[OpenID] general Digest, Vol 55, Issue 4

Don Thibeau don at oidf.org
Thu Mar 17 15:16:25 UTC 2011 


The OpenID Foundation's 2011 series of OpenID Summits focus on use cases and topics of interest to key developers, executives and analysts in the identity industry.

The next summit explores security and the user experience in open identity technologies.  It is co sponsored by Google and Symantec and will take place at 350 Ellis Street Mountain View, CA on the afternoon of May 2nd preceding the Internet Identity Workshop. We anticipate up to 70 attendees to include a variety of technical teams from Symantec and other Silicon Valley companies. The OIDF and co sponsors are reaching out for fresh perspectives from opinion leaders in the mobile platform, risk management and high assurance/multi factor identity space. We will post an Eventbrite notice soon. Send your suggestions for speakers, panels and topics to director at oidf.org 

While much attention has been directed at identity providers, we want to frame the OpenID security/user experience issues in a bucket we call relying parties best practices (RPBP)  

In December, The Open Identity Exchange (OIX) and the Center for Democracy and Technology (CDT) co sponsored a OpenID Policy Summit with invited experts from the American Bar Association's Committee on Identity and Harvard's Berkman Center for Law and the Internet. The May 2nd OpenID Security Summit is the technology counterpoint to the policy work done in Washington DC with the advocacy, academic and legal communities. The focus of both Policy and Security Summits are on RPBP (relying party best practices) a linchpin of any deployment or trust framework especially those involving government agencies. The user experience / security issues of RPBP are a key common denominator as they impact all stakeholders in the ecosystem and relies on OpenID for interoperability across a diverse set of use cases.

We plan to publish a briefing paper providing summaries of the presentations with feedback from the audience, links for more information, etc. The Security Summit paper will report on the Summit's discussion of RPBP (relying party best practices) and provide an overview of the security concerns of relying parties. In this way we hope to further the understanding of OpenID as it is today and how security concerns will impact OpenID as it evolves.

Don Thibeau
OpenID.net 
Executive Director

On Mar 16, 2011, at 8:00 AM, openid-general-request at lists.openid.net wrote:

