[OpenID] My answers to the nominee questions

SitG Admin sysadmin at shadowsinthegarden.com
Fri Dec 12 08:50:36 UTC 2008 

>Who am I? I have long been passionate about privacy on the internet. 
>I'd love to see a world in which I can go anywhere and perfectly 
>control the information that comes with me.

For being the first candidate to include the word "privacy" in your 
posts to the list, you receive honorable mention. I'll endorse any 
candidate to make a strong case for privacy in their campaigning - 
which won't make much difference if they ALL do, but that's fine by 
me ;)

Here's a thought on controlling the information about us, using your 
Monster.com proposal:

>Currently, Monster.com doesn't use any federated login system. What 
>would it take for them to do so? Well, they are primarily interested 
>in matching employers and employees, so they probably want their 
>users' location, industry, and education level. They also like to 
>get distribution for their listings, so they'd like to be able to 
>distribute new job postings. Friend referrals are a powerful part of 
>recruiting, so a friend graph through which they can mine 
>connections is probably nice. If a system can provide that for them, 
>then I'm guessing they would go for it.

It would be nice if RP's had a "I'll scratch your back if you'll 
scratch mine." system by which they could send short messages to one 
another's networks - for instance, Monster.com would say "Hey Yahoo, 
please notify all the Friends of this user on your network, blah blah 
blah." and Yahoo could do so. Or not, at its option (but I'm assuming 
it would desire reciprocation) or respective users' options; but the 
"spam" UX is little different than your well-intending relatives 
happily feeding your E-mail address into an address-mining site while 
filling themselves with good feelings that they've just alerted you 
to a wonderful opportunity. The main difference is, Monster.com 
doesn't actually see a list of friends, so it can't abuse that 
information later on - though users, of course, can choose to visit 
Monster.com and learn more if they wish.

This would make the UX very OP-centric, which somewhat ruins the 
portability feature of OpenID; an expanded model (of which I've 
written before) would allow Monster.com to contact *any* 
participating RP and ask them to deliver a message the next time that 
user logged in (my mind boggles at the storage space this could 
require, but hard drive space is getting cheaper these days).

-Shade

Postscript: I'm a bit disturbed looking back at the wording of the 
world you'd love to see. I'm not sure if that was worded exactly as 
you meant it; if I walk up to a stranger I would like to do business 
with, I don't hand over a planner and say "Here's a list of my 
friends and their contact information."; I use my handy (futuristic) 
PDA to conveniently authorize *his* PDA to send business offers to 
mine, whereupon mine will automatically relay the messages to my 
friends on his behalf (all without bothering ME about it) - but just 
because I go somewhere, doesn't mean that all this information is 
necessarily "coming with me".
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20081212/16bd409c/attachment-0002.htm>

More information about the general mailing list