IIW - User contributions [en]

Attendees ii8

2009-05-08T04:44:16Z

Axel Nennker:

[http://iiw8.eventbrite.com/ Here is the list of who is coming]

Attendees ii8

2009-03-26T09:31:34Z

Axel Nennker: New page: * [http://ignisvulpis.blogspot.com/ Axel Nennker]; [http://www.laboratories.telekom.com/ipws/English/Pages/Willkommen.aspx Deutsche Telekom, Laboratories]; [http://code.google.com/p/openin...

* [http://ignisvulpis.blogspot.com/ Axel Nennker]; [http://www.laboratories.telekom.com/ipws/English/Pages/Willkommen.aspx Deutsche Telekom, Laboratories]; [http://code.google.com/p/openinfocard/ openinfocard]; [http://www.codeplex.com/IdentitySelector CardSpace for Firefox]; [http://informationcard.net/governing-board#Axel Information Card Foundation]; [https://www.xing.com/app/network?op=home;tab=2;name=informationcard XING Information Card Gruppe]

XRDS for OpenID and Information Cards

2008-12-03T21:54:40Z

Axel Nennker:

Convener & Notes-taker: Axel Nennker

'''Technology Discussed/Considered:'''

XRDS, Open ID, Information Cards

'''Discussion notes, key understandings, outstanding questions, observations, and, if appropriate to this discussion: action items, next steps:
'''

We should use XRDS (Simple) to let a RelyingParty/OpenIdConsumer/Resource/Service express its needs and the services it provides.

Something along these lines is describes here http://ignisvulpis.blogspot.com/2008/10/information-cards-with-xrds.html

* The relying party (https://xmldap.org/relyingparty/) provides a HTML LINK-rel element in the html code.
* A browser extension finds the LINK element and downloads the XRDS document the LINK points to.
* The browser extension looks for service types it is willing to support
* In the case of Information Cards it retrieve the "policy" of the relyingparty
* If the user now chooses to start the card selector the applicability of a card is governed by the RP policy.
* After the security token has been generated it is send to the RP service endpoint listed in the XRDS document.
This transfers the user's credentials/claims aka "security token" to the RP.

What we should agree on in this session is a set of XRDS types that are suitable for OpenId.

First here are the things for Information Cards:

* http://infocardfoundation.org/policy/1.0/login Describes where the policy can be retrieved.
The scheme in the Uri part of this services SHOULD be https.
* http://infocardfoundation.org/service/1.0/login Describes where the security token can be posted to.
The scheme in the Uri part of this services SHOULD be https.

What is needed for OpenId?

* http://openid.org/policy/1.0/login
* http://openid.org/service/1.0/login

If these two XRDS types are accepted what is the "policy"?

Iiw2008b XRDS for OpenId and Information Cards and other "Services"

2008-11-12T14:39:37Z

Axel Nennker: A proposal to use XRDS for OpenId and Information Cards

We should use XRDS (Simple) to let a RelyingParty/OpenIdConsumer/Resource/Service express its needs and the services it provides.

Something along these lines is describes here http://ignisvulpis.blogspot.com/2008/10/information-cards-with-xrds.html
* The relying party (https://xmldap.org/relyingparty/) provides a HTML LINK-rel element in the html code.
* A browser extension finds the LINK element and downloads the [https://xmldap.org/relyingparty/?xmldap_rp.xrds XRDS] document the LINK points to.
* The browser extension looks for service types it is willing to support
* In the case of Information Cards it retrieve the "policy" of the relyingparty
* If the user now chooses to start the card selector the applicability of a card is governed by the RP policy.
* After the security token has been generated it is send to the RP service endpoint listed in the XRDS document.<br/>This transfers the user's credentials/claims aka "security token" to the RP.

What we should agree on in this session is a set of XRDS types that are suitable for OpenId.

First here are the things for Information Cards:
* http://infocardfoundation.org/policy/1.0/login Describes where the policy can be retrieved.<br/>The scheme in the Uri part of this services SHOULD be https.
* http://infocardfoundation.org/service/1.0/login Describes where the security token can be posted to.<br/>The scheme in the Uri part of this services SHOULD be https.

What is needed for OpenId?
* http://openid.org/policy/1.0/login
* http://openid.org/service/1.0/login

If these two XRDS types are accepted what is the "policy"?

