[OpenID] OWS-6 Support Request

Nat sakimura at gmail.com
Tue Dec 16 22:18:06 UTC 2008 

Yes. OAuth supports RSA-SHA1 even now.

=nat at TOKYO via iPhone

On 2008/12/17, at 7:08, Pat Cappelaere <pat at cappelaere.com> wrote:

> Nat,
>
> I was not aware of this and will look into that signature method.   
> This would be for both OpenID and OAuth I suppose right?
> Pat.
>
> On Dec 16, 2008, at 5:05 PM, Nat wrote:
>
>> This is very interesting. For Government related project, we should  
>> consider using RSA-SHA1 message signing which is expected in AuthN  
>> 2.1, as otherwise it cannot fulfil any of the NIST SP800-63 levels.
>>
>> It will also serve as a live example of the new method/feature.  
>> OIDF should definitely help this out.
>>
>> Nat Sakimura
>>
>> =nat at TOKYO via iPhone
>>
>> On 2008/12/17, at 5:03, David Recordon <drecordon at sixapart.com>  
>> wrote:
>>
>>> Hey Pat,
>>> I think it would be finding a few parties interested in building  
>>> the demonstration and then figuring out how the Foundation could  
>>> help to make that happen.  The Foundation should be helping to  
>>> push something forward versus being the gate keeper of starting  
>>> things.
>>>
>>> --David
>>>
>>> On Dec 16, 2008, at 11:23 AM, Pat Cappelaere wrote:
>>>
>>>> Brian,
>>>>
>>>> As you know we are trying to penetrate the NASA/DOD market and  
>>>> demonstrate OpenID+OAuth during an Open Geospatial Consortium  
>>>> demonstration in March as it could apply to automated workflows.   
>>>> We will have to write an engineering report describing our  
>>>> findings.  There are many companies looking at this.
>>>>
>>>> http://xml.coverpages.org/OGC-OWS6-Testbed.html
>>>>
>>>> We are trying to present a RESTful alternative to SOAP WS-*  
>>>> approach for a different market.
>>>>
>>>> The scenario we have to work with is different from what Google  
>>>> and Yahoo have in mind (SP=OP in their case) so I am not seeing  
>>>> any interest in opening up the working group to a new member to  
>>>> discuss the issue further and try to support us.
>>>>
>>>> If the OIDF were to be interested in this technology  
>>>> demonstration from a strategic perspective, what would be the  
>>>> next steps?
>>>>
>>>> Thanks,
>>>> Pat.
>>>>
>>>> On Dec 16, 2008, at 1:16 PM, Brian Kissel wrote:
>>>>
>>>>> Another item that I forgot to put on the list, we could  
>>>>> certainly benefit from a concerted community-wide effort to  
>>>>> identify and reach out to potentially receptive prospective RPs,  
>>>>> especially mainstream highly visible sites.  As some of you may  
>>>>> know, we created http://demand.openid.net/ to let OpenID users  
>>>>> vote for what sites you’d like to see OpenID-enabled.  The i 
>>>>> dea was that if we could create a groundswell of demand for  
>>>>> the top requested sites, we could use that data to encourage 
>>>>>  those sites to implement OpenID.  It got some initial inter 
>>>>> est and participation, but has died off lately.  It’s a bit  
>>>>> difficult since it requires installing a bookmarklet in your 
>>>>>  browser then remembering to use it.
>>>>>
>>>>> We can certainly continue to send emails to info@, support@,  
>>>>> webmaster@ but those usually don’t go anywhere.  Personally, 
>>>>>  I’ve been using my college and business networks along with 
>>>>>  LinkedIn, but that only get us so far.  But if the entire O 
>>>>> penID community could leverage our collective networks, that 
>>>>>  could be meaningful.  For example, it would be great to hav 
>>>>> e Wikipedia or Craigslist implement OpenID, but we need intr 
>>>>> oductions into the organizations.  I’ve personally been advo 
