May 14, 2007

IIW Project Recap

Today at the IIW (internet identity workshop) at the Computer History Museum in Mountain View, I took notes on the presentations of the projects in existence for more than 6 months. They are below. But I also noticed that they all said they did the same set of things, to make their own projects play with all the rest. Yes, they all have slight variants, like one or another is in php, or java, or ruby, or whatever. But they talked about trading identity bits around like they would send around email. And let's face it, we all have different email clients written in different languages, but the email itself moves around regardless of that.

So I'm wondering what the real differences are. If this is a matter of semantics, between projects, I'm hoping that by the end of the conference (Wednesday afternoon) they've all combined and will work for a less confusing and more aligned identity space.

I had the sense, while taking notes, that each project was slightly restating the same terms, so I aggregated them below. But this could have been buzz word bingo, for all the similarities we were hearing about each. Help us out here, tell us why we really need all you!

ProjectTrusted IDOpen Implementation / InteroperabilityOpen Standards for ID tradingWork With the
Others/Convergence
Usability/User CentricStrong Privacy Concern
OSISYesYesYesYesYesYes
SAML, Liberty Alliance,
openLiberty, and Concordia
YesYesYesYesYesYes
CARDSPACEYesYesYesYesYesYes
HIGGENS PROJECTYesYesYesYesYesYes
OPEN IDYesYesYesYesYesYes
SHIBBOLETHYesYesYesYesYesYes

Notes start here:

1. OSIS -Dale Olds, Johannes Earnst

Open source identity selector
Johannes
Kim Cam
Dave Winer
Michael Graves
Early 2006 met to work on this and it became what is now called cardspace
Aligned multiple distributed systems for trust
coordinated MS cardspace project spec for making it open source
they want to do more with open implementations but don't endorse standards per say
want to collaborate multiple systems into something interoperable
steering committee / working group
they've worked on a bunch of the projects that will be in the speed geeking session

they focus on:
interoperability of standards, meaning of data, and types of information
determine relying parties and help make agreements for that
help determine consistent user experience

2. SAML, Liberty Alliance, openLiberty, and Concordia - by Eve Maler
federated identity means distributing identity tasks and information across domains
XML Based frameworks standardized at OASIS for marshaling security and ID info and exchanging
SAML is about assertions about subjects
Comes in layers
-- assertions get used by protocols to get used by certain tasks
-- specifies single sign on

History: SAML, Shibboleth and Liberty framework have converged over time
Shibboleth is now part of SAML2 as of 2005
Liberty is == to SAML

LIBERTY ALLIANCE = 150 governmental agencies, businesses, orgs and agencies
mission: foster a ubiquitous interoperable privacy
dev. open tech standards
human to application standards
Liberty people service: groups and roles are defined and shared
they are starting to offer

CONCORDIA PROGRAM
initiative to make umbrella standards to harmonize identity protocols


3. CARDSPACE - Mike Jones, MS
About bringing about convergence in identity space with MS and other partners
Care about threats to online safety
Criminal situation is bad
Try to bring usable, safe DI to users
Think about claims made by an issuer by a subject
7 laws of identity
-- Consistency is very important
usability, usability, usability

Microsoft Open Spec: cardspace.netfx3.com

4. THE HIGGENS PROJECT - Mary Ruddy
higgens is a species of tasmanian long-tailed mouse
open source
user centric and privacy centric
interoperable system for authentication
-- example where no password is required
doesn't share some info.. let's users choose
powered by interoperability framework
-- interoperate with lots of situations: financial, employment, etc
multi-protocol
all tokens/protocols/ systems
modular

5. OPEN ID - David Recordan, Bill Washburn
interoperable, single sign on
control URL in OID 1.0
added / extended to support iNames last summer

Single sign on
FOAF support - ex. could pull in AIM list
consumer level light weight ID
90 million Open IDs
(including every AOL/MS user)

problems: yes.. but solutions will be discussed here

Bill Washburn - openID Foundation
foster and promote openID for user centric ID on the net
Dick Hardt
Scott Kveton
Johannes Earnst
Drummond Reed
David Recordan
Arthur Bergman

join!

6. SHIBBOLETH / INTERNET 2 MIDDLEWARE - Bob Morgan (Univ WA)

They focus on attributes - work with Higgens
Shared identity with more than just handle style login - need more assertions
Education focused - work with universities

Posted by Mary Hodder at May 14, 2007 06:29 PM | TrackBack
Comments
Post a comment









Remember personal info?