internet identity initiatives internet identity
play

Internet Identity Initiatives Internet Identity Initiatives RL - PowerPoint PPT Presentation

Sep 16, 2023 •210 likes •395 views

Internet Identity Initiatives Internet Identity Initiatives RL Bob Morgan University of Washington and Internet2 EMC2 Mlaga, S pain October 2006 Topics Topics Internet identity buzzwords/ proj ects: user-centric, sxip, dix,

  1. Internet Identity Initiatives Internet Identity Initiatives RL “ Bob” Morgan University of Washington and Internet2 EMC2 Málaga, S pain October 2006

  2. Topics Topics ● Internet identity buzzwords/ proj ects: user-centric, sxip, dix, openid, lid, yadis, xri/ xdi, i-names, infocard, cardspace, identity metasystem, saml, ws- federation, ws-trust, liberty, id-wsf, shibboleth, adfs, osis, heraldry, bandit, higgins, isso, saml-lite, identity schemas, idcommons ● Internet identity and institutional identity 2

  3. 3

  4. Internet identity Internet identity vast convergence of identity interests the “ read/ write web” implies authentication everywhere ordinary people as resource owners: blogs, wikis, photos/ music, RS S , social networks, blogspam, IM so ordinary people face many many logins as users, and have to do user management on their blogs “ identity gang” discussion since early 2005 “ identity” is not j ust authentication not even “ attributes” , but everything “ associated with me” across myriad services, media, modalities, ... 4

  5. Whose identity? Whose identity? personal privacy, personal control: institutions of all kinds are the bad guys (including us!), since institutions claim ownership of users' “ identities” doing something about phishing ... hence reducing password exposure many technical/ social solutions being promoted as “ user- centric” , meaning what exactly? 5

  6. What is “ user-centric” ? What is “ user-centric” ? many not necessarily related characteristics identity rendered visible/ manipulable to user IdP/ S P as easy to install as blog package (or comes with) can use your “ personal” URL as identifier decentralized, i.e. no institutional power player all data passes through browser no backdoor data exchanges between servers user sees/ approves exchanges identity data asserted by user, controlled by user on client machine, or via online “ identity agent” 6

  7. OpenID OpenID see http:/ / openid.net/ one example of “ user-centric” system developed in fight against blogspam so blog commentors can be authenticated user identifier is your URL (you have one, right? ) provide link to authn site via your URL mechanism/ assurance similar to email signup loop can be installed without root/ webserver access operations crypto-protected, trust management is up to the participating parties (aka “ reputation” ) anti-S AML? anti-XML ... 7

  8. OpenID status OpenID status version 1.x spreading through blogosphere, VeriS ign labs promoting version 2.0 almost finalized includes XRI resolution, YADIS moving into attribute exchange ... “ bounties” for app integration ... has subsumed other S S O approaches ? LID, S XiP, Passel, etc 8

  9. Information cards Information cards Microsoft-promoted, much industry uptake formerly InfoCard, aka “ identity metasystem” MS “ identity selector” is CardS pace, in Vista other selectors for other platforms, eg Higgins proj ect identities visible to users as “ cards” user-generated or third-party provided typical signon, credit card purchase cases protocol interactions are all WS -Trust to IdP and to S P solves “ where are you from” problem ... 9

  10. id-metasystem progress id-metasystem progress Cardspace in Vista betas MS promises support for XP, also available? will need AD IdP, IIS support, MS not saying much yet Other platforms Higgins proj ect focus of Java implementors though others are out there MacOS X implementation demonstrated though no official comment from Apple Mozilla/ Firefox? plugins happening Linux? RedHat participating ... 10

  11. Related projects Related projects OS IS collaboration among open-source identity-system implementors, principally re Cardspace-compatibility Microsoft “ open specification promise” Higgins general framework for identity management both client and server big support from IBM, Novell, other vendors Apache Heraldry OpenID support, maybe CardS pace? 11

  12. XRI/ XDI XRI/ XDI brand-new universal namespace resolvable, privacy-supporting, individual-centric, comprehensive, multi-registrar, etc specified via OAS IS “ link contracts” for DRM-style annotation on attributes service infrastructure being deployed Neustar acting as global root, many other registrars you can buy an “ i-name” now three initial services: contact, web forwarding, IS S O (i-name-enabled S S O, referenced in OpenID) 12

