cheap cialis pill
certified cialis
cheap viagra in canada
cialis buy drug
buy generic cialis
viagra buy
25mg viagra
cheap viagra without prescription
buy cheapest viagra on line
purchase viagra
cialis 10mg
buying generic viagra
cialis pills
viagra from india
cheapest sildenafil citrate
cheap cialis no rx
viagra india
cialis bangkok
viagra for order
buy sildenafil internet
buy generic viagra online
buying cialis online
where to order cialis
tablet cialis
find cialis no prescription required
viagra cheap drug
order cialis cheap online
online pharmacy cialis
cialis no rx
order generic cialis
price of cialis
viagra soft
drug viagra
cheap viagra from uk
order cialis no prescription
order cheap viagra
viagra drug
order cheap cialis
cheap cialis pharmacy
best price for viagra
cheap viagra from usa
cost cialis
cialis overnight shipping
cheapest generic cialis online
generic viagra online
online viagra
viagra sales
cheap cialis in canada
compare cialis prices online
cialis online
drug viagra online purchase
discount cialis without prescription
no rx viagra
cialis overnight
viagra uk
cialis order
cheap cialis from usa
buying cialis
cialis overnight delivery
cialis in bangkok
buy and purchase sildenafil online
impotence treatment
cheap price viagra
viagra sale
cheap cialis tablet
drug cialis
generic cialis online
cheap viagra pharmacy
find discount cialis online
viagra malaysia
cialis without a prescription
buy cialis online cheap
viagra rx
buy no rx viagra
cialis 20mg
viagra in malaysia
discount viagra online
buy sildenafil cheap
buy viagra low price
buy cialis
cialis
cheap price cialis
cheap generic viagra
cialis canada
low cost viagra
buy cheap viagra
cialis vs viagra
order cialis from us
cialis tablets
find no rx cialis
buy generic cialis online
buy viagra overnight delivery
cheapest cialis price
buy cheapest cialis on line
order cialis in canada
viagra tablet
viagra no online prescription
find cheap cialis online
viagra price
order viagra no prescription
cheap generic cialis
buy viagra online cheap
cialis uk
cialis without rx
generic cialis cheap
viagra vs cialis
order cialis on internet
viagra tablets
viagra purchase
impotence drugs
buy cialis generic
cialis tablet
cialis cheapest price
order viagra from canada
viagra generic
cheap viagra from canada
order cialis
compare viagra prices online
find cheap cialis
impotence cure
pfizer viagra
find discount cialis
cheapest cialis
buy cialis from india
impotence
buy cheapest viagra online
cialis side effects
viagra order
discount cialis online
cialis in malaysia
cialis in uk
viagra in uk
cialis online without prescription
cialis online pharmacy
order viagra
buy viagra online
viagra side effects
cialis sale
discount cialis no rx
cheapest viagra
find cialis
order cialis no rx
buy cialis low price
buy viagra cheap
drug cialis online purchase
order discount viagra online
50 mg viagra
100 mg viagra
10mg cialis
cost of cialis
cheapest cialis prices
buy discount viagra online
cialis sales
50mg viagra
cialis price
buy viagra on internet
cialis pill
cheapest cialis online
purchase viagra overnight delivery
cheap cialis from canada
cheapest viagra price
cialis 20 mg
buy sildenafil low cost
order viagra without prescription
buy viagra lowest price
no prescription cialis
order viagra on internet
discount cialis overnight delivery
cialis cheap drug
viagra approved
viagra no rx required
compare viagra prices
no rx cialis
cheap cialis on internet
buy viagra from india
buy discount cialis online
viagra pharmacy online
order viagra from us
cialis free delivery
cialis for order
buy cialis from canada
viagra without rx
viagra online review
10 mg cialis
cheap viagra no rx
cheapest viagra prices
viagra prices
cialis pharmacy
order no rx cialis
buy cialis in us
buy cialis no prescription required
order cialis from canada
lowest price cialis
cheap cialis internet
online pharmacy viagra
cheapest generic cialis
generic drugs
cialis india
find cialis without prescription
best price cialis
buy viagra without prescription
cheap cialis in uk
where to buy viagra
20 mg cialis
cheap cialis from uk
buy sildenafil canada
cialis no rx required
cialis in us
buy cialis overnight delivery
cialis cheap price
order cheap viagra online
20mg cialis
buy cheap viagra online
viagra internet
viagra without prescription
free cialis
buy cialis us
cialis buy
buy viagra in canada
order viagra cheap online
find viagra without prescription
viagra pills
cheap cialis no prescription
viagra online without prescription
order generic viagra
cialis discount
viagra cheapest price
purchase viagra no rx
viagra no rx
viagra cheap
discount viagra overnight delivery
