John Panzer and Paraveen Alavilli of AOL presented this session on User-Centric Identity.
A central tenet of Web 2.0 is that the user is in control Providing users with control over their identity is an essential element to support this notion.
What is identity?
- Identity is necessary for:
- Authorization and access control
- Communication channel
Why we need pervasive online identity
Account management is a barrier to entry to a community. Reversing the massive online identity fragmentation.
What is User-Centric Identity?
Provides user choice. Protects privacy. Easy adoption.Enables collaboration. Internet scalable.
The main players - Community:
- OpenID - your URL is your identity
- CardSpace - from Microsoft
- Liberty (SAML) - Open but complex.
- Yahoo! - BBAuth
- Google Account API
- AOL OpenAuth
Elements of effective ID
- Open to multiple programming languages
- AOL Authentication API - OpenAuth
- Integrated OpenID Provider
- OpenID Authentication Token Exchange Extension
- OpenID Consumer/Relying Party
The latter piece enables the acceptance of third party OpenIDs