Open Identity Exchange (OIX) is holding this year's Attribute Exchange Summit in Washington, DC.
Identity attributes are core of the concept of digital identity. As federated identity ecosystem getting more mature and adoption grows among more sophisticated RPs - with more consequential use cases such as government, health, education, commerce ... - so does the need for wider sets of attributes with more accurate and fresh values. This presents both tough challenges and opportunities for IDPs.
The challenges center, as one may expect:, around aggregating, correlating, transform and maintaining fresh copy of attributes in a cost effective manner and in a way that it does not compromise the privacy (and other rights) of the principle owner. IDPs can differentiate based on the range of attributes they provide in this way and there in lies the opportunities.
I will be talking more about identity attributes, their life cycle, uses cases and how they help establish and elevate trust among parties to commercial transactions (online and off-line) as part of a panel with Don Thibeau, OIX/OIDF chairman and Abbie Barbir, VP BoA.
If you are planning to attend, I'd be happy to hear from you.
Showing posts with label Talks. Show all posts
Showing posts with label Talks. Show all posts
Sunday, November 6, 2011
Sunday, September 11, 2011
OpenID Tech Summit - Mountain view, CA - 9/12-13
I am attending the OpenID Tech summit tomorrow (Monday) and Tuesday at the MSFT Silicon Valley campus.
There are two main topics, first the official announcement of OpenID Connect - a standard built on top of OAuth 2.0 to that allows RPs obtain connect and obtain extensible profile information about an identity - and second is the introduction of a concept called Account Chooser - a UX pattern for federated login pages proposed based the experience of Google in dealing with federated authentication scenarios.
I am also part of a panel discussion on "Identity Schizophrenia - How users want to apply their online identities" moderated by Allen Tom, OIDF Board Member. It is scheduled for Tuesday September 13 @ 1:40pm. For a full schedule of the summit see here.
It should be interesting ... If you there tomorrow, please do stop by and say hi ...
There are two main topics, first the official announcement of OpenID Connect - a standard built on top of OAuth 2.0 to that allows RPs obtain connect and obtain extensible profile information about an identity - and second is the introduction of a concept called Account Chooser - a UX pattern for federated login pages proposed based the experience of Google in dealing with federated authentication scenarios.
I am also part of a panel discussion on "Identity Schizophrenia - How users want to apply their online identities" moderated by Allen Tom, OIDF Board Member. It is scheduled for Tuesday September 13 @ 1:40pm. For a full schedule of the summit see here.
It should be interesting ... If you there tomorrow, please do stop by and say hi ...
Tuesday, July 19, 2011
Identity and E-Commerce: Talk @ Cloud Identity Summit 2011
I am attending Cloud Identity Summit in Keystone, CO. It is fast becoming THE identity conference of the year where you can see all, be it small group of, "identeratees".
I am also giving a talk tomorrow (7/20/2011) @ 4:00pm titled "Role of Identity in E-Commerce' where we share our findings and observations over the past year while building an identity provider for e-commerce sites.
You can see the presentation here:
The slides are not meant to be read, but to support my talk, so they may feel a bit choppy when you read it.
If I want to summarize it, it is
"A viable commercial identity is a Super Identity, one that is not just an identifier but a complete, accurate and up-to-date federated profile compose of attributes from multiple trusted providers, obtained with users' consent and control in exchange for real value"
If you attend the talk tomorrow, please stop by and say hi.
I am also giving a talk tomorrow (7/20/2011) @ 4:00pm titled "Role of Identity in E-Commerce' where we share our findings and observations over the past year while building an identity provider for e-commerce sites.
You can see the presentation here:
The slides are not meant to be read, but to support my talk, so they may feel a bit choppy when you read it.
If I want to summarize it, it is
"A viable commercial identity is a Super Identity, one that is not just an identifier but a complete, accurate and up-to-date federated profile compose of attributes from multiple trusted providers, obtained with users' consent and control in exchange for real value"
If you attend the talk tomorrow, please stop by and say hi.
Tuesday, July 12, 2011
UMA - User Managed Access - Webinar , July 13 9 AM PST
UMA Working group is holding a Webinar tomorrow @ 9am PST. See UMA home page for full details.
If you own/author public APIs or if you write applications that access such APIs, chances are you have heard or know about OAuth, UMA is the next thing you should know about.
No you don't need to implement this tomorrow, but it informs your opinion about a very important and emerging topic: where the right intersection between access to an individual's information and enabling individuals to control that access should be. UMA aims to be the corner stone of that enablement.
Attend tomorrow's Webinar to learn more about UMA.
If you own/author public APIs or if you write applications that access such APIs, chances are you have heard or know about OAuth, UMA is the next thing you should know about.
No you don't need to implement this tomorrow, but it informs your opinion about a very important and emerging topic: where the right intersection between access to an individual's information and enabling individuals to control that access should be. UMA aims to be the corner stone of that enablement.
Attend tomorrow's Webinar to learn more about UMA.
Monday, March 7, 2011
2011 OpenID Retail Summit - March 8 @ PayPal Offices
Our collegues at PayPal are hosting the OpenID Retail Summit tomorrow from noo to 5:00pm. It sounds like it will be an interesting exchange of ideas between identity providers and retailer (as relying parties). I will be presenting our experiences (and wishes) as large relying party tomorrow @ 3:00pm.
I will post the presentation and a short post tomorrow.
I will post the presentation and a short post tomorrow.
Wednesday, October 27, 2010
PayPal Identity Services Talk @ PayPal Innovate 2010
Today at the PayPal Developers conference Ashish Jain, my friend and colleague and PayPal’s point man on all things identity, talked about PayPal vision of identity and PayPal Identity Service in his presentation titled, not surprisingly, “PayPal Identity Services”.
