Tuesday, March 18, 2008 - Posts

• Sir Tim on Tracking

  Sir Tim said he did not want his ISP to track which websites he visited. Read More... Posted Tuesday, March 18, 2008 6:58 PM from Identity Woman | 1 Comments Filed under: Uncategorized

• No rest for the wicked

  Well actually, perhaps not necessarily. Hubert describes some Sun work of his and Marc in which they look at a REST binding for Liberty Alliance ID-WSF. One of the interesting evolution of online services is this sort of schism between 2 camps: the XML/SOAP based web services camp and the REST camp that's based on HTTP. For having spent considerable time in Liberty Alliance (working on ID-WSF etc.) I've noticed however that the notion of identity has not yet fully permeated into the REST world the Read More... Posted Tuesday, March 18, 2008 5:38 PM from ConnectID | 1 Comments

• The Ultimate Solution

  I howled when I saw this — wish we all could solve end-user problems so well. Minimal end-user training needed before they understand how to use the product Minimal day-to-day administration needed after initial configuration End-user is happy with the service & user retention is high Service Provider can hire maintainers with little experience (toddlers even)… [...] Read More... Posted Tuesday, March 18, 2008 3:16 PM from Adventures of an Eternal Optimist | 1 Comments Filed under: Funny Things

• From the Trenches - Jamie Nelson on Web Access Management

  Sun Developer Network tech author Marina Sum starts a new series of interviews this week with OpenSSO 's benevolent dictator and Sun's director of engineering for access and federation management , Jamie Nelson (my boss, so I'd better be careful here!). In the interview , Jamie explains how web developers need to consider security, but, at the same time, avoid hard-coding it into their apps. Some great tips and useful links for any web developer - read the article here! Read More... Posted Tuesday, March 18, 2008 1:37 PM from Superpatterns | 1 Comments Filed under: Identity, accessmanager, Access Manager, opensso, sdn, jamienelson

• Clickpass Privacy Policy

  Clickpass uses a 'give us your password' model for their 'assisted account merging' process, add_openid_to_user http://yoursite.com//add_openid_to_user/ Description The purpose of this URL is to check the username and password and registers a new OpenID as belonging to a particular user. Parameters your URL should accept Submission method: POST * openid_url- the OpenID to be authenticated * user_id- the primary key (i.e. username / email ) for the user * password- the password for the user * clickpass_merge_callback_url- Read More... Posted Tuesday, March 18, 2008 11:18 AM from ConnectID | 1 Comments

• Share and share alike

  Ashish lists different sharing models - and categorizes identity protocols accordingly. What clashes for me in Ashish's post is that, as I see it, he conflates sharing of attributes, the decision to do so with a given requestor or not rightfully belonging to a user, with the trust models that the different identity systems typically get deployed into (these decisions belonging to the providers). The decisions providers make in selecting federation partners, determined by assessment of risk, liability, Read More... Posted Tuesday, March 18, 2008 9:28 AM from ConnectID | 1 Comments

• Minimum Population of a “real” Social Network

  Marc Canter says (or at least implies) that a social network with 5 people in it isn’t a real social network. I couldn’t disagree more. There are 4 people in my immediate family, and let me tell you, there is no more social network out there. What defines a social network? Number of hits? [...] Read More... Posted Tuesday, March 18, 2008 1:20 AM from Adventures of an Eternal Optimist | 1 Comments Filed under: The Age of TMI