Proposed Topics 08b

2008-11-12T14:13:47Z

Axel Nennker:

Please list proposed topics here:

* IDTBD
* ID-Legal: working with the legal community and legislative process
* Integration of OpenID and Information Cards
* The Identity Reference Model and the Higgins Data Model
* R-Buttons and R-Cards: Designing Real VRM
* Proxying Assurance
* Integrating Facebook Connect
* Visual Mapping the major projects (overview exercise)
* XRDS for OpenId and Information Cards and other "Services"

Iiw2008b

2008-11-12T14:11:28Z

Axel Nennker:

[http://www.windley.com/events/iiw2008b/announcement.shtml The announcement is up]

[http://www.windley.com/events/iiw2008b/register.shtml registration]

[[Monday 08b]]

[[Attendees 08b]]

[[Sponsors 08b]]

[[Proposed Topics 08b]]

== What Is This Workshop About? ==

The heart of the workshop is a practical idealism in working towards the shared vision of a decentralized, user-oriented identity layer for the Internet.

Because the web was built around "pages", no tools or standards were created to control how the information about you was collected or used. At the Internet Identity Workshop we bring the people creating these tools and standards so people can safely manage their online identity and control their personal data.

It is not about any one technology - rather it is a place to discuss multiple interoperating (and possible competing) projects, standards, and networks for identity, data sharing, and reputation.

As part of Identity Commons, the Internet Identity Workshop creates opportunities for both innovators and competitors. We provide an open forum for both the big guys and the small fry to come together in a safe and balanced space.

There are a wide range of projects in the community:
# Open conceptual, community, and governance models.
# Open standards and protocols.
# Open source projects.
# Commercial projects.
# Projects to address social and legal implications of these technologies.
# Efforts to rethink the business models and opportunities available with these new technologies.

User-centric identity is the ability:
* To use one's identifier(s) on more than one site
* To control who sees what information about you
* To selectively share presence and profile information
* To maintain multiple identities and personas in the contexts you wish
* To aggregate attention, navigation, and purchase history from the sites and communities you frequent
* To move and share your personal data, relationships, documents, and other publications as you wish

All of the following are active topic areas at each IIW:
* Improving Existing Legal Constructs
** Privacy Policies
** Terms of Service
* Creating New Legal Constructs
** Limited Liability Personas
** Identity Rights Agreements
* Creating New Business Models
** Identity Oracle
** I-Brokers
* New Citizenship Perspectives
** Activism
** Community Event Coordination
** Community Identity and Data Sharing

== Who Participates in IIW? ==
Innovators who participate in IIW include the leaders of:

=== Open Standards ===
* [[OpenID]]
* [http://jkemp.net/docs/saml-overview.html SAML]
* [[Liberty Alliance ID-WSF]]
* [http://en.wikipedia.org/wiki/WS-Trust WS-Trust]
* [http://oauth.net OAuth]
* [[XRI|OASIS XRI]]
* [[XDI|OASIS XDI]]
* [http://xrds-simple.net XRDS-Simple]

=== Standards Interop ===
* [http://osis.idcommons.net OSIS]
* [[Concordia]]

=== Major [http://en.wikipedia.org/wiki/Information_Card Information Card] Projects ===
* [http://en.wikipedia.org/wiki/Windows_CardSpace CardSpace]
* [http://www.eclipse.org/higgins Higgins Project]
* [http://bandit-project.org Bandit]
* [http://pamelaproject.com The Pamela Project] Relying Party Code
* [https://xmldap.org/ XMLDAP (The first Java Information Card library)] Relying Party Code and Security Token Server code

=== Browser Based Card Selectors ===
* [http://www.eclipse.org/higgins/ Higgins Project] (offers both browser-based and native card selectors)
* [http://code.google.com/p/openinfocard/ openinfocard]

=== Multi-Protocol Open Source Projects ===
* [http://www.eclipse.org/higgins/ Higgins Project] (supports Information Cards, OpenID, SAML, XRI, XDI)
* [http://iiw.idcommons.net/index.php/Shibboleth Shibboleth]
* [http://iiw.idcommons.net/index.php/CAS CAS] (supports OpenID, SAML, prototype Information Card support)
* [http://bandit-project.org Bandit]
* [http://opensso.org/ OpenSSO] (supports SAML, Liberty ID-FF/ID-WSF, WS-Federation, Information Cards, OpenID)

=== Industry Consortia ===
* [http://wiki.idcommons.net Identity Commons]
* [http://www.projectliberty.org/liberty/about/history Liberty Alliance]
* [http://www.oasis-idtrust.org/ OASIS ID Trust]
* ITU-T Focus Group on IdM and subsequent activity.

