Here are some question asked in a recent conversation on the dataportability.org lists about IC along with my responses.
Maybe the Identity commons should be trying to set boundaries as being purely about identity?
An "open identity layer" that touches so much and there needs to be a "common space" to nash through the vastness of the problem - to deal with the technical, social and legal issues around people sharing their information in community and business contexts. We have this ultra extensible form and broad purpose to enable this to happen - there is "no committee in charge" no "one" or "company" or "group" is deciding what we "do" - we are a loose conglomeration that shares vision and values. Working independently but connectedly and commited to collaboration. It It is an 'unconventional' model that that is working to supposed and connect diverse conversations and technical efforts together.
Can we instead resolve that we promise to incorporate any decisions made by Identity commons as being part of our blueprint?
There are no "decisions made by Identity Commons" read our principles - we are a cluster of working groups that work independently.
Your blueprint (as a side note why there is still 'one blueprint' and not 'blueprints' plural at the very least or preferably 'reference implementations' in the plural form is still a mystery to me) will likely draw on tech stuff groups in IC have been working on for a while. Why not be a part of the 'commons' that they are a part of?
My perception of IDCommons is that it's about Identity, and in your words, interoperable user-centric identity.
Most of the people who have been involved for the past several years got involved to help people have control of their 'data' - their identity the informatoin about them is part of what composes their identity. they didn't get involved to 'invent' an identifier layer that didn't "do" anything
I see DataPortability being about data sharing (in a technical sense)Identity is clearly a very important part of that but I don't see much at all on IDCommons about data sharing. It's as though DP has a wider scope of which IDCommons is a major part.
The exceptions to this view are
- Identity Schemas group
- Photo Group
- Data Sharing group
None of which seem to have much activity.
* OpenID has attribute exchange and Discovery in it - all about data sharing.
* Higgins & Bandit and the Pamela project ALL about infrastructure for card based tools that are all about data sharing for people.
* Project VRM all about how to create a new industry model to revolutionaize CRM and put individuals in charge of their data in radical new ways when relating to companies they do business with.
* I-brokers - their job is to stor data about people and have it be trusted.
* IRA - Identity Rights Agreements - all about how we create human understandable terms of service and norms in this area (it is a huge project and has interested folks but really needs a multi hundreds of thousands of dollars in legal work to 'do it').
* XRI and XDI two standards with roots in IC all about data sharing that can be applied to both peoples personal data and other forms of data that have nothing to do with people.
* OSIS is the Open Source Identity System and having its 3rd Interop event at RSA (The major security conference) in April with over 200 tests between relying parties, identity providers and (user-agents) card selectors. this group is 'only' a working group of IC (it does not have its own independent legal entity/or affiliation with another one as a project). People moving data around is what all this card stuff is about.
So. I am not sure where we have groups that are not in some way focused on this problem area.
DP is just the latest in a long line of initiatives that recognises the same underlying problem but none of the previous initiatives have captured mind share or really got traction.
Our goal is not to 'capture [public] mind share' (does the W3C, OASIS or IETF capture public mind share?) our goal is to facilitate the range of technical, social and legal initiatives that all need to happen to get and identity layer of the web - that shares people's data in privacy protecing, conveninent and under their control. It is a huge problem - with many elements - having a loose community structure (with a slight bit of formalization) is actually working in some way to move this forward.
I think we'd be missing a lot if we scoped DP as a specialization of an "open identity layer".
What do you think moving peoples personal information arournd - data portability is about. It is about building an 'identity layer' of the internet - for people and people's DATA.
Chris has said a few times the scope of DP is to be narrow for now and focused on solving the data portability issue between mainstream social networks. This seems like something that fits into the purpose quite well.
Yes all data for all things needs to be moved around AND a good deal of data is created by people for people about people and the things the they do - hence the synergy.
Seems like semanitcs - when we wrote this purpose about two years ago this was the best we could do to describe this 'vision' it is VERY broad.
If DP wants to go beyond 'people' data that needs to move around GREAT - however much of that will be created by organizations and companies (that have identities).