This is a concern of mine, long term.<div><br></div><div>Initially, the OpenID providers are to be certified under the Open Trust Framework — but anyone can become certified once the framework is complete and certifiers are set up... how that might work for individuals owning their own identity is still TBD (depending on demand, I suppose).</div>
<div><br></div><div>The challenge is finding the balance between cost, convenience, interest, scale, and user experience. We still have much work to do in order to determine how the government should best take advantage of technologies like OpenID, but this initial pilot should help us figure out how this should look — and what citizens want from the experience.</div>
<div><br></div><div>As someone who owns/hosts his own OpenID, of course I want to be able to use that identity in government transactions — having to meet certain security requirements doesn't seem like an altogether bad idea — as a cost of doing it myself.</div>
<div><br></div><div>In any case, having public comments about this would be great — as we're clearly just getting started in this initiative.</div><div><br></div><div>Chris<br><br><div class="gmail_quote">On Wed, Sep 9, 2009 at 5:46 PM, Peter Williams <span dir="ltr"><<a href="mailto:pwilliams@rapattoni.com">pwilliams@rapattoni.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<div lang="EN-US" link="blue" vlink="purple">
<div>
<p style="margin-left:.5in">In other words, by embracing OpenID (and InfoCard),
the government is <b><span style="font-size:14.0pt">helping to further
establish the value of owning one’s own identity</span></b><span style="font-size:14.0pt">, </span>and of having convenient, consistent, and
privacy-protecting mechanisms in place to enhance and enable participation. [<a href="http://openid.net/2009/09/09/open-identity-for-the-government/" target="_blank">http://openid.net/2009/09/09/open-identity-for-the-government/</a>]</p>
<p> </p>
<p>From what one can tell from reports about the current
profile, the government is doing the exact opposite of “helping to
further establish the value of owning one’s own identity”. It is specifically
requiring that your identity is managed (and legally owned) by certain (large)
players. If PayPal decides today to revoke access to my PayPal account, I
cannot access my .gov resources with the same identity I used yesterday –
as the identity signals are the property of - and under the exclusive control
of - PayPal, not me.</p>
<p> </p>
<p>We seem to be heading back to the days when AT&T has
total power of whether you could or could not keep your phone number, if you switched
carrier.</p>
<p> </p>
<p>Why repeat the error?</p>
</div>
</div>
<br>_______________________________________________<br>
general mailing list<br>
<a href="mailto:general@lists.openid.net">general@lists.openid.net</a><br>
<a href="http://lists.openid.net/mailman/listinfo/openid-general" target="_blank">http://lists.openid.net/mailman/listinfo/openid-general</a><br>
<br></blockquote></div><br><br clear="all"><br>-- <br>Chris Messina<br>Open Web Advocate<br><br>Personal: <a href="http://factoryjoe.com">http://factoryjoe.com</a><br>Follow me on Twitter: <a href="http://twitter.com/chrismessina">http://twitter.com/chrismessina</a><br>
<br>Citizen Agency: <a href="http://citizenagency.com">http://citizenagency.com</a><br>Diso Project: <a href="http://diso-project.org">http://diso-project.org</a><br>OpenID Foundation: <a href="http://openid.net">http://openid.net</a><br>
<br>This email is: [ ] bloggable [X] ask first [ ] private<br>
</div>