The metasystem includes all foundational identity technologies

Nat Sakimura, who is quietly implementing real user-centric identity solutions in the Japanese market while many others are still talking about them, has posted his concise reasoning why XRI absract identifiers are the the only really safe identifiers to use with OpenID. The whole question of the differences between abstract and concrete identifiers, currently being explored [...]

Someday I’m going to write a book about primary challenge with disruptive technologies: they are always starved for resources. In fact, you could argue this chicken-or-egg problem is what defines a disruptive technology: it can’t attract enough development resources until it has proven its value, and it can’t prove its value until it has attracted [...]

I’m going to start referring to her as the Venn Queen. Eve Maler has done another Venn diagram, this time to show the relationship of whole areas of the “user-centric” sphere of activities. Going into Digital ID World next week, I’ll use this to help orient conversations around why there needs to be a simple, [...]

Congratulations and thanks to Pamela Dingle for publishing a detailed analysis of what that the industry accomplished together during the Third OSIS User-Centric Identity Interop (I3). As Nulli Secundus writes about the paper: The OSIS I3 Interop was a five-month event in which organizations, individuals, and projects working in the solution spaces of Information Cards [...]

Pretty cool to see VeriSign's OpenID Provider continue to get new features and a new look. From TechCrunch it sounds like one of the big features is password management for websites that don't yet support OpenID. Cool! Glad to see the team there continue to push the PIP forward. One click login for a bunch of sites:

Timely patching of one's operating system needs to be one of the host of requirements placed on any identity provider

Let's avoid the word "credential". It has so many meanings as to be confusing

Last year we announced an experiment at Sun: in order to gather more information about the operational characteristics of "user-centric" identity technologies, we decided to roll out an OpenID provider for Sun employees. This OpenID provider was intended to be used by Sun employees for personal usage at various OpenID sites that have been popping up at some places. This experiment involved various parts of the company, including field people, products folks, the security team, and our Chief Privacy

Passwords seem perfectly natural "because we’ve been trained to repeat them so much"