<!doctype html public "-//W3C//DTD W3 HTML//EN">
<html><head><style type="text/css"><!--
blockquote, dl, ul, ol, li { padding-top: 0 ; padding-bottom: 0 }
--></style><title>Re: [OpenID] My answers to the nominee
questions</title></head><body>
<div>><b>Who am I?</b> I have long been passionate about privacy on
the internet. I'd love to see a world in which I can go anywhere and
perfectly control the information that comes with me.</div>
<div><br></div>
<div>For being the first candidate to include the word "privacy"
in your posts to the list, you receive honorable mention. I'll endorse
any candidate to make a strong case for privacy in their campaigning -
which won't make much difference if they ALL do, but that's fine by me
;)</div>
<div><br></div>
<div>Here's a thought on controlling the information about us, using
your Monster.com proposal:</div>
<div><br></div>
<div>>Currently, Monster.com doesn't use any federated login
system. What would it take for them to do so? Well, they are primarily
interested in matching employers and employees, so they probably want
their users' location, industry, and education level. They also like
to get distribution for their listings, so they'd like to be able to
distribute new job postings. Friend referrals are a powerful part of
recruiting, so a friend graph through which they can mine connections
is probably nice. If a system can provide that for them, then I'm
guessing they would go for it.</div>
<div><br></div>
<div>It would be nice if RP's had a "I'll scratch your back if
you'll scratch mine." system by which they could send short
messages to one another's networks - for instance, Monster.com would
say "Hey Yahoo, please notify all the Friends of this user on
your network, blah blah blah." and Yahoo could do so. Or not, at
its option (but I'm assuming it would desire reciprocation) or
respective users' options; but the "spam" UX is little
different than your well-intending relatives happily feeding your
E-mail address into an address-mining site while filling themselves
with good feelings that they've just alerted you to a wonderful
opportunity. The main difference is, Monster.com doesn't actually see
a list of friends, so it can't abuse that information later on -
though users, of course, can choose to visit Monster.com and learn
more if they wish.</div>
<div><br></div>
<div>This would make the UX very OP-centric, which somewhat ruins the
portability feature of OpenID; an expanded model (of which I've
written before) would allow Monster.com to contact *any* participating
RP and ask them to deliver a message the next time that user logged in
(my mind boggles at the storage space this could require, but hard
drive space is getting cheaper these days).</div>
<div><br></div>
<div>-Shade</div>
<div><br></div>
<div>Postscript: I'm a bit disturbed looking back at the wording of
the world you'd love to see. I'm not sure if that was worded exactly
as you meant it; if I walk up to a stranger I would like to do
business with, I don't hand over a planner and say "Here's a list
of my friends and their contact information."; I use my handy
(futuristic) PDA to conveniently authorize *his* PDA to send business
offers to mine, whereupon mine will automatically relay the messages
to my friends on his behalf (all without bothering ME about it) - but
just because I go somewhere, doesn't mean that all this information is
necessarily "coming with me".</div>
</body>
</html>