t believe that Dropbox etc. are personal clouds. They are just a service that might be used by somebody as one component of a personal cloud.

Personal clouds require persistent identifiers / identity that can be allocated and asserted in a decentralized manner.

May be difficult to communicate because many people do not understand the difference between data and apps.

It’s a matter of control and portability.

Today mobile devices are tethered to service providers. This creates a dependency on service providers that is undesirable for personal clouds. Of course it is a reality that some technologies today are only available tethered, e.g. iPhones.

There was 90%+ agreement in the room that 5 or 10 years from now, most people will have personal clouds.

 

Tags: , ,

Cloud, Personal No comments »
Apr
9

Some notes on Linux memory usage

jernst on April 9th, 2012

Always felt that ps and top were largely useless to tell anything meaningful about memory usage. Here are some links to more useful tools:

Technical 1 Comment »