-
Between US and European Privacy, I prefer the US one
It’s common for privacy advocates to claim that European privacy rules are better than US ones. There is some truth to it, but consider this recent experience from my recent trip to Germany, the country where I grew up. I went to the sauna. (First German sauna in 18 years!) So here I’m sweating my…
-
LID, OpenID and the Personal Cloud
When I started working on LID — the first proposal for a decentralized web identity system — about eight years ago, I did not just have a set of techie protocols in mind, but a technical architecture with social ramifications: people would grab a URL (say http://upon2020.com/), and set up their personal web presence at…
-
VMWare, Identity and User-Centricity in the Enterprise
Lots of good commentary on VMWare’s new Horizon App Manager today, which is what their Tricipher acquisition seems to have turned into. The phrase that struck me the most — thus this post — was Krishnan‘s description at CloudAve: a user-centric management service for accessing cloud applications from any device. It clearly is user-centric: it…
-
“HTTPS Now” Campaign Unfortunately Does Not Fix the Problem
EFF activist Eva Galperin in quoted in a ReadWriteWeb article introducing their new campaign: “HTTPS provides the minimum level of security for websites. Without it, no site can make any meaningful security or privacy guarantees to its users.” Well, wouldn’t that be nice! Particularly if HTTPS actually were providing that security. For a counter-point, read…
-
The Death Of User-Centric Identity — for now
Around 2005/2006, there were about four major lines of thought on user-centric identity with a few variations. We can quibble about the exact numbers and times, but in broad strokes — which is what this post is all about — that seems about right. The Kim Cameron / Microsoft / CardSpace / Identity meta-system line…