Discuss
Topics
Kaliya Hamlin - Identity Woman (and Dale Olds)
Introduction
Kaliya is probably best know as Identity Woman on the web. She’s recognized as one of the though leaders in user centric identity. Having helped organize Identity Commons and lead the Internet Identity Workshop. She also surprised me and had Dale Olds join at the end of the podcast. Dale is a distinguished engineer at Novell and leads work on the Bandit project.
Kaliya rocks. I wonder if she's involved in the DataPortability group. http://www.dataportability.org
(That is a cool laptop)
I think Kaliya is more involved in OpenID, which I think is I think completely doomed. It's a nice idea, but far too clunky. It hardly saves you any time at all. More of a pain then it's worth. And I want to treat all apps differently.
I like Open ID. Just put a link to your ID in your links tab or book marks and it's easy.
It will be a few years before it's everywhere, but worth supporting.
How does OpenID fit with dataportability?
I've used it a bit, but not religiously. I guess I use it, OPEN ID, when the site has it, but that is 1 in 20 right now.
@chrissaad, any thoughts on openID and DP?
Dick Hardt is also a good Identity guy. Great preso here.
I love this presentation. I so need an identity 2.0 provider... I started to put all my identities into one website the ME, the Pseudonim, and the gamming ID... But it still needs a lot of work, and its nothing like an ID provider.
I just had an interesting conversation with a friend of mine similar to that of identity2.0 but more along the lines of technology extending the web.
The original idea came about by seeing an iPhone plugged into a docking station in a car, that, when the start button on the iPhone was pressed the car started.
Extending this, was the idea of an Identity device. Already everyone carries around a mobile phone, some have the iPhone, other have PDA style phones, other had Blackberries (phone and push email) and some people also have PDA (without phone) and tablets... So the idea is to take all things that are used in the above mentioned devises, and wrap it into something similar to an iPhone (Large viable area, touch screen), and introduce the Identity software.
A certified identity can only be added to the device on purchase of the device, after (manual) identity check, by the supplier. Once an identity is added to the device, the device is locked with that identity.
Then comes the application... Remove the key start from a car and fit your car with the device dock. When a user inserts the device into the dock, the car checks the device for the correct identity against the list of identities it has stored in an on board computer as authorised drivers of the vehicle, the device is then enabled to activate the engine at the press of an onscreen button, as well as control the Air con, music and other dashboard features.
That was one application... what about going into a night club. The bouncer asks to see your ID, you pull out your device, and activate onscreen identity... which shows a visual representation of your ID similar to a drivers license or student card, with your ID criteria and a picture of you.
The possibilities are limitless... You want identity2.0 on the web, you plug your device into the computer you are using, and every time a website needs and ID check, the browser accesses the device.
There are a few possible reasons why this would not work now, security, etc.
But done right, it would work. I see this as the future of identity... but maybe more like Identity20.0
That's interesting.... but do I really want all my separate identification factors centralised?
yes
sorry was that rhetorical?
No, not at all
I'm not convinced I want it all in one place
yeah... I'm just being facetious.
I agree in one way... because there is the whole idea of, what if I lose it... But how many times have you lost your mobile phone, and not found it again.
I'm trying to work on the idea, that not just the individual, but also business and government would be involved... in that, the "identity" authority is the government, as they almost are now in a disjointed way, holding your birth record, TFN, electoral enrollment details (address etc)... so to make this easy for my explanation, lets call the all in one device and "Ident". So when the producers of Idents provide them to the individual, they lock the individuals identity into the device, by first checking that the individual is who they say they are by checking with the gov't... the ident contains the basic ID information (same as a drivers license, student id etc).
So where business comes in, is the use of the Ident. As my example above suggests, car manufactures replace the Key start with an Ident start. Also making it harder to steal a car, as a car will only allow a pre defined driver(s) access to initiate the engine.
Other businesses would work in a similar way... a bank could link an account you hold to your Ident ID. You walk into a shop, and no longer need to search your purse for the right card, you just wirelessly (bluetooth, wifi, etc) transmit your ID to a receiver at the checkout, and the rest happens the same as POS or EFTPOS systems work today. (minus the swipe and PIN). A new secure way to purchase goods, without the inconveniences of searching for a card, or having to remember a PIN.
The applications are limitless... and ultimately you wouldn't have to carry around your huge handbag, with all the different useless stuff you've got in it. But seriously... There are security things you can add to it, such as a pin on your Ident, so that once you have it in your possession it is unlocked so only someone with the PIN can use it, and also, motion and proximity detection etc, so it locks itself when its senses its been put down and/or walked from etc... or even bio security, as in you can unlock it, or transmit your ID only when your thumb is on a sensor, therefor locking it to only your fingerprint.
again the possibilities are endless. and everything I have suggested so far, is technology that is readily available right now.
this becomes easier, with new areas of having to supply ID... Say you want to open an account with a new bank, or a car rental or something that requires a 100 points of ID check... I know I have done this before and only had 80 or 90 points at the time. The ID transmitted from your Ident, would be automatically accepted as you 100 points due to the authority it comes from, the gov't... as Dick Hardt suggests in his presentation about the current authority of Identity.