  13. Other related stuff Other related stuff WS -* WS -Trust being standardized in OAS IS only use case turns out to be CardS pace ... WS -Federation still not submitted ... S AML responding to “ user-centric” challenge new profile with no XML signature (for PHP ...) some lighter-weight implementations happening eg zxid.org 13

  14. identity schemas identity schemas http:/ / identityschemas.org/ every identity system redefines ... name, address, email, phone, homepage, ... Higgins common info-mgt requires schema mapping developing OWL framework for representation ad-hoc group assembled to help ... schema repository, tools not LDAP, but LDAP-clueful are participating organizing via idcommons process 14

  15. GYM GYM Microsoft “ live ID” is new Passport “ will be federated” , via WS -Fed Yahoo, Google both setting up to be IdPs to the world, using proprietary methods will they federate? unclear AOL longtime Liberty/ S AML participant ... 15

  16. Whither institutional identities? Whither institutional identities? the compliance driver for high-value/ formal relationships we need high-security, high-trust, high-value, high-cost, institutionally- controlled and -licensed, audited IdM the community driver to be a valuable and popular player in Internet identity communities we need easily obtained, portable, low- barrier, adaptable, multi-protocol IdM can we do both? institutional IdM will need to support many faces, interactions, partners, can't be protocol-evangelical 16

  17. HE as Identity Agent/ Consumer HE as Identity Agent/ Consumer what can institutional ID be used for? users might already be hooking in to OpenID using institutional authentication, URLs random sites of interest to users might be S AML S Ps? institutional ID linkage? all people coming to our institutions for any purpose already (will) have online identities can we make use of them? reputation? e-portfolio? 17

  18. Links Links http:/ / openid.net/ http:/ / cardspace.netfx3.com/ http:/ / osis.netmesh.org/ http:/ / identityschemas.org/ http:/ / wiki.idcommons.net/ http:/ / www.identitygang.org/ 18

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Internet Identity Workshop IIW 2008b Introduction Johannes Ernst NetMesh Inc.

Internet Identity Workshop IIW 2008b Introduction Johannes Ernst NetMesh Inc.

Internet Identity Workshop IIW 2008b Introduction Johannes Ernst NetMesh Inc. http://netmesh.info/jernst Johannes Ernst Modern Identity History Facebook Proprietary et al. Yadis URL-based Age of identity Card-based interop

1.01k views • 24 slides
Digital Identity as a Basis for Internet Security Infrastructure Ing. Radovan Semank

Digital Identity as a Basis for Internet Security Infrastructure Ing. Radovan Semank

Digital Identity as a Basis for Internet Security Infrastructure Ing. Radovan Semank Business Global Systems Agenda Introduction Unified User Management Public Key Infrastructure Digital Identity Conclusion Introduction

337 views • 12 slides
Intelligent Networks with a Owner-Centric design. ENABLING NEXT THE GENERATION INTERNET IoT is

Intelligent Networks with a Owner-Centric design. ENABLING NEXT THE GENERATION INTERNET IoT is

Intelligent Networks with a Owner-Centric design. ENABLING NEXT THE GENERATION INTERNET IoT is not a Cloud game It is a Network game What is IoT? Non-Legal Identity Legal Identity Legal Identity Non-Legal Identity IAM Legal Identity

248 views • 22 slides
Trust, Identity Management and GENI Dr. Ken Klingenstein, Senior Director, Middleware and

Trust, Identity Management and GENI Dr. Ken Klingenstein, Senior Director, Middleware and

Trust, Identity Management and GENI Dr. Ken Klingenstein, Senior Director, Middleware and Security, Internet2 Technologist, University of Colorado at Boulder Topics Internet identity update Technology updates ISOC, IETF Identity,

601 views • 23 slides
Robust Pseudonymous Identity for the Internet (A Practical Username & Password Replacement) S

Robust Pseudonymous Identity for the Internet (A Practical Username & Password Replacement) S

