[OpenID] OpenID + Government

[Peter Williams]

There is just nothing in any of the documents that addresses openid, Chris. Ive seen the same documents many times before. They took the stuff from the e-auth program (for SAML1/SAML2), and dressed it all up again.

---------

By definition, conforming to the protection profile, the C&A framework, and the PIV-II registration criteria means that said class of openid claimants is declaring itself entirely equivalent - technically and policywise - to alternative assertion/signaling formats.

I just struggle to believe that the foundation is going to be able to manage a group of qualified auditors, guaging who is a trustworthy TTP under the federal assurance criteria.

But, evidently, whitehouse glitter and sparkle is attracting openid types, just like it attracted w3c in the mid 90s (producing the rdf-based privacy farce known as p3p). Im going to trust that the Faustian deal with you guys evidently did with Mephistopheles on the tradeoff between individual privacy and ease-of-use/convenience is a good one. Perhaps its proper, given the nature of that play, that I dont yet question for whom is it good?

________________________________
From: Chris Messina [chris.messina at gmail.com]
Sent: Monday, August 10, 2009 6:33 PM
To: Peter Williams
Cc: OpenID List
Subject: Re: [OpenID] OpenID + Government

The opportunity is to respond directly to the documents that describes the Identity/Trust Frameworks:

http://www.idmanagement.gov/documents/TrustFrameworkProviderAdoptionProcess.pdf
http://www.idmanagement.gov/documents/IdentitySchemeAdoptionProcess.pdf
http://www.idmanagement.gov/documents/PIV_IO_NonFed_Issuers_May2009.pdf

If you would like to make your views known, those which respond *specifically* to this document are likely have the most impact.

Chris

On Mon, Aug 10, 2009 at 6:28 PM, Peter Williams <pwilliams at rapattoni.com<mailto:pwilliams at rapattoni.com>> wrote:
"My proposal called on the federal government to run an OpenID server for all its agencies, mostly because I want the government to kick the habit of using commercial services for such essential information-age functions. (See my earlier blogs, Five projects for Open Source for America<http://broadcast.oreilly.com/2009/07/five-projects-for-open-source.html> and themes from the Personal Democracy Forum conference<http://radar.oreilly.com/2009/06/personal-democracy-forum-confe.html#miscellaneous>."



Michael S. Baum, Federal Certification Authority Liability and Policy 263-67 (1994).



http://www.verisign.com/repository/pubs/fca_liability.pdf











________________________________
From: openid-general-bounces at lists.openid.net<mailto:openid-general-bounces at lists.openid.net> [openid-general-bounces at lists.openid.net<mailto:openid-general-bounces at lists.openid.net>] On Behalf Of Chris Messina [chris.messina at gmail.com<mailto:chris.messina at gmail.com>]
Sent: Monday, August 10, 2009 5:41 PM
To: OpenID List
Subject: [OpenID] OpenID + Government

Well, I think the newscycles were tapped out with Facebook acquiring FriendFeed and launching real-time search as well as Google launched a new version of their search engine, but there was an important meeting in Washington today and ReadWriteWeb got the story:

http://www.readwriteweb.com/archives/us_government_reviewing_openid_to_log_in_to_some_g.php

Chris

--
Chris Messina
Open Web Advocate

Personal site: http://factoryjoe.com
Twitter: http://twitter.com/chrismessina

Diso Project: http://diso-project.org
OpenID Foundation: http://openid.net

This email is:   [ ] bloggable    [X] ask first   [ ] private
_______________________________________________
general mailing list
general at lists.openid.net<mailto:general at lists.openid.net>
http://lists.openid.net/mailman/listinfo/openid-general



--
Chris Messina
Open Web Advocate

Personal site: http://factoryjoe.com
Twitter: http://twitter.com/chrismessina

Diso Project: http://diso-project.org
OpenID Foundation: http://openid.net

This email is:   [ ] bloggable    [X] ask first   [ ] private