>>>>> cating that we target “content providers” – media companies  
>>>>> (film, tv, radio, music, newspapers, sports, etc.) and affin 
>>>>> ity groups (corp & academic alumni networks, clubs, boy scou 
>>>>> ts, AARP, trade associations, etc.).  BBC, 4-H, and AARP are 
>>>>>  already members of the OIDF.  These organizations should be 
>>>>>  more receptive since they want to register lots of users/me 
>>>>> mbers and make it easy for them to login, and longer term to 
>>>>>  possibly share social networking profile information.  Addi 
>>>>> tionally, their primary focus isn’t purely commerce, so we d 
>>>>> on’t have to have all the aspects of commerce worked out to  
>>>>> be of immediate value to them.
>>>>>
>>>>> So if anyone on this list knows people at companies or  
>>>>> organizations that should be implementing OpenID, contact them.   
>>>>> Let them know about the OpenID Foundation and our website.   
>>>>> Encourage them to join the Foundation and/or a mailing list to  
>>>>> monitor a topic of interest to them.  If they’d like to disc 
>>>>> uss joining the OpenID Foundation, have them contact any of  
>>>>> the members of the Membership committee: Dewitt Clinton, Gar 
>>>>> y Krall, David Recordon, or Brian Kissel (me).  If they want 
>>>>>  to participate in customer research, have them contact Joha 
>>>>> nnes Ernst, Raj Mata, Scott Kveton, or me.  You can see who  
>>>>> the members of the various committees are at: http://wiki.openid.net/OpenID_Foundation/Committees
>>>>>
>>>>> If they want to implement OpenID on their websites, point them  
>>>>> to the various open source libraries or service providers that  
>>>>> help companies with implementation.  And yes, this is self- 
>>>>> serving for JanRain since we do both, but feel free to point  
>>>>> them to any resources that you think can help them.  For OpenID  
>>>>> to expand its relevance beyond tech savvy users and user  
>>>>> generated content applications, we need broader mainstream RP  
>>>>> adoption.  I’m hopeful that as soon as an average person can 
>>>>>  think of a dozen or more sites where they can use their Ope 
>>>>> nID, we’ll start to reach an inflection point where users st 
>>>>> art to demand this kind of user experience.
>>>>>
>>>>> Again, we welcome everyone who is interested to join the  
>>>>> marketing mailing list to provide your suggestions and feedback.
>>>>>
>>>>> Cheers,
>>>>>
>>>>> Brian
>>>>> ==============
>>>>> Brian Kissel
>>>>> Cell: 503.866.4424
>>>>> Fax: 503.296.5502
>>>>>
>>>>> From: Chris Messina [mailto:chris.messina at gmail.com]
>>>>> Sent: Monday, December 15, 2008 11:16 PM
>>>>> To: Brian Kissel
>>>>> Cc: OpenID List; board at openid.net; Zac Bjelogrlic
>>>>> Subject: Re: Status of the Customer Research Committee (Was: Re:  
>>>>> [OpenID] Several Questions for the Current & Future Board)
>>>>>
>>>>> Thanks Brian. This is a great start!
>>>>>
>>>>> I've recorded these on the wiki for now:
>>>>>
>>>>> https://openid.pbwiki.com/Marketing
>>>>>
>>>>> Would definitely be great to start thinking about planning  
>>>>> specific agenda/action items and tasks to take these on in 2009!
>>>>>
>>>>> Chris
>>>>> On Mon, Dec 15, 2008 at 8:29 PM, Brian Kissel  
>>>>> <bkissel at janrain.com> wrote:
>>>>> Agreed we need to get more systematic about this.  It'
>>>>>
>>> _______________________________________________
>>> general mailing list
>>> general at openid.net
>>> http://openid.net/mailman/listinfo/general
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20081217/9bb27070/attachment-0002.htm>

More information about the general mailing list