Robust Pseudonymous Identity for the Internet (A Practical Username & Password Replacement) S Q R L S ecure Q uick R eliable L ogin A simple, straightforward, open, intellectual property unencumbered, easily explained, provably secure,

898 views • 41 slides
Delivery of digital initiatives Case study: Deployment of Indias Biometric Digital Identity

Delivery of digital initiatives Case study: Deployment of Indias Biometric Digital Identity

Delivery of digital initiatives Case study: Deployment of Indias Biometric Digital Identity Platform Regis Bauchiere GM Identity Solutions, Australia Post Digital identity initiatives Learning from global experiences Chile

705 views • 19 slides
What is Blockpass? Blockpass is a blockchain identity protocol for the connected world - the

What is Blockpass? Blockpass is a blockchain identity protocol for the connected world - the

What is Blockpass? Blockpass is a blockchain identity protocol for the connected world - the Internet of Everything. The goal of Blockpass is global realization of identity for the Internet of Everything. Through the use of blockchain

300 views • 25 slides
Internet Identity and Access Control Dr Ken Klingenstein, Director, Middleware and Security,

Internet Identity and Access Control Dr Ken Klingenstein, Director, Middleware and Security,

Internet Identity and Access Control Dr Ken Klingenstein, Director, Middleware and Security, Internet2 Topics Whats happening/ impacts See lunch talk The Research Angle Researchers as users Security Researchers New

499 views • 10 slides
Claims- -Based Identity Layer Based Identity Layer Claims for the New Internet New

Claims- -Based Identity Layer Based Identity Layer Claims for the New Internet New

Claims- -Based Identity Layer Based Identity Layer Claims for the New Internet New Internet for the Slava Kavsan, Slava Kavsan, Partner Architect Partner Architect Microsoft Corp. Microsoft Corp. Topics Topics Need for

558 views • 19 slides
Identity Theft Identity Theft Identity theft occurs when your personal information is stolen

Identity Theft Identity Theft Identity theft occurs when your personal information is stolen

Identity Theft Identity Theft Identity theft occurs when your personal information is stolen and used without your knowledge to commit fraud or other crimes Identity theft can cost you time and money. Tips for Preventing Identity Theft

322 views • 10 slides
Some applications and protocols Internet Casino Identity-based encryption Commitment

Some applications and protocols Internet Casino Identity-based encryption Commitment

Some applications and protocols Internet Casino Identity-based encryption Commitment Functional encryption Shared coin flips Fully-homomorphic encryption APPLICATIONS AND PROTOCOLS Threshold cryptography Searchable

399 views • 11 slides
Don't Lose Sight of the Extended Enterprise Rod Rasmussen President/CTO Internet Identity

Don't Lose Sight of the Extended Enterprise Rod Rasmussen President/CTO Internet Identity

Don't Lose Sight of the Extended Enterprise Rod Rasmussen President/CTO Internet Identity 2011 Annual FIRST Conference Vienna, Austria Presenter: Rod Rasmussen Rod.Rasmussen<at>InternetIdentity.com President & CTO

704 views • 44 slides
Identity and Access Management Using Identity Management and Identity Governance to increase

Identity and Access Management Using Identity Management and Identity Governance to increase

Identity and Access Management Using Identity Management and Identity Governance to increase Automation and Security. Identity Management (IAM, IdM) defining and managing the roles and access privileges of individual network users, and the

2.89k views • 13 slides
Internet Memory and Life After Death The Nature of Identity Joanna J. Bryson Department of

Internet Memory and Life After Death The Nature of Identity Joanna J. Bryson Department of

Internet Memory and Life After Death The Nature of Identity Joanna J. Bryson Department of Computer Science University of Bath, United Kingdom The Nature of Memory Memory is not a library for comfort and entertainment. Memory is a

506 views • 19 slides
IDENTITY What is the Relationship Between Identity and the College Experience? What Role

IDENTITY What is the Relationship Between Identity and the College Experience? What Role

2/15/2019 Jordan Truex Agenda or Summary Layout The Road to SelfAuthorship NonTraditional Students Effective Interview Strategies Meeting the Student Where They Are IDENTITY What is the Relationship Between Identity and the

367 views • 10 slides
Scholarly Identity and Collaboration Dr Ken Klingenstein, Director, Middleware, Internet2 User

