龙八8国际

          
          

                    Posts with keyword: openid


                    Discovery: Webfinger and OpenID Connect

                    I'm sitting in a session on webfinger, OpenID Connect, and discovery session. Discovery is a the process of turning a small piece of information (like a user ID) into the URLs and APIs needed to service some specific request. For example, say I tell you my email address is windley@gmail.com, how do you find my profile? Of course, as long as we're talking about one site, like Google, we can just hard code that translation. But how can the discovery problem be generalized? That's the goal of Webfinger: WebFinger is about making email addresses more valuable, by letting people
                    Continue reading...


                    IIW Trending Topics: OpenID and IC Cooperation and Activity Streams

                    IIW IX, the 9th Semiannual Internet Identity Workshop is underway at the Computer History Museum in Mountain View. At each meeting, I'm usually surprised by the emergence of one or two topics and pleased to see continued moves toward even further consolidation and cooperation between mature identity protocols. There continues to be increased cooperation between OpenID and Information Cards. I've see demos of using Information Cards to store and apply OpenID from Microsoft and heard discussion around OpenID selectors and trust frameworks. I quipped that OpenID keeps adding features incrementally in a way that asoptotically approaches the design of
                    Continue reading...


                    Supporting Authentication Discovery in a Standard Way

                    I'm sitting in a session at Internet Identity Workshop that is discussing what standardized support browsers could provide to all authentication systems. Right now all browsers support one: Username/Password over HTTP Authentication. Authentication's come a long way since 1993. Dick Hardt of Sxipper made the observation that users view what's "inside the chrome" as the application. The browser chrome is largely ignored. That seems right to me. Authentication systems like basic form-based, openid, and information cards are all existing without explicit browser support. Forms have password fields, but that's just so that the browser blanks out the characters. Beyond
                    Continue reading...


                    What's New in OpenID 2.0?

                    OpenID 2.0 was finally release yesterday. I've put a piece up at Between the Lines on what's new in OpenID 2.0. There's some important capabilities that will move this forward in a big way.
                    Continue reading...


                    Understanding OpenID

                    Here's a screencast that Dan Lullich sent me showing how OpenID works using a whiteboard cartoon. Very clever! Dan was also my guest on the Technometria podcast this week. We talked about reputation--go figure.
                    Continue reading...


                    User Centric Identity Tutorial

                    Here's the slides from the user centric identity tutorial that I gave this afternoon. The PDF won't show the embedded screencasts. I've included them separately. Here's one on using CardSpace and one on using OpenID. If you're interested in getting my Perl wrappers for using the JanRain OpenID libraries and the guestbook application, contact me.
                    Continue reading...


                    Social Graphs and Identity Systems

                    I just posted about social networking and identity at BTL. This represents some of my views on Brad Fitzpatrick's paper on the social graph problem as well as Dave Winer's podcast on the subject. Both Brad's paper and Dave's podcast (not just the summary) are worth paying attention to.
                    Continue reading...


                    Linking OpenID and CardSpace: SignOn.com

                    PingID (disclaimer: I'm on the advisory board) released the beta of SignOn.com today. SignOn.com is an OpenID identity provider that also accepts InfoCards. Once you've signed up, you can register an InfoCard with SignOn.com, you can use that to authenticate when you use your SignOn id at a Web site. Confused? Here's an example: I go to Jyte.com and click "login" Jyte asks for an OpenID, so I give it my SignOn OpenID (windley.signon.com) SignOn asks me to authenticate (since I'm not currently logged in there) and I choose to authenticate with an InfoCard The card selector pops up,
                    Continue reading...


                    JA-SIG Keynote on Digital Identity

                    I gave my keynote presentation on the social and economic impact of digital identity to the JA-SIG 2007 Summer conference. JA=SIG promotes the development and use of open architectures in higher education. In addition to their semiannual conference, they also have several projects that members develop and contribute to. The presentation went pretty well, I thought. There were probably about 150 people in the room. The PDF of my slides is available as well as a screencast demoing CardSpace and another screencast demoing OpenID which I showed in lieu of live demos. Neither is edited nor does either have
                    Continue reading...