sale cialis
cialis pharmacy online
purchase cialis without prescription
pharmacy online
cialis medication
discount viagra
buy cheap cialis
impotence medication
viagra medication
find cialis on internet
impotence pills
cialis prices
discount viagra without prescription
cialis online cheap
cialis online review
find cheap viagra online
buy viagra us
purchase cialis online
certified viagra
where to order viagra
buy cheapest viagra
buy cialis internet
order cialis online
buy sildenafil online
buy cialis cheap
cheap viagra
purchase cialis
find discount viagra
buy cialis on internet
cialis buy online
buy sildenafil online without a prescription
viagra buy online
order cheap cialis online
viagra information
no prescription viagra
cost of viagra
buy cialis in canada
buy cialis online
buy viagra
cheapest generic viagra
cialis us
cialis australia
fda approved cialis
lowest price for viagra
viagra bangkok
cialis prescription
cialis cost
buy no rx cialis
buy viagra internet
viagra discount
order viagra overnight delivery
generic cialis
viagra australia
25 mg viagra
order viagra online
viagra overnight
cialis rx
order cialis in us
order viagra no rx
order discount cialis online
viagra vendors
order viagra in us
buy sildenafil in uk
viagra us
buy generic viagra
viagra canada
viagra no prescription
viagra cheap price
cheap viagra tablet
viagra free delivery
overnight viagra
purchase viagra online
find cheap viagra
cialis malaysia
best price viagra
cialis free sample
find viagra on internet
cialis generic
buy sildenafil in canada
order cialis no prescription required
cheapest viagra online
purchase cialis no rx
viagra in us
order discount cialis
cheap viagra internet
free viagra
cialis approved
best price for cialis
cialis from india
find no rx viagra
generic viagra
viagra from canada
viagra online pharmacy
buy viagra from canada
cheapest generic viagra online
buy cheapest cialis
discount cialis
viagra overnight delivery
cialis without prescription
100mg viagra
cialis in australia
price of viagra
order cialis overnight delivery
cheap viagra in uk
buying generic cialis
viagra pill
buy cialis on line
low cost cialis
find discount viagra online
buying viagra
cheap cialis overnight delivery
pharmacy cialis
cheap viagra pill
viagra prescription
find viagra online
buy cialis lowest price
discount viagra no rx
online cialis
viagra free sample
cheap viagra in usa
find viagra
cheap viagra online
buy viagra no rx
generic viagra cheap
buy cialis without prescription
buy viagra in us
cheap viagra overnight delivery
cheap cialis in usa
cheap cialis online
viagra
order no rx viagra
viagra soft tab
find cialis online
lowest price viagra
cialis drug
cialis vendors
viagra online stores
erectile dysfunction
order viagra in canada
buy viagra on line
viagra overnight shipping
viagra online cheap
lowest price for cialis
approved viagra pharmacy
cialis 10 mg
cialis no online prescription
cialis purchase
cialis from canada
order cialis without prescription
viagra for sale
viagra in australia
approved cialis pharmacy
buy viagra generic
buy sildenafil in spain
find viagra no prescription required
cialis no prescription
buy viagra from us
order viagra no prescription required
cost viagra
purchase viagra without prescription
buy cialis no rx
cialis cheap
cialis internet
tablet viagra
cheap viagra on internet
viagra cost
pharmacy viagra
cialis soft tab
cialis information
buy cheap cialis internet
purchase cialis overnight delivery
cheap cialis without prescription
buy viagra no prescription required
compare cialis prices
buy cheap cialis online
overnight cialis
where to buy cialis
cheap cialis
buy cheap viagra internet
buy discount cialis
viagra buy drug
cheap viagra no prescription
buy sildenafil citrate
buying viagra online
buy discount viagra
fda approved viagra
cialis online stores
cheap cialis tablets
buy cheapest cialis online
cheap viagra tablets
order discount viagra
sale viagra
viagra online
cialis for sale
cialis soft
viagra pharmacy
buy cialis from us
viagra without a prescription
viagra in bangkokThe ability to link users data and more importantly their contributions on the Internet is becoming increasingly important. To me, identity is the key to unlocking the real potential of Web 2.0. Software is officially a commodity. Its what you can do with the software and the data that you can build/aggregate that will really define Web 2.0. Identity is at the root of this. If I have one identity that I can use everywhere and keep track of my contributions and data across the Internet then some really amazing things happen. More on that in another post.
