MikeBD Musings of a 24/6 techie (Software Architect / Technical Manager) family guy struggling to find meaning, balance and strong design / implementation supporting excellent user experiences.

11Feb/070

It’s time to embrace open distributed / federated identification (authentication)

Updated: Feb 3, 2008...

Yahoo has joined the OpenID universe: http://openid.yahoo.com/, use your existing Yahoo or Flickr account to login to OpenID enabled sites.

Originally posted on: Feb 11, 2007...

I won't rant about all the usernames and passwords I need to keep track of for my personal and professional use because I can already see everyone nodding.

In the past, Microsoft tried to solve this problem for the masses with their Passport authentication service (now known as Windows Live ID). The idea is that you maintain one user ID and password with a trusted site and other sites can delegate user logins to the trusted site. Anyone with a hotmail account automatically had a passport. The problem here was it was Microsoft and they were not able to overcome the paranoia / distrust / hate / etc... that many in the industry have for them. Also, if I recall correctly from when I considered adding this feature to Ticketmaster's ReserveAmerica.com, Microsoft was charging for the use of their API. However, many took notice and decided that a consortium of industry leaders should collaborate on such a service.

Continue reading...
  • Digg
  • del.icio.us
  • Facebook
  • Twitter
  • Technorati
  • email
  • Print
  • PDF
  • StumbleUpon
  • Yahoo! Buzz
  • Google Bookmarks
  • DotNetKicks
  • FriendFeed
  • Google Buzz
  • Live
  • Netvibes
  • Slashdot
  • Add to favorites
9Oct/060

Online Privacy

In my last post I pledged to overthrow the evil FalconPain from his perch atop the Metroid Prime Pinball leaderboard.

My battle strategy, should I want to include social engineering tactics in my warplan could have started with a quick web search. How easy the mighty can fall. In less than 5 minutes I had FP's real name and birthdate on my screen. That needed cross checking for verification but was very much contextually valid and I would say 85%+ likely to be the target of my conquest.

PEOPLE - WATCH WHAT YOU POST ONLINE. Sorry for screaming. But geez...

I like to play Canasta on Yahoo Games (let me know if you play) and as a public service I often warn people when they are revealing too much online. One unsuspecting opponent was shocked when I asked her how disturbing the noise was from the local airport. Her id included a part that I guessed was her zipcode. And so it was. I found a map of her region and narrowed her location to within a small area in < 10 minutes.

This day of personal publishing / blogging / online resumes has its advantages, but we must remember to not go over the line. At the very least, never display your birthdate in a public profile. Identity thieves and other scoundrels are on the prowl...

Not to mention, pinball wizards on a mission. So BEWARE!

  • Digg
  • del.icio.us
  • Facebook
  • Twitter
  • Technorati
  • email
  • Print
  • PDF
  • StumbleUpon
  • Yahoo! Buzz
  • Google Bookmarks
  • DotNetKicks
  • FriendFeed
  • Google Buzz
  • Live
  • Netvibes
  • Slashdot
  • Add to favorites
Tagged as: No Comments