                    Using XRDS

                    Back when people were trying to bring OpenID, LID, and i-names together, something called Yadis was born. At the time, it was all pretty abstract to me, but over time I've come to understand more of the details. Yadis was a discovery protocol for identifiers that was based on XRDS, or eXtensible Resource DescriptorS. The basic idea was that when you resolved an identifier, you'd get back an XRDS document that would tell you which authentication service the identifier was associated with. I'll talk about the details of how this happens in a minute. First, let's talk about why
                    Continue reading...


                    User-Centric Identity Tutorial Resources

                    Banff Springs resort. (click to enlarge) I gave my tutorial on user-centric identity today. There were around 40 people there--a good crowd and very interested in identity. I promised that I'd post a list of resources, so here we go. First, my slides in PDF format. Warning: the upload from the hotel is going very slowly, so this probably won't be available until later tonight. Here's the tarball for the demonstration code I did with OpenID. I add authentication to a simple Web application using a separate, general login controller. There are pictures in the slides. It's in Perl.
                    Continue reading...


                    Sun Supports OpenID and Opens the Question of Reputation

                    Sun announced (or at least Tim did) that Sun's supporting OpenID at openid.sun.com. Sun has taken the additional step of stating that only Sun employees will have IDs there. So, if someone presents an OpenID with a base domain of openid.sun.com, you can be assured that Sun is vouching that they are an employee of Sun. The biggest problem with this set up, of course, is that the attributes of an identifier ought to be transfered orthogonally to the identifier itself. The fact that the URL has a certain form should encode data like whether someone's an employee or
                    Continue reading...


                    On Impersonation and Delegation

                    An Elvis Impersonator(click to enlarge) A couple of my students, Devlin Daley and Bryant Cutler, are doing some work on delegation in OpenID. Kim Cameron has been posting about delegation and that led to some interesting discussions in the lab. First we distinguished between impersonation and delegation. The former is an authentication issue, the second is an authorization issue. Kim's point, and I think fairly made, is that you don't ever want some one other than the entity to whom the identity belongs to authenticate as that identity. Rather, you want the entity (be it a service or human)
                    Continue reading...


                    FreeYourID.com

                    I played around a bit with FreeYourID.com this morning. The service gives you a personalized URL, email address, and an OpenID. The domains are in the .name TLD. This is an interesting concept: combine three identity services into one and offer real personalization. They're giving free 90 day trials. in some ways this reminds me of a poor-man's i-name. i-names are resolvable to various services. Right now, you've got to use an URL transform to make i-names work, so using them is not as straightforward as it be if browsers did native XRI resolution.
                    Continue reading...


                    Reputation for OpenID

                    I'm teaching a graduate class on reputation this semester. I did the same thing last year and the class project was building a reputation framework. The ideas surrounding reputation intrigue me, if you haven't figured that out from reading this blog. I've had various ideas for this semester's project, but finally settled on the idea of reputation for OpenID. With OpenID gaining steam, there are concerns on user side about how to know whether to trust an OpenID provider. Even if you pick someone with obvious standing, like AOL, how do you know if the site you've been redirected
                    Continue reading...


                    Relative Celebrity and Reputation

                    Britt's working on a concept he calls Relative Celebrity. The idea is that in the world of the long tail, there is some ranking and "every member of a network must be related to someone who is closer to the action - relatively speaking, a celebrity - and also act as a valued conduit of news, gossip and conjecture for others, acting as that person's relative celebrity." It's an intriguing idea and one that makes me think about reputation and it's value in a global Internet sense. To date, online reputation systems have been localized to a particular Web
                    Continue reading...


                    OpenID Economics Centers on Relying Parties

                    Tim Bray has written a post saying that OpenID seems pretty useless and then points out some problems and possible solutions. The ironic thing is I can't argue with many of his points, but come to a very different conclusion. I don't intend to respond point by point. He's spot on, for example, in what he says about TLS. While the OpenID spec tries to stay away from specific authentication mechanisms and has been subjected to considerable security analysis over the months, there's not reason not to require HTTP transport happen over TLS. In practice, however, I doubt any
                    Continue reading...


                    Using OpenID Delegation

                    In a comment on my post about OpenID being an official lifehack now, Richard Miller asks "which OpenID provider do you suggest?" The good news is that OpenID has a layer of indirection builtin, so it's not critical that you choose correctly. Here's how it works. First, you need pick a URL to serve as your OpenID. It doesn't need to be an OpenID provider and you don't need to install a server at that URL. I'd recommend choosing one that you believe you'll be able to hold onto for a good long time. That's going to be the
                    Continue reading...