How do we get a ubiquitous solution for identity out there? Do we focus on all of the edge cases first or do we just get something out that works for a good chunk of the users first? I’m a fan of the iterative “get-it-out-now-and-continue-to-evolve-it” school of thought. We’ve seen the other way of doing this stuff and those technologies haven’t seen wide-adoption among consumers. It’s got to work for users, be easy (and compelling) for sites to adopt as well as be secure. We’ve got the first two knocked out of the park with OpenID and things are getting easier and easier every day from a user/site perspective. We’ve even spun up a new user experience list.
Let’s remember that when the web originally was rolled out it was just a novelty. “Nobody will ever do banking on this thing.” But they did. SSL was created to solve the original limitations in HTTP and now billions of dollars/euros of commerce happen every day on the Internet.
There have been some heated discussions on the OpenID general mailing list regarding the lack of security in OpenID.
The one thing you should take away from this post is that security is a crucial concern of everyone in the OpenID community (including myself) and its something that is being addressed. We’re not there yet, but I do believe these things take time. Let me explain.
When OpenID was first developed, it was meant to be a very simple method of doing authentication. “I am this URL” was what it really was saying. This was perfect for the blogging community where it got its start. When commenting in the blogosphere, I’d like to be able to do it quickly and easily and ideally hook it back to my blog. OpenID was perfect for that.
OpenID v1.0 and even v1.1 were very rudimentary and solved maybe 80% of the use cases for what user-centric identity was aiming to do. In doing that it only took a 10 page specification. As you increase the use cases you want to handle, it gets more difficult to design and more importantly to implement and adopt. If we tried to cover all 100% of use cases from day one a) we would have gotten it wrong and wasted a bunch of time and b) it would be have impossible for anyone to implement quickly and easily.
The key factor we have to consider here is, does OpenID and its community have what it takes to become the ubiquitous solution for doing user-centric identity in a secure fashion on the Internet? I believe it does. An ever-growing eco-system of users, sites, vendors and communities are seeing its advantages based on its own merits. Lots of good discussions are happening on making this more secure and those changes are going into the specification.
OpenID is about striking a balance. User-centric identity is inevitable and its one of those problems that’s just perfect for solving in the “open source way”. The rate of adoption is quickly increasing and our ability to secure users’ identities with it is also getting better. If we hadn’t started out with something then there wouldn’t be anything to argue about.
We’re almost there. OpenID is at a tipping point. The users, sites and communities are coming and more importantly, are desperate for a solution to this problem. The best is yet to come.
I just got an OpenID. Some thoughts:
OpenID.net and I Want My OpenID! seem to be very much advertisements for OpenID, intended to persuade randomers that they want one. Which is fine, but when the randomer in question decides they do want an OpenID, these sites don’t make it stupidly easy to get one.
It is fairly easy for someone with a little determination, but not stupidly easy for everyone. You can’t just say “Go to getfirefox.com and click Download”.
For example, the randomer has to figure out what an identity provider is, and then choose one based on nothing more than how sexy each one’s website is. This seems analogous to how the multitude of Linux distributions confuses newbies rather than providing choice – the newbie isn’t in a position to make an educated choice, so they guess, which makes them unsure of their decision. And the easiest choice is “none whatsoever”.
I found documentation such as https://www.myopenid.com/help#own_domain very useful; it ought to be replicated all over the place so that it can’t possibly be missed.
Also, hooking Gravatar up to OpenID would cause my s0×0rz to become thoroughly r0×0rz’d.
Perhaps I’m very out of the loop, but I followed OpenID for a long while and it was always very specifically stated that it was only meant to be a very simple lightweight identity protocol to do basically what you said: this url vouches for this user.
It’s always been a simple building block for trust networking and further security layers to be built upon.
The way I see it, the current problem is that it’s become a new web fad and it’s not being used properly. There’s really nothing in place for anything more than the very basic stuff that was there to begin with at this point. Honestly, I don’t see that changing for a while, especially with corporations in control of the web. Their ideas of decentralization are more like disjointment and they’re all very protective of letting go of their tracking/marketing abilities as well as eyes for their ad-serving abilities since the current revenue model depends on advertisements and monopoly money.
People are still thinking far too much about what will integrate with what’s currently hot. Most end users don’t even know what RSS is let alone anything to do with blogging, web 2.0 (spit), nor any of the jargon you rattled off in your post.
I’ve had lengthy discussions about decentralized networking/trust systems with very intelligent people of the computer generation and yet they still can’t grasp how it would be any different than what they currently use their Myspace account for. It’s truly maddening.
That’s where the problem is though. We don’t need people to be aware of the issues (which is an impossible task) but rather get together and build something that works transparently for these people and ourselves in a manner that’s convenient for each individual.
