|
|
-
A few days ago, the good people at JavaPolis ( which now seems to be called Javoxx ) posted the video for my OpenSSO session from JavaPolis 07 at Parleys.com . Go take a look and see how it compares with the SAML 2.0 session they posted back in February. Read More...
|
-
The slides for my OpenSSO presentation at Jazoon 08 (last week) are now online - just click on the link from the session page at the Jazoon 08 site . If you attended my session, you can give it a rating (out of 5 stars) at that page. You can also see my photos from Jazoon 08 in a Flickr set . Read More...
|
-
A US holiday for working Canadians can be surreal - you get this eerie silence from the lower provinces. Read More...
|
-
Vad heter du? Off to Stockholm next week for a Liberty Alliance meeting. Read More...
|
-
I have an ugly confession to make. I watched the rise of compliance as a business driver for Identity Management, and was pleased but not particularly interested in what it was that suddenly opened the budgetary gates for the projects I was part of.
When I thought of compliance, I would briefly consider how I was [...] Read More...
|
-
Taspo (tobacco passport) is a Japanese age verification card for the purchase of cigarettes. As far as I can tell, the cards don't actually indicate the user's age - unless the information on the card passed to the readers doesn't match what is printed externally. Taspo phones will surely follow. Smokers without a Taspo card either buy their smokes in person or use a special machine equipped with face-recognition system s. Read More...
|
-
So much for the naïve thought that I’d have time at the Burton Catalyst conference last week to finally blog about two subjects near and dear to my heart that I knew would be covered at the conference. It backfired because they were too topical—all available time was consumed by related conversations.
I did manage two [...] Read More...
|
-
Ah Catalyst. Catalyst is a force of nature. All the right people are in the room - vendors, analysts, customers, and implementers. It makes for some pretty intense, valuable conversations.
To me, this year was a year of revival - There were unmistakable signs of life after stack consolidation. Walking through the hospitality suites, I saw [...] Read More...
|
-
The Website Is Down Sales Guy vs. Web Dude (tags: funny exchange web geek ) Read More...
|
-
I just uploaded a new version 1.0.11 of the Firefox extension that enables CardSpace for Firefox. This now works for the release version of Firefox 3. Although I know at least one site the drives the javascript kungfu to new heights and that does not work with this version... :-(( Have fun; and happy testing. Please report issues ! Read More...
|
-
The current economic situation is not exactly ideal: amongst many significant issues, one of the most concrete and pressing problems of today is the highly volatile energy market. Many current problem in the world (such as clean water, food, housing) could be solved almost completely, given that there is sufficient energy at hand[1]. Electric energy generation has seen a variety of approaches: some of them are quite childish, while others lack in public acceptance. Ultimately, only a sound mix of Read More...
|
-
I like how Chi.mp illustrates a 'privacy disclosure continuum' A nit. The chi.mp tagline implies to me that, were the user able to 'own' their identity, they'd be able to 'evolve' beyond the current chimp-like reality of Web identity. Humans are not evolved chimpanzees. We are evolved from a common ancestor with the chimpanzees. I do grant that 'lastcommonancestorbetweenhumansandachi.mp' is not optimal as a base URI for entering into the OpenID box. Separately, if I get a chi.mp identity, I'm definitely Read More...
|
-
Mike is excited (but in a mature age-appropriate way) about IDology's verified age cards. IDology brags of the endorsement of Wine America . “IDology’s age verification solution gives wineries an important, effective and efficient way to instantly confirm someone’s age when making remote wine sales” Bill Nelson, President, WineAmerica Let me get this straight. I'm an underage drinker trying to work out how to get some booze for the weekend party (because I told this cute girl who might like me that Read More...
|
-
I'm pitching an idea for a new reality show to the networks. Working title is 'So you think you can Assert?'. The idea is that we have a big name RP (TBD, I'm in conversations with some strong candidates but negotiations are still underway) looking for suitable OPs. We do an initial interview where the RP complains about how hard it is to find good OPs, how it's not their specialty to assess security processes, and how they really just want the whole decision made for them, etc (we'll do the interview Read More...
|
-
Clients have an important role to play in preventing the FPA (federated phish attack), as I discovered . Separate from any role the client might play for authentication to the OP (and thereby actively prevent a phish), it has a role in passively spotting mismatches between the 'where I think I am going' and the 'where I am actually going'. But this sort of functionality is invisible to the OP (and has nothing to do with the authentication of the user) so it can't be factored into PAPE (nor easily Read More...
|
|
|
|