                    OpenID is a Lifehack

                    Lifehacked reposted a screencast (original from Simon Willison) today showing how to sign up for and use an OpenID. OpenID is now, officially, a way to make you live better, more efficient, and happier. Really.
                    Continue reading...


                    The Economics of OpenID

                    I spoke at the Identity Solutions Symposium on the topic of Social and Economic Aspects of Identity (PDF of slides). This is a difficult topic because there is so much to say and so many issues that you could cover. One of the things I didn't talk about that I wish I'd had time to cover was the developing economics around user-centric identity. With announcements like OpenID and CardSpace interoperability and AOL's support for OpenID only a few weeks old, I think that we're getting very close to the identity "big bang" that Kim Cameron talks about. If you're
                    Continue reading...


                    Two Factor Authentication with a Bookmarklet

                    I've been meaning to write about this all week, but kept forgetting. Ben Adida has proposed a two-factor authentication scheme using a bookmarklet which looks pretty cool. Ben calls this a "bookmark," but I prefer "bookmarklet" since it's a bookmark that contains a runnable Javascript. The solution seems pretty cool. My biggest question centers on usability. When you imagine this scenario with one site, it seems simple enough, but if every place you wanted to log into on the 'Net needed a bookmarklet, you'd have a bookmarks file full of entries to allow you to log in. What a
                    Continue reading...


                    AOL Deploys OpenID

                    On Wednesday, John Panzer of AOL announced that AOL has deployed OpenID on top of their identity system. What this means is that if you have an AOL identifier (including AIM), you've got an OpenID and can use your AOL identifier to login to OpenID enabled Web sites. Here's what John says: Here's where we are today: Every AOL/AIM user now has at least one OpenID URI, http://openid.aol.com/. This experimental OpenID 1.1 Provider service is available now and we are conducting compatibility tests. We're working with OpenID relying parties to resolve compatibility issues. Our blogging platform has enabled basic
                    Continue reading...


                    Making CardSpace and OpenID Interoperable

                    Microsoft, JanRain, Sxip, and VeriSign have agreed to work together to make OpenID and CardSpace interoperate. This isn't totally unexpected since the community has been moving forward in this direction. Kim Cameron has been discussing the details of how it might work in recent weeks. Here are the specifics from the press release: As part of OpenID's security architecture, OpenID will be extended to allow relying parties to explicitly request and be informed of the use of phishing-resistant credentials. Microsoft recognizes the growth of the OpenID community and believes OpenID plays a significant role in the Internet identity infrastructure.
                    Continue reading...


                    Finding Truth in Crowds

                    The folks at JanRain (the OpenID library builders) have released jyte, a site that allows you to make claims about anything you like and then other people can agree or disagree. It's a well-done Web 2.0 kind of site with lots of cool infographic features, embeddable result bars, comments, tags, and OpenID authentication (what else?). It even let me use my i-name. Hurray! Here's a claim that David Recordon made about Emacs: I'm not sure how that's going to look or even if you have to log in to vote, but we'll see... The idea that people can make
                    Continue reading...


                    OpenID Delegation

                    Simon Willison (whose blog used to be green) has an excellent tutorial on setting up OpenID delegations so that you can use your own domain name (see what I said about persistence here) as your OpenID. In fact, you can use any URL where you control the resource (what gets returned when you GET the URL) as an OpenID. Delegation is an important part of OpenID because it allows you to switch OpenID identity providers, your OpenID stays the same. Just change the link tags in the resource associated with the URL you're using as an OpenID and you're
                    Continue reading...


                    OpenID and XMPP

                    Via Scott Kveton, a link to an OpenID server that uses XMPP authentication (the undelying protocol for Jabber). Fun stuff!
                    Continue reading...


                    Trusting OpenID

                    We started off the morning, as is our tradition by building the schedule for the conference. Lots of good sessions proposed and many I will have to choose between. I love seeing these things come together. I started off the morning at David Recordon and Josh Hoyt's talk on OpenID authentication in the new OpenID 2.0 spec. During a discussion of how OpenID 1.1 works, a good discussion of phishing broke out. Someone asked what's to keep a relying party from purposely misdirecting a user to a site that's spoofing the user's IdP and stealing the user's credentials. David
                    Continue reading...