> Send general mailing list submissions to
> 	openid-general at lists.openid.net
> 
> To subscribe or unsubscribe via the World Wide Web, visit
> 	http://lists.openid.net/mailman/listinfo/openid-general
> or, via email, send a message with subject or body 'help' to
> 	openid-general-request at lists.openid.net
> 
> You can reach the person managing the list at
> 	openid-general-owner at lists.openid.net
> 
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of general digest..."
> 
> 
> Today's Topics:
> 
>   1.  OpenID Retail and Security Summits (Don Thibeau)
>   2. Re:  OpenID Retail and Security Summits (Kick Willemse)
> 
> 
> ----------------------------------------------------------------------
> 
> Message: 1
> Date: Tue, 15 Mar 2011 08:06:13 -0400
> From: Don Thibeau <don at oidf.org>
> To: "general @ OpenID.com" <general at openid.net>
> Subject: [OpenID] OpenID Retail and Security Summits
> Message-ID: <9D807933-8D0A-44F1-9CEE-78A1F88B72C0 at oidf.org>
> Content-Type: text/plain; charset="windows-1252"
> 
> This is to thank the PayPal team for hosting last week's OpenID Retail Summit. 
> Andrew Nash and Ashish Jain, together with Brian Kissel organized and led the discussions. This was the second in a series of OpenID Summits, each focusing on a theme or use cases important to OpenID adoption.  In his presentation, Mike Jones noted that the OpenID AB/Connnect Working Group will be using each OpenID Summit to update the community and engage all in the how OpenID technology is evolving.
> 
> My highlights included: Mike Repass's critique of OpenID and its place in Linkedin technology strategy was detailed, honest and instructive. Farang Kassaei in a similarly straightforward way walked through the risk management best practices associated with identity in eBay's environment. Among the newcomers were Jon Nordmark of Usingmiles.com and eBags and Gary Rush, CTO of Angie?s List. Their assessment of OpenID from the perspective of new market entrants and new use cases reminded us about the growing diversity of OpenID applications. Several attendees pointed out the benefits of the new perspectives offered by new players. Andrew Yap, one of Safeway's team, was positive about the usefulness of the technical discussions and the experience of others like Kodak and Sears as Safeway sorts through their customer engagement strategies.  Many new attendees pointed out how helpful the updates were from Aol, Eric Sachs's presentation deck and offers to login to Google services wit
> h a Yahoo or AOL OpenID, here is the link with instructions  goo.gl/TiBXN
> 
> The Retail Summit was the latest in a series of outreach activities by the OpenID Foundation to solicit input and feedback from retailers utilizing online channels (web, mobile, interactive TV, etc.) to better serve their customers and prospects.  This group is similar to the Content Provider Advisory Committee which was formed in 2009 to serve news, media, and entertainment organizations providing content to their users, members, and customers via online channels.  It focuses on outbound communication from the OpenID Foundation (OIDF), Identity Providers (IDPs), and Social Network Providers (SNPs) to Retailers on progress and plans for OpenID and related technologies (OAuth, Portable Contacts, Activity Streams, etc.) that may be of interest to Retailers.  The Retail Summit organized input and feedback from Retailers to the OIDF, IDPs, and SNPs on the needs and expectations of Retails and their customers and set the stage for future collaboration with the National Association
>  of Retailers to leverage OpenID and related technologies to serve their customers better and achieve improved business results.
> 
> The next OpenID Summit is on the afternoon May 2 at the Symantec Headquarters, 350 Ellis Street Mountain View CA.  Google and Symantec are co hosting and have chosen security as the theme for the Summit.  We will be sending out a draft agenda soon but invite your input on topics, speakers and key questions to address. 
> 
> The last word belongs a Summit invitee Richard E. Last of JCPenney Digital Ventures who noted; "Let us think more of the opportunity before us than we do of the accomplishment behind us."                
> - James Cash Penney,  1927
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL: <http://lists.openid.net/pipermail/openid-general/attachments/20110315/68ddc0ab/attachment-0001.html>
> 
> ------------------------------
> 
> Message: 2
> Date: Tue, 15 Mar 2011 23:54:11 +0100
> From: "Kick Willemse" <nieuwsgroep at evidos.nl>
> To: "'Don Thibeau'" <don at oidf.org>,	"'general @ OpenID.com'"
> 	<general at openid.net>
> Subject: Re: [OpenID] OpenID Retail and Security Summits
> Message-ID: <01c601cbe363$e7eede90$b7cc9bb0$@nl>
> Content-Type: text/plain; charset="us-ascii"
> 
> Don, thank you for the update, this is helpful for the (international)
> OpenID community not able to participate.
> 
> 
> 
> Would be nice to have presentations at the OpenID summit wiki, any of the
> organizers following up on this?
> 
> 
> 
> Kick
> 
> 
> 
> Van: openid-general-bounces at lists.openid.net
> [mailto:openid-general-bounces at lists.openid.net] Namens Don Thibeau
> Verzonden: dinsdag 15 maart 2011 13:06
> Aan: general @ OpenID.com
> Onderwerp: [OpenID] OpenID Retail and Security Summits
> 
> 
> 
> This is to thank the PayPal team for hosting last week's OpenID Retail
> Summit. 
> 
> Andrew Nash and Ashish Jain, together with Brian Kissel organized and led
> the discussions. This was the second in a series of OpenID Summits, each
> focusing on a theme or use cases important to OpenID adoption.  In his
> presentation, Mike Jones noted that the OpenID AB/Connnect Working Group
> will be using each OpenID Summit to update the community and engage all in
> the how OpenID technology is evolving.
> 
> 
> 
> My highlights included: Mike Repass's critique of OpenID and its place in
> Linkedin technology strategy was detailed, honest and instructive. Farang
> Kassaei in a similarly straightforward way walked through the risk
> management best practices associated with identity in eBay's environment.
> Among the newcomers were Jon Nordmark of  <http://Usingmiles.com/>
> Usingmiles.com and eBags and Gary Rush, CTO of Angie's List. Their
> assessment of OpenID from the perspective of new market entrants and new use
> cases reminded us about the growing diversity of OpenID applications.
> Several attendees pointed out the benefits of the new perspectives offered
> by new players. Andrew Yap, one of Safeway's team, was positive about the
> usefulness of the technical discussions and the experience of others like
> Kodak and Sears as Safeway sorts through their customer engagement
> strategies.  Many new attendees pointed out how helpful the updates were
> from Aol, Eric Sachs's
> <http://docs.google.com/Present?docid=ajkhp5hpp3tt_87ds3v38fk&skipauth=true>
> presentation deck and offers to login to Google services with a Yahoo or AOL
> OpenID, here is the link with instructions   <http://goo.gl/TiBXN>
> goo.gl/TiBXN
> 
> 
> 
> The Retail Summit was the latest in a series of outreach activities by the
> OpenID Foundation to solicit input and feedback from retailers utilizing
> online channels (web, mobile, interactive TV, etc.) to better serve their
> customers and prospects.  This group is similar to the Content Provider
> Advisory Committee which was formed in 2009 to serve news, media, and
> entertainment organizations providing content to their users, members, and
> customers via online channels.  It focuses on outbound communication from
> the OpenID Foundation (OIDF), Identity Providers (IDPs), and Social Network
> Providers (SNPs) to Retailers on progress and plans for OpenID and related
> technologies (OAuth, Portable Contacts, Activity Streams, etc.) that may be
> of interest to Retailers.  The Retail Summit organized input and feedback
> from Retailers to the OIDF, IDPs, and SNPs on the needs and expectations of
> Retails and their customers and set the stage for future collaboration with
> the National Association of Retailers to leverage OpenID and related
> technologies to serve their customers better and achieve improved business
> results.
> 
> 
> 
> The next OpenID Summit is on the afternoon May 2 at the Symantec
> Headquarters, 350 Ellis Street Mountain View CA.  Google and Symantec are co
> hosting and have chosen security as the theme for the Summit.  We will be
> sending out a draft agenda soon but invite your input on topics, speakers
> and key questions to address. 
> 
> 
> 
> The last word belongs a Summit invitee Richard E. Last of JCPenney Digital
> Ventures who noted; "Let us think more of the opportunity before us than we
> do of the accomplishment behind us."                
> 
> - James Cash Penney,  1927
> 
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL: <http://lists.openid.net/pipermail/openid-general/attachments/20110315/ec2518ef/attachment-0001.html>
> 
> ------------------------------
> 
> _______________________________________________
> general mailing list
> general at lists.openid.net
> http://lists.openid.net/mailman/listinfo/openid-general
> 
> 
> End of general Digest, Vol 55, Issue 4
> **************************************

More information about the general mailing list