The workshop on i-names (well described)

Invitation to learn more i-names and datasharing using XRI and XDI by Andy Dale on the afternoon of Monday December 5th.
Who will find this workshop useful?
Those who want to have data from web-based applications (i.e. transaction processing, membership management) as well as basic forms (i.e. registration, surveys, etc.) integrate automatically with the back-end databases.  Â

Those creating an ecologies of services where users move between different sites regularly, where having a smoother user experience would serve everyone.  Web 2.0 companies.Â

The audience for this is ‘product managers’ and execs from the dozens of  the dozens of membership management software vendors, etc.  and those who want to do interoperability between various systems.Â

Augmented Social Network is the visionary paper that grounds a lot of this work.  Excerpts from the paper are on my blog here.
What will you learn about?
You will learn what they can do now and the schedule for the next pieces of the infrastructure being ready. Free i-names will be discussed and the type of functionality they can start to provide people with i-names that no other technology will give them.

A picture will be painted of the functional revolution that occurs when people aggregate their own data under their own control and how that lets any service provider give better service.

People will leave the workshop with an understanding that they can start to implement “Identity Centric Architecture” today and how that will benefit them and their members/customers.

Cost
FREE! (because we love you and want to offer a barrier free opportunity to learn more and join the community of implementors in a face-to-face way). All you have to do is RSVP to Justine [ justine.hirsch [AT]ootao [Dot] comjustine.hirsch [AT]ootao [Dot] com] and come.

Where
It will be at ooTao’s offices in Alameda. 3rd Floor, 1080 Marina Village Parkway. Right across the bridge from Oakland

Who is Andy?
Andy builds enterprise software and within the last 8 months has been working on building enterprise quality applications using these tools. He articulates these standards with amazing clarity drawing on his real experience implementing them.

Who else is behind this event?
Kaliya Hamlin the Network Director at Planetwork is helping organize the event. She writes the Identity Woman Blog and works with companies in the XRI/XDI ecology. She is happy to answer questions about the field at =Kaliya

Agenda
This agenda and address is on the wiki and will be updated.
Please go to the wiki and share – who you are – why you are coming; your use cases; what you want to learn and how this 3 hours can be of most benefit to you.

There are 3 basic levels of integration, or engagement, that are possible with the evolving social and dataweb standards:
• Single Sign On
• Publish data from your system
• Consume Data Shared from other systems

We will explore these implementations in detail by reviewing these 3 use cases:Signing in using Single Sign on:
This use case will let us set the landscape of the basic i-name infrastructure; i-brokers, service providers, xri resolution and yadis resolution.

Publishing data from a system:
Giving someone that donates money on-line a signed record of their gift.
This use case demonstrates publishing data from a system. The data is provided to the userso that they can share it with other systems as they see fit . This shows basic XDI syntax and permissioning.

Getting email addresses from a user’s XDI profile:
This case demonstrates how to either use your existing database as an XDI cache or make XDI calls in place of conventional SQL calls.

Date: Monday December 5, 2005
Time: 12 Noon (Bring your own lunch)
Program: 1pm
Venue: ooTao, Training Room, 3rd Floor, 1080 Marina Village Parkway, Alameda, CA 94501
Leader: Andy Dale author of the Tao of XDI and founder of ooTao (Object Oriented Tao)

Please contact Justine Hirsch (justine.hirsch [AT] ootao [dot] com) to register for this event. Places are limited so book early to avoid disappointment.

NTEN roundup

I spent Tuesday in DC at the NTEN – Nonprofit Technology Enterprise Network conference on Data Integration. Andy and I were at the morning session on open standards. We both got comments afterwards that our comments and information about i-names and XDI were better then the content of the panelists. Andy had this to say about his learnings.

They are all talking about how to better tether their horses to their carts. I tried to tell them about cars… They wanted to know how you tether a horse to a car…There needs to be a real paradigm shift. It’s going to take some time, and a lot of work. The glimmer of hope; there were a few people there that really got it. Together with those few people I think we can move this stuff forward by leading by example.

I got to reconnect with Ed Batista the former ED of NTEN and now Director of Attention Trust (he also is 1/2 time at Beconfire as a consultant). He specifically mentioned Eric’s article about Web 3.0 looking at Identity and Web 2.0.

Passel: identity. remixed.

DizzyD presented on Passel and The Identity Gang is in the HOUSE! Johanes, Doc, Phil, Mary and Mary – wow three identity women.
He also didn’t really approach it right he didn’t get all the different systems and how they worked and we were all in the audience correcting him. It really highlighted the need for the workshop we are hosting in October.

Here is the summary:
How do I as user my identity on the web?
The ‘story that started it all’
Wife’s machine got Trojan. I had to change all passwords everywhere.

What is Identity?!
Identity is just another class of information we manage.
It’s a second-order problem. When I get on the net I get on it to do Identity Management other tasks.