If you are involved in the world of internet, as a developer or even an observer, or if you have attended any web related conference in the past 12-18 month (including our own DevCon) you must be familiar with the core identity problem: users have too many accounts, too many password, too often they forget them, it is too easy to phish passwords and too expensive for companies to support users who either forgot their passwords or have had their account taken over …. Ashish talked about it in his presentation (as it is mandatory for these presentations, including mine, to recount the carnage first).
You may have guessed the next step, PayPal, among many others, offers to be an Identity Provider (IDP). Your one and only account you ever need (at least for whenever you want to shop on the Internet).
You may think, so what? There are so many other identity providers (most notably Facebook) … but (as Lee Corso of ESPN says) “not so fast my friend”, there is actually a difference in this game of being identity provider between PayPal and everyone else, what Ashish, modestly, calls “Qualified Data” (interestingly the second bullet point in his slide – why not the first? I have to ask him).
See, as it turns out providing identity (as in what an IDP does) it is not that hard, pick a protocol (OpenID, OAuth, SAML …) and transfer identity data (unique identifier, name, email, phone number etc.) from the IDP to Relying Party (RP). You can do that in few hours (literally), what turns out to be hard (and expensive and complex), is providing “High Quality” identity, as in identity data the someone actually validates and make sure they are accurate and up to date and actually owned by the person who claims s/he owns it. This is what Ashish means by “Qualified Data”. Now if you are a merchant, which identity you rather rely on? An identity from a site that simply takes users claims (about what her name is, where she lives etc.) and toss it over to you or from PayPal where this set of data is verified and maintained and by the way you know that there is a valid financial/payment instrument attached to it?
Too often people responsible for building an identity provider argue endlessly about merits of protocols, compare OpenID to OAuth and talk about how complex SAML is. In the process they miss the much bigger point: what matters is the quality of identity provided not the means by which it is provided.
This is what make PayPal identity (regardless of whether they use OpenID or OAuth or anything else) potentially the most interesting and useful identity in my view.
Ashish also shows a demo where PayPal OpenID service is wrap by Gigya API. Gigya is an aggregator of identity provider, instead of learning multiple APIs from different IDPs, developers simply deal with Gigya API. It is an interesting concept. Check them out here.
It would be interesting to see how far PayPal push their Identity Service (both in terms of end user adoption and merchant adoption) and whether or not they offer different classes of identity (based on data quality) and respective financial assurance levels.
Sunday, September 19, 2010
JaveOne 2010 Talk
Latest details I received from conference organizers today (it is kind of late, isn't it?) about time and location of my talk @ JavaOne:
ID# : S314414
Title : Login Failed, Try Again: 10 Best Practices for Authentication in the Cloud
Track: Enterprise Service Architectures and the Cloud
Date : 23-SEP-10
Time : 14:00 - 15:00
Venue: Parc 55
Room : Cyril Magnin I
ID# : S314414
Title : Login Failed, Try Again: 10 Best Practices for Authentication in the Cloud
Track: Enterprise Service Architectures and the Cloud
Date : 23-SEP-10
Time : 14:00 - 15:00
Venue: Parc 55
Room : Cyril Magnin I
Saturday, May 29, 2010
eBay DevCon 2010 Talk and The Spy Who Came in from the Cold
 |  |
The title for the talk is "The User Who Came in From the Cloud". It is a play on my favoriate cold war spy novels of all time "The Spy Who Came in from the Clod", if you are into spy novel or cold war buff, I recommend reading the it.
Monday, April 19, 2010
Identity Assertion Framework Talk @ Stanford Presentation
Here is the presentation for my talk today @ Stanford.
You can download the presentation for eBay's Identity Assertion Framework now. The talk is today (April 19, 2010), here is more information on time and place.
I have promised to write a bit more about IAF to a few people and I intend to keep my promise.
eBay Identity Assertion Framework (IAF)
View more presentations from farhangkassaei.
You can download the presentation for eBay's Identity Assertion Framework now. The talk is today (April 19, 2010), here is more information on time and place.
I have promised to write a bit more about IAF to a few people and I intend to keep my promise.
Monday, March 29, 2010
Identity Assertion Framework (IAF) Talk at Stanford
I will give a talk about eBay's framework for handling federation, federated token services and distributed authentication - called IAF - at Stanford on Monday April 19th, 2010. Here is a brief description The talk is part of the Stanford Security Seminar.
This is an area that is poorly understood by software developer and architects that are new to security or authentication. I will write more about the topic of "authentication" and eBay's framework for handling it in more details. Look for under the label "Identity" and "Security".
This is an area that is poorly understood by software developer and architects that are new to security or authentication. I will write more about the topic of "authentication" and eBay's framework for handling it in more details. Look for under the label "Identity" and "Security".
Tuesday, October 27, 2009
SDForum Talk on Open eBay
I will be giving a talk at SD Forum about the architecture of "Open eBay", the platform for developers to deploy their application inside eBay.com. You can an abstract and detailed information here.
Tuesday, March 31, 2009
2009 Web 2.0 Talk @ SF
I will be giving a talk @ SF, Web 2.0 introducing the new eBay Open Platform. This is a platform based on Gadget/OpenSocial and opens up eBay's Selling Manager to all 3rd party developers.
Look for this platform to be used in wider scope at eBay to open up other areas of the site including buying flows to 3P apps.
Look for this platform to be used in wider scope at eBay to open up other areas of the site including buying flows to 3P apps.
