SocialGraph FooCamp 2008 here I come!

I’m sitting in Frankfurt Airport (FRA) waiting for my connecting flight to San Francisco which will let me attend Social Graph FooCamp 2008. According to the cast of people assembled on the wiki it seems that its going to be lots of fun and hopefully very productive. I’ll be arriving to SF after noonish. If you want to meet, say hi, or anything else, Email me through the contact page. [Read More]

OpenID 2.0 Directed Identity and Emails

A couple of days ago I’ve talked with Eran Hammer-Lahav about an idea I had regarding his post about using Emails as OpenID identifiers. During the talk another sub-idea came into light in regards to OpenID 2.0 Directed Identity and Emails. While I’m not sure if this has been discussed before (I didn’t have much time to go through old posts on the OpenID mailinglist yet) I thought about bringing it up here. [Read More]

Plaxo OpenID support lacks OpenID Delegation support

UPDATE: Plaxo DO support delegation, just not XRDS. It seems a WP database problem caused some of my OpenID delegation plug-in to mess up settings the wrong openid.server and openid.delegate values. It should have been for openid.server and for openid.delegate. The problem was due to the fact that XRDS is yet to be supported in Plaxo. I didn’t notice the problem with the configuration of openid.server and openid.delegate due to the fact that the XRDS settings was correctly configured and all of the sites that I use OpenID with do support XRDS. [Read More]

Corporate Identity and Identity Issues

There is a lot of buzz about Sun’s announcement of OpenID support and the fact that Sun will be giving OpenIDs for all of its employees. While this is indeed good news for the identity community in general and for the OpenID community specifically, it got me thinking about the implications for such a move in which a big company OpenID enables all of its employee. If a company OpenID enables all of its employees and its OpenID server is usable for outside parties to authenticate against it means that now every employee of that company, when authenticating with his/her OpenID can be verified as an employee of that company (providing that no one spoofs the domain and DNS settings, etc). [Read More]

The new and slick

I’m probably the last person to talk about it, by has a cool and slick new design [via Scott’s blog]. They also added a cool new feature, client side certificate, so when you install such a certificate on your machine you don’t need to do anything to sign in. It does all that for you! Just remember to NOT use it on public computers or on computers that are being used by more than one person and do not have a different user names for each person. [Read More]

Twitter and OpenID

Dave Winer says: “[…] we could make Twitter the open identity system we’ve been looking for. Make your Twitter ID the one that you use to log on to other service […]” I say let Twitter support OpenID with all of the good Relaying Party Best Practices including (but not limited to): Ability to associate an existing account with an OpenID Ability to switch to another OpenID (sort of a password recovery for OpenID) Ability to create a new account directly with an external (non Twitter) OpenID (be a standard relaying party) If they want to, they can also be an OpenID provider (which should be good for them, of course ;-) ). [Read More]

Why use OpenID? – A matter of choice (and consolidation)

One of the advantages of OpenID is that it enabled you, the user, to consolidate various accounts on various web sites into one (or more, if you have more than one OpenID) identity. Of course you get the side benefit of having only one login and password to use, but for the sake of this argument, that’s a side effect :-) . This is a choice that was never available prior to OpenID, and when it does exist in the form of Google Accounts/Yahoo BBAuth/Microsoft Passport Live ID it allows you access to the provider’s web sites and assets and a handful of 3rd party sites that supports that vendor’s authentication protocol. [Read More]

OpenID Vendor Lock-In (sort of)

Continuing my previous post about OpenID and Vendor Lock-In, a reader of this blog named Andrew commented on the previous post about a problem he had with and Zooomr. He has some valid points here which I wanted to highlight in this post (he also had some points that I think can be easily fixed or that are actually a non issue). You can also read my complete answer to Andrew here. [Read More]

OpenID, Trust, Vendor Locking and Delegation

There is a lot going on about OpenID these days and a lot of claims are being raised which prevents greater adoption of OpenID by users. One of these claims is about Trust and Vendor Locking. How can I trust a certain OpenID vendor? after all, gaining access to my OpenID account will give access to all of the sites I’ve signed in/up using OpenID. This is a legitimate claim, since it reminds everyone of how Microsoft Passport. [Read More]