What is Identity [Italicized] ?
Depends on the setting

Bottom line two fundamental types
third party vouch for and self asserted

His summary of the other stuff..

What are the options:
Passport
All others are not inherently evil.
everyone is throwing protocols against the wall and seeing which ones stick.
who do you trust to host you identity?

SAML
SAML/Liberty
trust relatinoship between two entities on your behalf
“asserting” used a lot in this world….and I will use it a lot

Standards are well documented and widely deployed. Lots of infrastructure required for trust relationships. Conditionals and trust relationships not viable from an open source stand point. Took a lot of time for a second order problem.

SXIP
Identity is locked into who the identity provider. You can change home sites. not locked in. Run on own machine. Powerful for users with centralized for user to move.

LID
Send information back and forth and urls based.

OpenID
No dynamic scripting needed. You have your identity URL tell via meta tag where identity server is. enter URL – blog URL. LiveJournal do you allow it to authenticate?

Can’t i-names do this?
He asserted wrongly that there was not reputation (global services launch will embed reputation in the messaging/contact system.

For Internet-scale Identity needs

  • Aggregate IDentity
  • Decentralized and open
  • Divers programming Language/environments
  • Interoperable implementations
  • Bootstrap off existing trust models

PASSEL
Gives you more control over data
Aggregates your identity via user-centric three-piece architechure
implemntations already started Perl, PHP, Java and C#
Pluggable trust models.

Generalized model for proving any DNS-based identifier
Trust Model

  • how you prove the signer
  • person x
  • Moving identity information proving that a
  • protocol how move around
  • plug in how you trust information

PIECES:
Agent (principle’s computer)

  • aggregates into portfolio
  • public private key and fingerprint
  • natively if not
  • Zip file on key – use on different locations

Signer (site that makes assertions)

  • signer issues token with for example 4 hour life span
  • agent must retrieve new token from dizzyd.com

Target (relying party)

  • how does the
  • retrieval of public key.

Technorati Tags: , , ,

Announcing the Internet Identity Workshop (IIW2005)

There’s been considerable conversation around identity on the Internet, or what some would call grassroots identity. Providing identity services between people, websites, and organizations that may or may not have any kind of formalized relationship is a different problem than providing authentication and authorization services within a single organization. Many have argued that the lack of a credible identity infrastructure will eventually result in the Internet being so overrun with fraud as to make it useless for many interesting uses.

To solve this problem, or pieces of it, companies and individuals have made a variety of architectural and governance proposals. Some of these include:

Myself, Phil Windley, Drummond Reed, and Doc Searls are hosting the Internet Identity Workshop in Berkeley on October 25 and 26th to provide a forum to disucss these and other architectural and governance proposals for Internet-wide identity services and their underlying philosophies. The workshop will comprise a day of presentations on Internet-scale identity architectures followed by a day of structured open space to accommodate the range of topics and issues that will emerge from day one and other issues and identity services that do not fit into the scope of the formal presentations. We’re hoping that adding a little more formality to the conversation will aid in digesting some of the various proposals.
We’re inviting presentations for the first day on the following topics:

  • Problems, issues, politics, and economics or Internet-scale identity systems.
  • Architectures for Internet-scale identity systems
  • Philosophies that drive architectural decisions in these systems (see Kim Cameron’s Laws of Identity for an example of such a philosophy

If you’d like to present on some other topic, drop one of us a line first and we’ll see how it fits in. Prospective presenters will be asked to submit a 250-300 word abstract. We hope to accomodate everyone, but we may end up picking from the abstracts.

I’m excited about this and looking forward to it. I hope we can have a good set of presentations the first day and a solid day of discussion the second. If you’re interested in this sort of thing, I hope to see you there. Please read the full announcement for some other details and register if you’re coming. There is a $75 charge to cover the cost of the venue, administrative expenses, and the cost of snacks and lunch both dats.

XRI/XDI opportunity in Higher Education

WOW this is a cool opportunity for the XRI/XDI crowd – along with CivicSpace.

Reported by Abject Learning in May:

What did we propose to do? Nothing less than creating and sharing a framework for social software applications for BC’s higher education institutions. In less grandiose terms, we have proposed to create a set of policy recommendations, tutorials, templates, and multimedia resources that can be reused by a school that wants to support weblogging and wiki use (and possibly other social software tools) for its own community. We also hope to foster a community-centered model for sharing expertise amongst practitioners attempting to develop their own projects.

We intend the project to be platform-agnostic: we will definitely be using Movable Type and Drupal, but do our best to ensure that resources we create are not tied in with any one system. If possible, we might partner with mini-projects using tools such as WordPress, ELGG, or even Blogger.

It seems like it would be a lot easier for students if they could use a single log-in I-name across different institutions and schools.