=== Groups Addressing Legal/Social/Business Issues ===
* [http://iiw.idcommons.net/index.php/Liberty PPEG Privacy Summits Liberty PPEG Privacy Summits]
* [http://projectvrm.org Project VRM]
* [http://www.projectliberty.org/liberty/strategic_initiatives/identity_assurance Liberty Alliance Identity Assurance Framework]
* [http://www.projectliberty.org/liberty/strategic_initiatives/identity_governance Liberty Alliance Identity Governance Framework]

Iiw2008b

2008-10-30T21:28:39Z

Axel Nennker: /* Major [http://en.wikipedia.org/wiki/Information_Card Information Card] Projects */

DATES ARE SET - NOVEMBER 10-12

[http://www.windley.com/events/iiw2008b/announcement.shtml The announcement is up]

[http://www.windley.com/events/iiw2008b/register.shtml registration]

[[Attendees 08b]]

[[Sponsors 08b]]

[[Proposed Topics 08b]]

== What Is This Workshop About? ==

The heart of the workshop is a practical idealism in working towards the shared vision of a decentralized, user-oriented identity layer for the Internet.

Because the web was built around "pages", no tools or standards were created to control how the information about you was collected or used. At the Internet Identity Workshop we bring the people creating these tools and standards so people can safely manage their online identity and control their personal data.

It is not about any one technology - rather it is a place to discuss multiple interoperating (and possible competing) projects, standards, and networks for identity, data sharing, and reputation.

As part of Identity Commons, the Internet Identity Workshop creates opportunities for both innovators and competitors. We provide an open forum for both the big guys and the small fry to come together in a safe and balanced space.

There are a wide range of projects in the community:
# Open conceptual, community, and governance models.
# Open standards and protocols.
# Open source projects.
# Commercial projects.
# Projects to address social and legal implications of these technologies.
# Efforts to rethink the business models and opportunities available with these new technologies.

User-centric identity is the ability:
* To use one's identifier(s) on more than one site
* To control who sees what information about you
* To selectively share presence and profile information
* To maintain multiple identities and personas in the contexts you wish
* To aggregate attention, navigation, and purchase history from the sites and communities you frequent
* To move and share your personal data, relationships, documents, and other publications as you wish

All of the following are active topic areas at each IIW:
* Improving Existing Legal Constructs
** Privacy Policies
** Terms of Service
* Creating New Legal Constructs
** Limited Liability Personas
** Identity Rights Agreements
* Creating New Business Models
** Identity Oracle
** I-Brokers
* New Citizenship Perspectives
** Activism
** Community Event Coordination
** Community Identity and Data Sharing

== Who Participates in IIW? ==
Innovators who participate in IIW include the leaders of:

=== Open Standards ===
* [[OpenID]]
* [http://jkemp.net/docs/saml-overview.html SAML]
* [[Liberty Alliance ID-WSF]]
* [http://en.wikipedia.org/wiki/WS-Trust WS-Trust]
* [http://oauth.net OAuth]
* [[XRI|OASIS XRI]]
* [[XDI|OASIS XDI]]
* [http://xrds-simple.net XRDS-Simple]

=== Standards Interop ===
* [http://osis.idcommons.net OSIS]
* [[Concordia]]

=== Major [http://en.wikipedia.org/wiki/Information_Card Information Card] Projects ===
* [http://en.wikipedia.org/wiki/Windows_CardSpace CardSpace]
* [http://www.eclipse.org/higgins Higgins Project]
* [http://bandit-project.org Bandit]
* [http://pamelaproject.com The Pamela Project] Relying Party Code
* [https://xmldap.org/ The first Java Information Card library] Relying Party Code and Security Token Server code

=== Browser Based Card Selectors ===
* [http://www.eclipse.org/higgins/ Higgins Project] (offers both browser-based and native card selectors)
* [http://code.google.com/p/openinfocard/ openinfocard]

=== Multi-Protocol Open Source Projects ===
* [http://www.eclipse.org/higgins/ Higgins Project] (supports Information Cards, OpenID, SAML, XRI, XDI)
* [http://iiw.idcommons.net/index.php/Shibboleth Shibboleth]
* [http://iiw.idcommons.net/index.php/CAS CAS] (supports OpenID, SAML, prototype Information Card support)
* [http://bandit-project.org Bandit]
* [http://opensso.org/ OpenSSO] (supports SAML, Liberty ID-FF/ID-WSF, WS-Federation, Information Cards, OpenID)

=== Industry Consortia ===
* [http://wiki.idcommons.net Identity Commons]
* [http://www.projectliberty.org/liberty/about/history Liberty Alliance]
* [http://www.oasis-idtrust.org/ OASIS ID Trust]
* ITU-T Focus Group on IdM and subsequent activity.

