The big news out of the RSA conference is the announcement of a "marriage" of OpenID and CardSpace. For those that aren't up on the inner workings of user-centric identity: CardSpace is Microsoft's instantiation of the InfoCards Meta-system that Kim Cameron proposed several years ago; OpenID is a URL-centric identity protocol that has grown up with the grassroots nurturing of players like Sxip Identity, JanRain, Verisign, Cordance, Six Apart, and Netmesh.
Digital ID World
[Ed. The OpenID protocol is rapidly gaining momentum in the social networking arena.
The RSA conference always serves as one of the two or three windows that the identity community uses to launch new products (the other two being Burton Group's Catalyst and our own Digital ID World conference). As such, the weeks leading up to RSA always feature a spate of new company briefings.
I first met Brian Oberkirch at the Syndicate conference in San Francisco in December of 2005. At the time, I'm quite sure that he didn't know of my connection to Digital ID World, or identity in general.
Every now and then a technical disagreement betrays the state of a marketplace. That phenomenon is currently happening in the user-centric identity trenches.
[Note: Eric is having trouble posting today, and I have posted this article for him. So "I" refers to Eric in this article.
Having graded our identity predictions from last year, its time to venture forth into the uncharted waters of 2007. The following are our divinations on what is to come:1.
At the beginning of 2006, we posted a list of predictions over on Digital ID World for the upcoming year in identity. In keeping with our historical tradition, I'd like to grade our past performance prior to looking toward the future.
[Ed. We have recently seen a rise in interest in several new identity technologies.
Back in the early mists of identity time, "identity management" was referred to as "AAA" (triple A) -- authentication, access control and authorization. Over time, AAA evolved to mean authentication, authorization and acountability.
Two recent releases in the federated identity marketplace caught my eye -- and may speak to the development of federation deployments:1. Ping Identity announced that the U.
Network Access Control ("NAC") was an emerging focus at last September's Digital ID World conference. The reason for including NAC in the agenda arose from my belief (fueled by talks with enterprises) that network-layer identity management was an area that is fast becoming an important piece of enterprise architecture.
Two things have caught my eye recently (both on Dan Farber's blog):1. Mashery launching: an API management service that offers, among other, things "access control.
Paul Murphy has been writing about identity management over on his Managing Linux blog. His basic thesis is that while most CIOs now are putting "identity management" as a top priority, most also can't tell you what "identity management" is.
Way back in the early mists of identity time, I was speaking with Bryan Field-Elliott (then CTO of Ping Identity) about the earliest drafts of the Liberty Alliance protocols, and whether or not they could be used for what we then called "internet identity." (Note: "internet identity" is now called "URL-based identity," or even more broadly and less accurately "user-centric identity.