Liberty Alliance Publishes 1.0 Spec. The long-awaited specs are available for those willing to give some basic personal info to the alliance members. The Overview document looks interesting. More thoughts when I've had a chance to read the PDFs. [Doug Kaye: Web Services Strategies] Expect some thoughts from me too ;) Update: Peter Drayton already posted his comments.
Fast Company: What's the Matter With Microsoft? "A more conservative gauge of Passport's acceptance comes from Gartner's Litan. She counts 14 million active Passport accounts these days, up from 7 million last fall. By "brute force," she says, Microsoft has been able to double its Passport user base in less than a year. Yet it hasn't been able to convince consumers that they really are better off for it. In her latest survey, Litan found that just 8% of Passport users said that they signed up for the service primarily because it let them avoid reentering credit-card data. All of 2% said that they signed up for Passport primarily because it eliminates the need to have multiple IDs and passwords. "Is this really the killer app?" she asks wryly. If Microsoft hasn't yet won our loyalty, do people want someone else to manage their online identities? When Litan asks consumers that question, she finds that banks get the highest endorsement, with support from 47% of the public. In contrast, Microsoft gets a mere 12% of the vote. Yet that's still ahead of the ratings for AOL, Yahoo, and telephone-service providers, all of which are at 6% or less."
tweney.com: Broken trust. "The problem is that Palladium requires users to place a huge amount of trust in Microsoft. You don't get to decide what runs on your computer -- Microsoft does. You can't even open files unless you've been authorized by Microsoft, or by a third party. And that puts a huge amount of power into the hands of these corporations." [scripting.com]
Microsoft's Federated Security and Identity Roadmap. "By the turn of the century, the question arose of how to get all the computers connected to the Internet to talk to one another. The industry looked to what made the Web successful. This new model, known as XML Web services, focuses on getting heterogeneous systems within and between businesses to talk to one another, regardless of the underlying operating system, language, or programming model. It accepted that these systems were written in different languages, with different programming models. But it was based on the notion that some simple technology standards would be able to bridge that gap."
CNET: Gov't mulls Microsoft, others for ID system. "The U.S government is considering using online ID systems from Microsoft, Entrust, RSA, and VeriSign among others to track the identity of visitors to a dozen new federal Web sites launching later this year, a federal official said Friday."
Digital Identity: News and features on identity web services.
Rael Dornfest: Identity. "The holy grail is a unified, decentralized, simple yet extensible user-centric identity, membership, and preferences fabric for the Internet."
Two years from now. Privacy, security and scalability concerns are addressed. What else do we need? I would like to have different authentication for different levels: view-only, transactional and administrative. I would like to have multilevel authentication. How about delegation? I want to give access to my information, but don't want to give away my authentication information. How about web services integration? Again, I would like to use my identity, but different authentication mechanisms.