50,000 users

This is a big deal for us, as our service is fairly unique among identity companies. We’re hyper-focused and we’re free. We’ve had incremental, steady growth since we launched over two years ago.

Each user is an important piece of the greater goal – a better understanding and collective awareness of how important the identity layer will be as our work and personal applications become more people-based. Identity stands alone as the next major shift in how we communicate through the mediated space of the Internet. Being able to verify claims made by the person ‘on the other end’ will continue to become more and more important.

OpenID is an elegant way forward – and we’re very glad to be playing our part.

Thanks to everyone who’s proudly displaying their claimID profiles on pages far and wide.

On to the next 50k!

The ID Selector makes it easy to recall your OpenID when you’re logging into a site, solving a plethora of problems that occur when OpenID’s proliferate.  We know this will make it easier for you to log in to OpenID, and we also hope that this will drive some more of that sweet OpenID-consuming that is required to push this movement forward.

If you’d like an ID Selector from your website, simply sign up with IDSelector.com.  Great work to Brian and Co. at JanRain!

To do so, ClaimID will integrate Confident Technologies RecognitionAUTH system. The RecognitionAUTH system offers users an innovative and highly secure second factor in authentication. This enhancement will solve many of the criticisms of the OpenID security model, providing you with an account you can use with confidence going forward.

We’re excited to be working the the Confident/Vidoop team on this integration, particularly our friend and advocate Scott Kveton download movies. In enhancing security, we hope ClaimID users will feel more comfortable, and more secure as they choose us as their identity provider. We hope to deploy RecognitionAUTH soon – so watch this space for more details.

By bringing on these companies and their resources, the OpenID Foundation will now be able to better serve the needs of the entire OpenID community. In 2008, we can expect to see a larger focus on making OpenID even more accessible to a mainstream audience, the development of a World-wide trademark usage policy (much like the Jabber Foundation and Mozilla have done), and a larger international focus on working with the OpenID communities in Asia and Europe. Awesome!

Congratulations goes out to OpenID foundation chairman Scott Kveton, and all others involved in the foundation who’ve worked on this initiative. Scott’s blogged the coverage of the announcment if you’d like some more insight. Again, congrats to the OpenID foundation for this huge achievement – today is a very big day for OpenID and open identity work.

Cross-posted to Unit Structures.

Yahoo has been in attendance at the IIW for a while and been planning this for some time. Congratulations on getting the scale and legal issues worked out. And welcome!

Read more at openid.yahoo.com:

Once you enable your Yahoo! account for OpenID access, you can simply tell any OpenID enabled web site that you are a Yahoo! user. You will be sent to Yahoo! to verify your Yahoo! ID and password and then signed in to the web site. Its that easy!

They’ve got a nice easy explanation of the technology for users in addition to a ‘tour’. The developer network gets a page also. Very clean implementation, well done guys.

One interesting bit about their particular set-up, which will go live at the end of January – you only type yahoo.com into an OpenID box, not your full identifier. Yahoo will do the authentication and then bounce you back to the relying party. An interesting design choice – it will be interesting to see if that practice gains traction.

Update: This “yahoo.com only” is the directed identity feature of OpenID 2.0.

To accomplish this, first I leave a comment with my OpenID URL:

Once I do this, I am sent over to the OpenID server for authentication.  As you’ll notice, it asks me for some information:

Blogger is asking for your nickname, which is what will show up as your name in the comments.  As a test, I’ve given “This shows up” as my nickname.

Success!  Now I can control what nickname shows up when I comment.   Note, if you choose “Log in and Trust” this will set your nickname permanently unless you revoke Blogger’s trust, which you can do by managing your profiles at http://openid.claimid.com.

But with the prepended http://, it will work:

Hope this helps!

For these reasons, we’re following Chris’ work on DiSo – Distributed Social Networking Applications.   He’s working with Will Norris and Steve Ivy to create a framework for applications that leverages open identity standards – OpenID, the emergent OAuth.  This framework will ensure distributed, trustworthy data and identity portability between applications, ensuring what some might call distributed social networking.

In the past few months, there’s been much talk about this idea of distributed social networking: Google’s super-standard OpenSocial, Facebook’s Platform – we’re seeing the possibilities (and the downsides) of opening up our stacks.  Of course, to the major players, this is a new land-grab; this is why Messina and co’s approach is so attractive.  Our data, the stuff that I choose to share, should be free and portable.

Needless to say, we’re paying close attention to the work on OAuth and DiSo – hopefully in a few weeks we’ll have some interesting announcements regarding our brainstorming for feature development using these new methods.  This is very powerful stuff, and we’re glad to see it coming to life.

The feeling in the air has been more electric than in the past. There’s a definite energy in this space. We’ve had some great discussions about potential partnerships and features we think people will really love. The developer community is excited about the new specs announced and the next few months look very rich with opportunity for collaboration.

People representing the Open Social Web (claimID, Plaxo, Citizen Agency) and those big guys who run The Infrastructure (Google, MS, Yahoo, AOL, Verisign) were all sitting and talking about how we’re going to make it work for the user. It’s very refreshing and a testament to how far we’ve come in the last few years.

The two specs announced here at IIW2007b were the OpenID 2.0 spec and the OAuth Core 1.0 spec. These two specs are important because adoption of OpenID is climbing quickly (a tipping point very soon) and OAuth is a consolidation of 6-7 existing authorization protocols. Both are poised to generate lots of interest.

There was much discussion around how these two would play well with each other. It rather dominated the discussion for a couple days or so. Find a picture of the schedule wall.

The general consensus is that users will now have the tools to better take their own data and define their permissions as they move around the internet. With an underbelly of discussion around Facebook’s new offer of a global opt-out for Beacon, this conference represents the future of how this stuff is all going to work *for us* instead of *for advertisers*.

Good stuff all around. One of the best conferences I’ve ever been to and the reason I keep deciding to come back – real work happens with the people who understand what Open means.

If you’ve got a Blogspot blog and would like to enable OpenID commenting, you’ll need to log in to your account at http://draft.blogger.com (hat tip David Recordon).  Once there, you can enable OpenID commenting by browsing to Settings -> Comments, and enable “Registered Users.”  One very clear drawback here is that by placing your blog in “Registered” mode, you may no longer accept Anonymous comments.  That should be fixed by the Blogger team; OpenID commenting exists within an ecosystem that values the spectrum of identity, from anonymity to full-verification.