Ja
ps. for the record, I’m more concerned with making 1-degree of seperation networking and anti/non-social media networking a reality. Basically: decentralized networking using existing technologies to make it simple to do stuff that should be simple like keep up with friends, family, colleagues, etc while having fine-grained control over actual security permissions (exactly who can see or recieves what) and have information access really be user-centric rather than marketing-centric like it is now.
Thanks for the comment Ja.
I agree that the big players tie quite a bit of their valuation to the concept of “owning” the users. I’m really interested in empowering the sites out in the long tail; all of those sites that are doing things like photo and video sharing, blogging, social bookmarks, etc. For every single one of these sites, getting the user past the registration screen is one of the most difficult things for them. Its also a pain point for the users; yet another username and password to keep track of.
The benefit I seen in OpenID is that it solves a pain points for users and sites. The secondary benefit is what it will enable for users of all of those sites. The ability to quickly and easily communicate with friends and family, especially as social networks grow. OpenID is a tool that will hopefully be used to give context to users across a wide range different topics.
Is this going to happen overnight? Of course not. But nothing ever worth doing was easy.
Your comittment is appreciated and it does indeed make things less painful. What I’d really like to see in the shorter term is an adoption of Open-ID for things like forums as well as the newer things that I personally see as fads. Don’t get me wrong, I think blogs and smart social interest sharing/networking definitely have their place but the way we use things now have a lot of evolving to do and as you said, none of this stuff will happen over night.
With forums, which I’ve been using forever it seems, it’s such a pain to sign up for one every time I just want a post a single message. Most forums I visit I only use once or twice and never again. It’s a matter of going and getting/giving information on specific topics in a variety of specific places… most people only have one or two they actually frequent if any. Reputable forums are usually well moderated and don’t stand for abuse from any users, so I think it could be an interesting experiment to actually have an open-id provider be a reputable forum where I have an active account. Thoughts on that idea? Even without that, I’d definitely like to be able to avoid the situation I’m frequently faced with: spending more time signing up for forums than I do actually using them or in many cases not lending information I could because I don’t want to go through the hassle of having to register for something I likely won’t be coming back to. That’s where I think Open-ID could really be key in making traversing these little communities much less painful if the software devs and administrators were willing to implement it.
Do you know of any forum software with plugins or being built with Open-ID included? You may want to approach Matt with the idea of integrating it into BBPress if you haven’t already.
Speaking of which (since I saw him link to it), I’d love to hear any comments you may have on Parakey from whatever implications you feel can be gleaned from the article.
Cheers!
Jā
Users are getting a lot more sophisticated than we usually give them credit for. They may not know the techno mumbo jumbo that I often spout but they are “blogging”, sharing photos and interacting in rich social transactions like never before. All of those users that were supposed to show up during the bubble and never did are finally here. And they are doing things we never thought they’d do. This is the really exciting stuff IMHO.
Forums are a great place to look for more adoption of OpenID. I had some conversations with folks at phpBB but need to strike those up again. Can you think of any more apps that might be good to get in touch with to ask about support? BBPress and phpBB are a great start … I’d love a list of the other projects to look at and just start hittin’ them up to see if they would consider supporting OpenID.
I have not seen Parakey but thanks for the link to the article; I always like to hear what Blake is up to … :-) How could OpenID help with that? I’m not sure yet but it seems like being able to identify yourself inside of Parakey would be a critical element. Identity is a core requirement of just about any application out there today but its a mega-pain to have to keep re-inventing the wheel in every application.
I won’t make an issue of it, but I find all of the stuff people are doing these days on the web to be more scary than exciting. I know exactly the type of individuals you speak of and you’re right… they don’t know what a ping or a trackback is, but it doesn’t keep them from blogging, etc. The problems come into play when people that don’t really know a lot about what they’re doing really have no clue about the possible ramifications of what they’re doing or not doing.
I’d definitely be happy to help with getting a list together of potential projects to approach about openid integration. I could rattle a bunch off right now, but I know you have mailing lists and a wiki if I’m not mistaken, so those would likely be better venues.
Speaking of which, I am quite out of the loop as I mentioned earlier, but I do have more questions and always ideas so I’ll be trying to do some reading and catching up as time allows.
Oh, I think I just mentioned Parakey because it seems to be in line with some goals and almost at odds with others concerning identity/security. I don’t think OpenID will play a role in it at all. It’s too early to know anything about it though… just seeing if you had any early thoughts. :)
I read about the affiliate program and it looks like a wonderful way to really kickstart this stuff… I’ll be sending some people in your direction to take a look at that specifically!
Hopefully I’ll be making some stops on the lists and wiki, though time is going to be extremely tight until some time in January. Have you started on that list anywhere yet so I might tack stuff on it a bit at a time?
Regards,
Jā