Enterprise Concerns

McGovern, James F (HTSC, IT) James.McGovern at thehartford.com
Tue May 29 20:33:21 UTC 2007


Been silently observing many of the email exchanges over the last couple of weeks and from an end-customer perspective I am somewhat concerned. Some of the general themes I have observed are:

1. Too much focus on breaking compatibility with OpenID 1.1. While you have had some success, now is the time to break things. It is more important to get to the right long term approach earlier in the lifecycle.

2. Too much focus on being unphishable. While this is important and foward progress should happen, I don't think that this should be the only focus. I salute Kim Cameron for getting folks off their butt to solve this problem though.

3. Publish, publish, publish. Stop iterating and start publishing. The draft is way overdue and folks will not pay attention to a specification where velocity of change is occuring this frequently.

4. Tackle and discuss issues head on. I have seen several valid issues where folks way too easily dismissed the concern stating cliche phrases such as not in scope, someone else's problem, etc.

5. Not soliciting end user feedback. The observation is that there are lots of folks attempting to create a product around the spec and are simply iterating in order to be interoperable but haven't asked themselves is this what buyers of software actually desire. Many of the features that make this interesting seem to go ignored (e.g. attestation, authorization, support for XACML, etc)


*************************************************************************
This communication, including attachments, is
for the exclusive use of addressee and may contain proprietary,
confidential and/or privileged information.  If you are not the intended
recipient, any use, copying, disclosure, dissemination or distribution is
strictly prohibited.  If you are not the intended recipient, please notify
the sender immediately by return e-mail, delete this communication and
destroy all copies.
*************************************************************************




More information about the specs mailing list