State of Identity & Potential use in nonprofit sector
- OpenID - basics of how it works.
- SAML - B2B use case and the unscalability of federation
- Claims Based Identity - emerging standards and user interfaces - Information Card technology.
- Open Social
- Portable Contacts
OpenID still has a potential flaw in that you must trust that the referring authority refers you to the right place.
Information Cards were introduced as a way to work around this as well as to encourage a seemless way to safely share recurring information that we enter on social networking sites
Current security model Obfuscates the reality of the wire. Tiny locks in the corner of the screen do not encourage an awareness of or accountability to security issues.
Now the Information Card Method
Equifax is creating an Over 18 card using the information
Identity Cards are managed by client-side software
Higgins from IBM is a FLOSS alternative Higgins(1)
Bandit(2) from Novell is a FLOSS alternative.
Azigo will keep it in the cloud
The Augmented Social Network Paper catalyzed the start of Kaliya's interest and commitment to this.
Persistent Digital Identity is as important as a web presence, but it is completely un-evolved.
If you leave identity to the social network sites, we are in trouble. They want captivity.
(1) From the Higgins Website
"Tip of the Iceberg
Cards, wallets and so on are really just the tip of the iceberg. Below the user-experience/metaphor layer, Higgins is a pluggable identity framework that can be used to provide identity-related services to a wide variety of applications. The Higgins platform- and protocol-agnostic identity management framework frees the application developer from learning the details of identity technologies, protocols and toolkits. Developers can use Higgins to build "identity provider" web services (e.g. a Token Service) as well as to enable relying websites and applications to accept identity assertions from identity providers. Developers can also extend Higgins to handle new data sources, new token types and new network protocols by developing plugins to the framework itself."
(2) From the Bandit Website
"The Bandit project is an groundbreaking open source community chartered for developers as a set of programming interfaces to simplify the process of identity enabling systems and provide a consistent approach to securing and managing identity. In simple terms, Bandit is the on-ramp to identity. By offering a standard and vendor/platform agnostic method, Bandit gives developers the necessary tools to integrate once unreachable legacy applications with identity management systems, facilitating security and compliance, streamlining administration and reducing development costs."
(3) From the Azigo Website
"Ever wonder why we still fill in forms and remember passwords? Ever wish you could just tell your computer to sign you up at a new web site or update all your online profiles whenever your data changes? All with one click?
We've been thinking about this since 2003, and we've done something about it. Something big. We call it Azigo.
Azigo puts you in control of your personal data, through the medium of Information Cards. With Azigo you can:
- Create online accounts with one click
- Stop remembering passwords forever
- Get real-time reminders of your membership deals before you buy
- And a whole lot more!
Azigo makes flimsy browsers safe from phishing attacks and other security risks. Your data can only be accessed from machines you control.
Some people call it magic. We call it the biggest web innovation since the browser.
Welcome to Azigo. We hope you enjoy it."