<br><br><div><span class="gmail_quote">On 4/5/07, <b class="gmail_sendername">Johannes Ernst</b> <<a href="mailto:jernst+openid.net@netmesh.us">jernst+openid.net@netmesh.us</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
On Apr 4, 2007, at 4:45, Rob wrote:<br><br>> I think it is good to set standards for entities claiming to use the<br>> technologies related to the mark it might even be good to require a<br>> standardize way of disclosing what personal info is required to use/
<br>> create an<br>> openid on that site but is there a clear policy about "meta" uses<br>> of the mark?<br><br>You mean the OpenID provider side of things? Or the Relying Party<br>side of things?<br><br>
> For instance, I am working with some people who would like to<br>> create some<br>> sites that discuss openid topics, so what is/would be the policy on<br>> things<br>> like a site named openidtopics.* or is that not even an issue?
<br><br>You tell me what policy you'd want on this kind of thing, and more<br>importantly, what process we should put in place by which policies<br>like this get proposed, agreed on, an most importantly revised.<br><br>
So far, Drummond is in favor of establishing a committee, which was<br>one of my suggestions. Anybody else?<br><br>> Also, does anyone have a link to some of the original pages where<br>> openid was<br>> first announced and released, I can't seem to find those.
<br>> Similarly, if<br>> someone has a timeline/outline of milestones in openid's evolution,<br>> I would<br>> appreciate any links.<br>><br>> Thanks,<br>><br>> Rob<br>> _______________________________________________
<br>> general mailing list<br>> <a href="mailto:general@openid.net">general@openid.net</a><br>> <a href="http://openid.net/mailman/listinfo/general">http://openid.net/mailman/listinfo/general</a><br><br>_______________________________________________
<br>general mailing list<br><a href="mailto:general@openid.net">general@openid.net</a><br><a href="http://openid.net/mailman/listinfo/general">http://openid.net/mailman/listinfo/general</a><br></blockquote></div><br>Is the provider as important as the relying party? Relying parties are
going to use various open-source libraries or other ad-hoc technologies
that are linked together. The relying parties would be difficult to
track and enforce. Plus it seems to go against the idea of the OpenID
bounty.
<br><br>In the end through natural selection there will be a handful
of vendors and popular open-sites (google, livejournal, etc) which most
people will probably end up using for personal use. Commercial products
will be easy to track with the marketing flood that is already starting
to come.
<br><br>It seems most important that because these 'few' sites will be
used as testing by the masses for application integration (don't we
want to make this as simple as possible?), that the providers are more
important in terms of adhering to the spec. If I was to pick an area to
enforce this would be it.
<br><br>Given all of that -- my opinion is that at this point it's
best to make adoption as simple as possible. If you keep adding in
restrictions on implementation you risk putting out the fire of
adoption.<br clear="all">
<br>Should there be some type of enforcement, Sun used for Java was the Java Compatibility Test (<a href="http://java.sun.com/developer/technicalArticles/JCPtools/" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">
http://java.sun.com/developer/technicalArticles/JCPtools/
</a>) which seems to have worked for them.<br>
<br>Cheers,<br><span class="sg"><br>Justen</span><br clear="all"><br>-- <br>Justen Stepka<br><a href="http://www.jstepka.name/blog/">http://www.jstepka.name/blog/</a>