=== Groups Addressing Legal/Social/Business Issues ===
* [http://iiw.idcommons.net/index.php/Liberty PPEG Privacy Summits Liberty PPEG Privacy Summits]
* [http://projectvrm.org Project VRM]
* [http://www.projectliberty.org/liberty/strategic_initiatives/identity_assurance Liberty Alliance Identity Assurance Framework]
* [http://www.projectliberty.org/liberty/strategic_initiatives/identity_governance Liberty Alliance Identity Governance Framework]

Attendees 08b

2008-10-29T22:40:34Z

Axel Nennker:

You will find the list of attendees (who voluntarily list themselves) here in the coming weeks.

'''THIS LIST DOES NOT REFLECT THE ACTUAL NUMBER OF ATTENDEES. It is much higher.''' Attendees voluntarily list themselves here.

* [http://henrik.biering.dk Henrik Biering], [http://www.netamia.com Netamia]
* [http://blog.dannyburkes.com Danny Burkes], [http://rejaw.com Rejaw]
* [http://www.sbw.org Steve Williams], [http://digg.com Digg]
* Judi Clark
* [http://www.8bitkid.com Max Engel], [http://developer.myspace.com MySpace]
* [http://self-issued.info Mike Jones], Microsoft
* [http://blog.wachob.com Gabe Wachob]
* [http://www.meristic.com Mary Ruddy], Meristic
* [http://www.schwab.com Cliff Gerrish], Charles Schwab
* [http://xri.net/=drummond Drummond Reed], Cordance, Parity, OASIS XRI & XDI TCs
* Jim Fenton, [http://cisco.com Cisco]
* [http://johnpanzer.com John Panzer], [http://www.google.com Google]
* [http://ignisvulpis.blogspot.com/ Axel Nennker], [http://code.google.com/p/openinfocard/ openinfocard], [http://www.codeplex.com/IdentitySelector CardSpace for Firefox], [http://www.laboratories.telekom.com/ipws/English/LabsGeneral/Pages/default.aspx Deutsche Telekom Laboratories], [http://informationcard.net/governing-board#Axel Information Card Foundation]

Attendees 2008a

2008-05-07T08:42:13Z

Axel Nennker:

Please put your name here if you are attending.
''There are more people attending then currently on this list as stating publicly one is coming is voluntary. We normally have 150 people attending the workshop.''

* [http://www.identitywoman.net Kaliya Young Hamlin]
* [http://henrik.biering.dk Henrik Biering], [http://www.netamia.com Netamia]
* [http://idmjournal.com Dave Kearns], [http://vquill.com The Virtual Quill]
* [http://xri.net Drummond Reed], [http://www.parityinc.com Parity], [http://www.cordance.net Cordance], [http://www.oasis-open.org/committees/xri OASIS XRI TC], [http://www.oasis-open.org/committees/xdi OASIS XDI TC]
* [http://practicalid.blogspot.com George Fletcher], [http://www.aol.com AOL]
* [http://connectid.blogspot.com Paul Madsen], [http://www.ntt.co.jp/index_e.html NTT]
* [http://claimid.com/gammydodger Gam Dias], [http://www.realtea.net Blog], [http://www.xpollen.org personal_rfp_thing]
* [http://www.8bitkid.com Max Engel], [http://developer.yahoo.com/ Yahoo! Application Platform]
* Bob Snodgrass, [http://www.net2community.com/ net2Community]
* [http://martin.atkins.me.uk/ Martin Atkins]
* [http://subjectivity.com/ Kermit Snelson]
* [http://staff.washington.edu/rlmorgan/ RL "Bob" Morgan],[http://www.washington.edu/ University of Washington], [http://middleware.internet2.edu/ Internet2]
* [http://linkedin.com/in/charlesandres Charles Andres] [http://www.parityinc.com Parity] Information Card Foundation
* [http://drstarcat.com Ryan Janssen], [http://www.angelsoft.net Angelosoft]
* [http://et.cairene.net Robert W. Anderson], [http://www.digipede.net Digipede]
* Vince Wu, Google Inc.
* Marty Schleiff, [http://www.boeing.com Boeing]
* [http://identity20.com/ Dick Hardt]
* Mary Ruddy
* Alexis Bor
* [http://www.pgp.com/ Jon Callas]
* =peterd
* [http://johnpanzer.com John Panzer] (=john.panzer), Google
* [http://ignisvulpis.blogspot.com Axel Nennker], [http://code.google.com/p/openinfocard/ openinfocard], [http://www.codeplex.com/IdentitySelector CardSpace4Firefox], [http://www.laboratories.telekom.com/ipws/English/Pages/Willkommen.aspx Deutsche Telekom Laboratories], T-Systems

=== Regrets ===

* [http://factoryjoe.com Chris Messina] -- I'll be in Vegas at Community 2.0 talking about [http://diso-project.org DiSo]!