                    Using OpenID and Liking IT

                    Norman Walsh is using OpenID in his photodata.org application and liking it. He has Ruby code (not Rails) that you can swipe if you like.
                    Continue reading...


                    OpenID Sightings

                    Stuffopolis is accepting OpenID for users leaving reviews.
                    Continue reading...


                    whobar

                    SXIP seems to ta always come up with clever names for things. The entry this year is whobar, SXIP's software or relying parties that allows them to accept CardSpace cards, i-names, or OpenID itentifiers from users.
                    Continue reading...


                    How Does OpenID Work?

                    I've been trying to dissect OpenID and make sure I really understand what's happening. The spec is the ultimate source, but obviously covers all the bases. What I wanted was a picture, but I couldn't find one. So, I made one. Part of the problem with understanding the spec is that the text tells what has to happen, but there are some implementation details which, while variable, as still helpful for decoding the ins and outs of the most common scenarios. For implementation details, I turned to a Web proxy to help capture the HTTP request/response pairs. The one
                    Continue reading...


                    Navigating User Centric ID Systems

                    If you've been following along, you'll remember that I set up a OpenID enabled MediaWiki for the Internet Identity Workshop. Yesterday, Johannes Ernst told me that you can use MyLID to sign in as well. Cool. This works because MyLID not only understands LID, but OpenID as well. I've been wondering how to make the wiki accessible to LID, OpenID, i-names, InfoCard and others, but may have had it backwards. Because MyLID (the identity provider) is multiprotocol, the IIW wiki (the relying party) doesn't have to be. That is, if MyLID, MyOpenID, 2idi (an i-name broker), and other identity
                    Continue reading...


                    InfoCard and MediaWiki

                    A few days ago, I mentioned that we'd put up a version of MediaWiki that supports OpenID for the Internet Identity Workshop. I know that Johannes Ernst and others trying to get it all working with Yadis generally. A month or so ago, Kim Cameron InfoCard-enabled his Wordpress blog. I'd love to see this all working together. Is there any MediaWiki code that does InfoCard yet? If so, can these things co-exist?
                    Continue reading...


                    OpenID and MediaWiki

                    Ross Mayfield generously donated a wiki for the Internet Identity Workshop and we used it to good effect for the event last October. This time there was some interest in using OpenID (and even Yadis, if possible) to do authentication and it just so happens that Jonathan Daugherty has created an OpenID patch for MediaWiki. With some help from the group at #openid on Freenode, especially Jonathan, I was able to get a patched copy of MediaWiki up and configured to use OpenID. It's now the official Internet Identity Workshop Wiki. Here's what I did to make it all
                    Continue reading...


                    Capability Discovery for Identity Protocols

                    While is possible that a single identity system will emerge for the Internet, it's not likely. Hence the claim by Microsoft's InfoCard to be a "meatasystem" for identity. That is, an infrastructure that other identities can ride on. Alternately, others are building such a metasystem from the bottom up. Right now, that effort goes by the unfortunate moniker of YADIS. YADIS is a way of discovering the capabilites of various identity systems. Drummond Reed just announced that YADIS will also include i-names in addition to OpenID and LID.
                    Continue reading...


                    Yet Another Decentralized Identity Interoperability System

                    There have been several proposals for Internet identity systems over the past 18 months or so, including Microsoft's InfoCard proposal, SXIP, and several URL-based systems including LID, OpenID, and Passel. Today Brad Fitzpatrick (of LiveJournal/Six Apart and inventor of OpenID), Johannes Ernst (of NetMesh and LID), and David Recordon announced a proposal to build an interoperability framework for LID and OpenID called YADIS (Yet Another Decentralized Identity Interoperability System). Here's part of what they said in the announcement: Working on this problem, we realized quickly that what we were really building was a bottom-up, light-weight interoperability framework for personal
                    Continue reading...


                            
                            

                                      大家赢即时比分

                                      快3彩票首页

                                      中国福彩官方app

                                      雷速|体育|app

                                      竞技平台投注

                                      霁齐彩票注册

                                      零点棋牌官方网站

                                      智胜彩票

                                      安博电竞官网