Comments on: Can claimID provide credibility?

By: Fred Stutzman

Fred Stutzman — Sat, 29 Apr 2006 14:01:27 +0000

Sweet..Now I understand what a Roach Motel Buster is! Lets just say – you had it right for us. We always knew our play wouldn’t be doing verified identity – and identity 2.0 (or user-centric identity, or the identity metasystem) steps in perfectly to offer us the bits and parts we need. We can plug in the parts they’d do better than us anyway, and we’re staying open and standards-based. It just makes sense in our case (and in lots of other cases like ours).

By: Cote'

Cote' — Wed, 26 Apr 2006 05:03:04 +0000

It’s good to hear I got it “right” I’m really interested to see how the user-centric identity thinking pans out over the next year or so. It looks like it’ll be exciting, and then maybe I can finally stop entering the same profile data at every new site that comes along. My selfish desire, of course, is seeing this as a major Roach Motel Buster, which is always a good thing to see in effect.

By: Moogle1 » Blog Archive » Digital Identity Systems - Designing to Keep the Network Up and Spammers Out

Mon, 24 Apr 2006 08:25:02 +0000

[...] Terrell Russell commented on my earlier ID/trust post at in “Can claimID provide credibility?” and a commenter there, Fred Stutzman, pointed out some great info about how trust can be built on a foundation of untrusted URL’s, as well as pointing out several ID protocols in the making: OpenID, LID, and microID. [...]

By: Mike Bijon

Mike Bijon — Mon, 24 Apr 2006 07:53:41 +0000

I think I came down harder on claimID than I meant to. The concept and timing is great and should offer an improvement over the current methods of validating ID’s. As far as I can tell the market is currently monopolized by the closed-system of each of the credit reporting agencies. And they certainly aren’t interested in trust or relationships (or even security, it seems) at all. It’s best we take it out of the hands of those agencies and don’t depend on eBay or MySpace to open their systems either. ClaimID is a good start toward opening things up and giving contrl back to the users, even without a working system up. I just hope Terrell and his team at claimID make the system play nice with others – thus, my continued shouting about needing a protocol or open standard so that the “complex network” described by Terrell will stay up regardless of funding, bandwidth, or any commercial players.

Fred, you’re completely right about Cote’s description of the process at http://www.redmonk.com/cote/archives/2006/04/identity_20_tru.html. He’s got it right and the parties he mentions at OpenID, LID, and microID are already well into implementation. Indeed, all of those systems (after a quick glance) should work well – so long as the primary users are geeky enough to own their own URL’s/hosting accounts. However, once a service is offered to freely host ID URL’s those URL’s won’t confirm anything more than having a Hotmail address does now. That, of course, is why closed trust systems like eBay’s are shallow but still worth something. So, we either need to restrict digital identities to a subset of people willing and able to pay for the URL/priviledge or to build in some sort of feedback loop that adds a level of trust to each identifying domain – thus motivating those hosting ID URL’s for free to keep spam registrations low or face migration away from their systems.

By: Fred Stutzman

Fred Stutzman — Fri, 21 Apr 2006 15:50:16 +0000

Cote's got it right. There's lots of people playing the verified game, and claimID should (and will) nicely. Now we just gotta find the time to integrate OpenID (yeah, Cote, it's coming) - but the semester ends soon!