<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META content=text/html;charset=Windows-1252 http-equiv=Content-Type>
<META name=GENERATOR content="MSHTML 8.00.7100.4129"></HEAD>
<BODY style="PADDING-LEFT: 10px; PADDING-RIGHT: 10px; PADDING-TOP: 15px"
id=MailContainerBody leftMargin=0 topMargin=0 CanvasTabStop="true"
name="Compose message area">
<DIV><FONT face=Calibri>Don't mind publically commenting as it seems everyone is
open to comments at this early stage ...</FONT></DIV>
<DIV><FONT face=Calibri></FONT> </DIV>
<DIV><FONT face=Calibri>Firstly, I saw this coming from the initial days of
OpenID & from what I can see all of these "Open Trust Framework"
companies are US corporates (i just checked the "About Us" of each) and "the
government" on the openid.net blog means "the US government".</FONT></DIV>
<DIV><FONT face=Calibri></FONT> </DIV>
<DIV><FONT face=Calibri>I don't mind too much so long as we recognize that
although clearly </FONT><FONT face=Calibri>there needs to be some level of OP
verification what we need is for this to reach out with a more global
perspective - especially if it is to be termed something as grandiose as the
"Open Trust Framework". There really needs to be at least one (i'd like to see
a few) of the big players (another discussion is what "big"
means) from various countries of the world involved here. This
really shouldn't be an afterthought - it should be part of this framework. If it
is too early because it's a demo then might i suggest "Open Trust
Framework" is not the correct terminology.</FONT></DIV>
<DIV><FONT face=Calibri></FONT> </DIV>
<DIV><FONT face=Calibri>The work being done is extremely exciting but to be able
to get local buy-in to this stuff they would really need a local reference. If
this is a U.S. OpenID initiative then might be worth making this more
obvious.</FONT></DIV>
<DIV><FONT face=Calibri></FONT> </DIV>
<DIV><FONT face=Calibri>Nevertheless it is exciting stuff from a technology
perspective and i look forward to seeing it progress.</FONT></DIV>
<DIV><FONT face=Calibri></FONT> </DIV>
<DIV><FONT face=Calibri>steven</FONT></DIV>
<DIV><FONT face=Calibri><A
href="http://livz.org">http://livz.org</A></FONT></DIV>
<DIV><FONT face=Calibri></FONT> </DIV>
<DIV><FONT face=Calibri></FONT> </DIV>
<DIV style="FONT: 10pt Tahoma">
<DIV><BR></DIV>
<DIV style="BACKGROUND: #f5f5f5">
<DIV style="font-color: black"><B>From:</B> <A
title="mailto:chris.messina@gmail.com CTRL + Click to follow link"
href="mailto:chris.messina@gmail.com">Chris Messina</A> </DIV>
<DIV><B>Sent:</B> Wednesday, September 09, 2009 10:55 PM</DIV>
<DIV><B>To:</B> <A
title="mailto:pwilliams@rapattoni.com CTRL + Click to follow link"
href="mailto:pwilliams@rapattoni.com">Peter Williams</A> </DIV>
<DIV><B>Cc:</B> <A title=general@openid.net
href="mailto:general@openid.net">general@openid.net</A> </DIV>
<DIV><B>Subject:</B> Re: [OpenID] owning one's own identity</DIV></DIV></DIV>
<DIV><BR></DIV>This is a concern of mine, long term.
<DIV><BR></DIV>
<DIV>Initially, the OpenID providers are to be certified under the Open Trust
Framework — but anyone can become certified once the framework is complete and
certifiers are set up... how that might work for individuals owning their own
identity is still TBD (depending on demand, I suppose).</DIV>
<DIV><BR></DIV>
<DIV>The challenge is finding the balance between cost, convenience, interest,
scale, and user experience. We still have much work to do in order to determine
how the government should best take advantage of technologies like OpenID, but
this initial pilot should help us figure out how this should look — and what
citizens want from the experience.</DIV>
<DIV><BR></DIV>
<DIV>As someone who owns/hosts his own OpenID, of course I want to be able to
use that identity in government transactions — having to meet certain security
requirements doesn't seem like an altogether bad idea — as a cost of doing it
myself.</DIV>
<DIV><BR></DIV>
<DIV>In any case, having public comments about this would be great — as we're
clearly just getting started in this initiative.</DIV>
<DIV><BR></DIV>
<DIV>Chris<BR><BR>
<DIV class=gmail_quote>On Wed, Sep 9, 2009 at 5:46 PM, Peter Williams <SPAN
dir=ltr><<A
href="mailto:pwilliams@rapattoni.com">pwilliams@rapattoni.com</A>></SPAN>
wrote:<BR>
<BLOCKQUOTE
style="BORDER-LEFT: #ccc 1px solid; MARGIN: 0px 0px 0px 0.8ex; PADDING-LEFT: 1ex"
class=gmail_quote>
<DIV lang=EN-US link="blue" vlink="purple">
<DIV>
<P style="MARGIN-LEFT: 0.5in">In other words, by embracing OpenID (and
InfoCard), the government is <B><SPAN style="FONT-SIZE: 14pt">helping to
further establish the value of owning one’s own identity</SPAN></B><SPAN
style="FONT-SIZE: 14pt">, </SPAN>and of having convenient, consistent, and
privacy-protecting mechanisms in place to enhance and enable participation.
[<A href="http://openid.net/2009/09/09/open-identity-for-the-government/"
target=_blank>http://openid.net/2009/09/09/open-identity-for-the-government/</A>]</P>
<P> </P>
<P>From what one can tell from reports about the current profile, the
government is doing the exact opposite of “helping to further establish the
value of owning one’s own identity”. It is specifically requiring that your
identity is managed (and legally owned) by certain (large) players. If PayPal
decides today to revoke access to my PayPal account, I cannot access my .gov
resources with the same identity I used yesterday – as the identity signals
are the property of - and under the exclusive control of - PayPal, not
me.</P>
<P> </P>
<P>We seem to be heading back to the days when AT&T has total power of
whether you could or could not keep your phone number, if you switched
carrier.</P>
<P> </P>
<P>Why repeat the
error?</P></DIV></DIV><BR>_______________________________________________<BR>general
mailing list<BR><A
href="mailto:general@lists.openid.net">general@lists.openid.net</A><BR><A
href="http://lists.openid.net/mailman/listinfo/openid-general"
target=_blank>http://lists.openid.net/mailman/listinfo/openid-general</A><BR><BR></BLOCKQUOTE></DIV><BR><BR
clear=all><BR>-- <BR>Chris Messina<BR>Open Web Advocate<BR><BR>Personal: <A
href="http://factoryjoe.com">http://factoryjoe.com</A><BR>Follow me on Twitter:
<A
href="http://twitter.com/chrismessina">http://twitter.com/chrismessina</A><BR><BR>Citizen
Agency: <A href="http://citizenagency.com">http://citizenagency.com</A><BR>Diso
Project: <A href="http://diso-project.org">http://diso-project.org</A><BR>OpenID
Foundation: <A href="http://openid.net">http://openid.net</A><BR><BR>This email
is: [ ] bloggable [X] ask first [ ] private<BR></DIV>
<P>
<HR>
<P></P>_______________________________________________<BR>general mailing
list<BR>general@lists.openid.net<BR>http://lists.openid.net/mailman/listinfo/openid-general<BR></BODY></HTML>