Scholarly Identity and Collaboration Dr Ken Klingenstein, Director, Middleware, Internet2 User

Scholarly Identity and Collaboration Dr Ken Klingenstein, Director, Middleware, Internet2 User Contexts Individuals do trusted Internet transactions in a variety of contexts The enterprise/federated use of identity well- established;

337 views • 13 slides
Variational methods for overlapping and non-overlapping stochastic block models Pierre Latouche

Variational methods for overlapping and non-overlapping stochastic block models Pierre Latouche

Variational methods for overlapping and non-overlapping stochastic block models Pierre Latouche Universit e Paris 1 Panth eon-Sorbonne Laboratoire SAMM MSTGA 2012 Pierre Latouche 1 Contents Introduction Real networks Graph

1.1k views • 56 slides
Jure Leskovec Machine Learning Department Carnegie Mellon University Currently: Soon: Today:

Jure Leskovec Machine Learning Department Carnegie Mellon University Currently: Soon: Today:

Jure Leskovec Machine Learning Department Carnegie Mellon University Currently: Soon: Today: L arge on line systems have detailed records of human activity On line communities: Facebook (64 million users, billion dollar

619 views • 24 slides
The ground truth about metadata and community detection in 8 8 7 7 8 8 networks 5 5 0 0

The ground truth about metadata and community detection in 8 8 7 7 8 8 networks 5 5 0 0

The ground truth about metadata and community detection in 8 8 7 7 8 8 networks 5 5 0 0 . . 8 8 0 0 6 6 1 1 : : Leto Peel v v i i X X Universit catholique de Louvain r r a a Community detectjon: Split nodes

664 views • 48 slides
CSE 158 Lecture 13 Web Mining and Recommender Systems Algorithms for advertising

CSE 158 Lecture 13 Web Mining and Recommender Systems Algorithms for advertising

CSE 158 Lecture 13 Web Mining and Recommender Systems Algorithms for advertising Classification Predicting which ads people click on might be a classification problem Will I click on this ad? Recommendation Or predicting which ads

1.43k views • 95 slides
Please feel free to include these slides in your own material, or modify them as you see fit. If

Please feel free to include these slides in your own material, or modify them as you see fit. If

S OCIAL M EDIA M INING Influence and Homophily Dear instructors/users of these slides: Please feel free to include these slides in your own material, or modify them as you see fit. If you decide to incorporate these slides into your

1.1k views • 73 slides
Dynamics of Social Networks Hamed Haddadi Hamed.haddadi@cl.cam.ac.uk 11th November 2010 Mphil

Dynamics of Social Networks Hamed Haddadi Hamed.haddadi@cl.cam.ac.uk 11th November 2010 Mphil

Dynamics of Social Networks Hamed Haddadi Hamed.haddadi@cl.cam.ac.uk 11th November 2010 Mphil ACS Network Architecture Wednesday, 10 November 2010 Social Networks Association != friendship Proximity != association Kinship=friendship

568 views • 17 slides
OPTIMIZE YOUR SALES & MARKETING FUNNEL Brand Advertising Events Email Marketing PR

OPTIMIZE YOUR SALES & MARKETING FUNNEL Brand Advertising Events Email Marketing PR

OPTIMIZE YOUR SALES & MARKETING FUNNEL Brand Advertising Events Email Marketing PR Webinars Sales Social Tradeshows Media HOW TO FIND PROBLEMS AND CREATE SOLUTIONS EVERY BUSINESS HAS A SALES FUNNEL Suspects Suspects

1.56k views • 97 slides
Albert-Lszl Barabsi with Emma K. Towlson, Michael Danziger, Sebastian Ruf, Louis Shekhtman

Albert-Lszl Barabsi with Emma K. Towlson, Michael Danziger, Sebastian Ruf, Louis Shekhtman

Network Science Class 3: Random Networks (Chapter 3 in textbook) Albert-Lszl Barabsi with Emma K. Towlson, Michael Danziger, Sebastian Ruf, Louis Shekhtman www.BarabasiLab.com Section 7 Real networks are supercritical Section 7

391 views • 16 slides

More recommend