Hi Eddy, <div><br></div><div>Here is my answers inline: <br><br><div class="gmail_quote">On Thu, Dec 4, 2008 at 10:14 PM, Eddy Nigg (StartCom Ltd.) <span dir="ltr"><<a href="mailto:eddy_nigg@startcom.org">eddy_nigg@startcom.org</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<div text="#000000" bgcolor="#ffffff">
There are a few questions I'd like to ask the current nominees in order
to get a better picture about which ideas a nominee represents. Of
course the questions are specifically what I feel important:<br>
<br>
<ol>
<li>Adoption of OpenID by relying parties isn't on-par with the
amount of providers available. How would you improve that ratio?</li></ol></div></blockquote><div>In Japan, we are doing the following: </div><div><br></div><div>- Individual visit to potential RPs to persuade them the value of being an RP. </div>
<div>- Technical seminars to get them up to speed. </div><div>- Create an Assurance Framework (this is in progress) to let them have better "trust" in the system. </div><div><br></div><div>I personally think we should replicate it in the global scale. </div>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;"><div text="#000000" bgcolor="#ffffff"><ol><li>What is it that should be done in order to have big providers
like Google, Yahoo!, Microsoft rely on other operators?</li></ol></div></blockquote><div> Assurance framework is a key. Right now, we have no good way of assessing the assurance level of the assertions. Once it is solved, it will become much easier for them to start accepting the assertions created by a third party. </div>
<div><br></div><div>Also, we have to show the relevant parties the market and profit potential. </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;"><div text="#000000" bgcolor="#ffffff">
<ol><li>Do you think that a trust relationship framework should be
created, similar to PKI auditing (or any other/similar idea) in order
to allow relying parties easily trust on other operators? Or what would
you suggest instead?</li></ol></div></blockquote><div>Obviously, an assurance framework coupled with auditing is a key factor. I think we should look at Liberty Alliance's Identity Assurance Framework (IAF). IAF is protocol independent so we can profile it to OpenID. Also, Assurance does not come in the form of Technology alone. Legal systems have impact on it. In Japan, we are working closely with the Japanese government to sort out the issues. I think this needs to be replicated to anywhere in the world. That is why we need to have a good representation from the different jurisdictions for the board. </div>
<div><br></div><div>Having said that, the assurance framework alone does not solve the problem. We should use reputations services in conjunction with it. That is why I have created ORMS TC at OASIS. </div><div> <br></div>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;"><div text="#000000" bgcolor="#ffffff"><ol><li>Do you think that instead of hiring an executive director, the
load of the different tasks could be shifted to a small group of
different persons instead (foundation management)? Would you view a
such a scenario possible and perhaps more efficient? (Considering the
amount to be paid for an ED, I suspect that many highly motivated and
capable individuals from within the community or from outside could do
a better job than one individual and receive fair compensation for
their work.)</li></ol></div></blockquote><div>This is exactly what we are doing in OpenID Foundation Japan. Instead of hiring an ED, we have distributed tasks to (business-wise) motivated group of people for each topic. Providing them the benefit of doing it seems to deliver a better ROI at least in Japan. I am not entirely sure about the situation in the U.S. and other countries, but considering that OIDF is resource constrained, it certainly is a path that should be considered. </div>
<div><br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;"><div text="#000000" bgcolor="#ffffff">
<br>
<div>-- <br>
<table border="0" cellpadding="0" cellspacing="0">
<tbody>
<tr>
<td colspan="2">Regards </td>
</tr>
<tr>
<td colspan="2"> </td>
</tr>
<tr>
<td>Signer: </td>
<td>Eddy Nigg, <a href="http://www.startcom.org" target="_blank">StartCom Ltd.</a></td>
</tr>
<tr>
<td>Jabber: </td>
<td><a>startcom@startcom.org</a></td>
</tr>
<tr>
<td>Blog: </td>
<td><a href="http://blog.startcom.org" target="_blank">Join the Revolution!</a></td>
</tr>
<tr>
<td>Phone: </td>
<td>+1.213.341.0390</td>
</tr>
<tr>
<td colspan="2"> </td>
</tr>
</tbody>
</table>
</div>
</div>
<br>_______________________________________________<br>
general mailing list<br>
<a href="mailto:general@openid.net">general@openid.net</a><br>
<a href="http://openid.net/mailman/listinfo/general" target="_blank">http://openid.net/mailman/listinfo/general</a><br>
<br></blockquote></div><br><br clear="all"><br>-- <br>Nat Sakimura (=nat)<br><a href="http://www.sakimura.org/en/">http://www.sakimura.org/en/</a><br>
</div>