May 25, 2006 Identity on the Web Project Higgins – the foundation for establishing new business to...
-
Upload
sydney-mccurdy -
Category
Documents
-
view
215 -
download
0
Transcript of May 25, 2006 Identity on the Web Project Higgins – the foundation for establishing new business to...
May 25, 2006
Identity on the WebProject Higgins – the foundation for establishing new business to consumer relationships
Steve Gaines
© Novell Inc, Confidential & Proprietary
2
Agenda
Why?
What problem are we trying to solve?
Seven Laws of Identity
How does it work?
Current status
Higgins and InfoCard
Where next
© Novell Inc, Confidential & Proprietary
3
Why?
● In a recent survey , three times the number of respondents are more concerned about a cyber attack (i.e., attacked through networked devices such as computers, ATMs, mobile phones, PDAs, etc.) than a physical attack.
● 37 % of respondents indicated they will not provide credit card and financial information online.
● 43 % of respondents’ top concern was identity theft. Other reported reasons include loss of money (24 %) and harm to credit rating (13 %).
Source IBM, 2006
© Novell Inc, Confidential & Proprietary
4
What problem are we trying to solve?
• Identity theft is now a public concern and headline news• Users dont manage multiple identities well• Businesses want new ways to interact with their customers.• Consumer Identity shouldnt be owned by a corporation• Addressing the needs of 'The Long Tail'
© Novell Inc, Confidential & Proprietary
5
Multiple Contexts
YOU
Em
ail
or IM
Com
mun
ities
of In
tere
st
WebsitesBuddy Lists
Enterprise
Apps
Virtual
Spaces
Trust Framework
Context Plug-ins
Social Networks
• Healthcare Provider System
• Sales Force Automation
• Corporate Directories
• eCommerce (e.g. Amazon, eBay)
• Social Networking (e.g. LinkedIn)
• Alumni websites
• Lotus Notes, Groove
• P2P Apps
• Book club
• Family
• Professional networks
• Dating networks
© Novell Inc, Confidential & Proprietary
6
Different attributes for every context
Home Work Doctor
32, Acacia avenue
01252 9234567
1 Arlington Square
Bracknell
01344 724000
...
Dr Stephen Clarke
Blood Group: A+
No allergies
…
Inland Revenue
National Insurance
ZZ 03 36 27 G
…
eBay
ID=MadeUp1234
Rating 134
This enables what you do want: the right people to find you, have what’s appropriate be visible, etc.
© Novell Inc, Confidential & Proprietary
7
Seven Laws of Identity
• 1. User Control and Consent • 2. Minimal Disclosure • 3. Justifiable Parties• 4. Directed Identity • 5. Pluralism of Operators and Technologies • 6. Human Integration • 7. Consistent Experience
© Novell Inc, Confidential & Proprietary
8
The SocialPhysics project
The goal of SocialPhysics is to give people more control over their digital identities
Affiliated with the Berkman Center for Internet & Society at the Harvard Law School
Higgins is part of the SocialPhysics work
Sponsored by Parity Communications.
© Novell Inc, Confidential & Proprietary
9
Higgins Trust FrameworkA mouse with a long tail...
© Novell Inc, Confidential & Proprietary
10
What is Higgins?
Higgins is a software framework that integrates identity data profile data relationship data
within and across multiple systems
Applications written to the Higgins API can virtually integrate the identity, profile, and relationship information across these heterogeneous systems
Using context providers, systems (e.g. Microsoft/IBM WS-*, LDAP, email, IM, etc.) can be plugged into the Higgins framework
© Novell Inc, Confidential & Proprietary
11
What can it be used for?
• To insulate yourself from the complexities of multiple identity management systems
• To create a virtual integration (federation) of identity, profile and/or relationship information across heterogeneous systems
• Projects we are collaborating with/leveraging
– Equinox
– ECF
– EMFT
© Novell Inc, Confidential & Proprietary
12
How it works..
© Novell Inc, Confidential & Proprietary
13
How it works (contd).
• Higgins breaks up users' identity information into appropriate pieces
• Enables them to determine who can access what parts of their identity information
• People will be able to make pieces of their identity information available as they choose
© Novell Inc, Confidential & Proprietary
14
User-centric Identity Management
• Can integrate identity, profile and relationship data across contexts
• Can maintain privacy and anonymity
• “Open Source Initiative to Give People More Control Over Their Personal Online Information”
© Novell Inc, Confidential & Proprietary
15
What about InfoCard?
© Novell Inc, Confidential & Proprietary
16
Higgins Project Summary
Open source framework with Java Reference implementation
Introduces a high level Context abstraction Consistent, high level API integrates across
heterogeneous systems and multiple identity systems Unifies directories, social networks, and collaboration
spaces Makes it easy to manage identity, profile, reputation, and
relationships across contexts Extensible through plug-ins
Check us out at www.eclipse.org/higgins
© Novell Inc, Confidential & Proprietary
17
Summary
• Identities should be owned by individuals, not corporations– Open Source is a great vehicle for this
• Widespread industry support including Novell, IBM– Microsoft part of the discussion
• The goal?– Simplifying and securing the Web for users
© Novell Inc, Confidential & Proprietary
18
Questions
Unpublished Work of Novell, Inc. All Rights Reserved.
This work is an unpublished work and contains confidential, proprietary, and trade secret information of Novell, Inc. Access to this work is restricted to Novell employees who have a need to know to perform tasks within the scope of their assignments. No part of this work may be practiced, performed, copied, distributed, revised, modified, translated, abridged, condensed, expanded, collected, or adapted without the prior written consent of Novell, Inc. Any use or exploitation of this work without authorization could subject the perpetrator to criminal and civil liability.
General Disclaimer
This document is not to be construed as a promise by any participating company to develop, deliver, or market a product. Novell, Inc., makes no representations or warranties with respect to the contents of this document, and specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose. Further, Novell, Inc., reserves the right to revise this document and to make changes to its content, at any time, without obligation to notify any person or entity of such revisions or changes. All Novell marks referenced in this presentation are trademarks or registered trademarks of Novell, Inc. in the United States and other countries. All third-party trademarks are the property of their respective owners.
Unpublished Work of Novell, Inc. All Rights Reserved.
This work is an unpublished work and contains confidential, proprietary, and trade secret information of Novell, Inc. Access to this work is restricted to Novell employees who have a need to know to perform tasks within the scope of their assignments. No part of this work may be practiced, performed, copied, distributed, revised, modified, translated, abridged, condensed, expanded, collected, or adapted without the prior written consent of Novell, Inc. Any use or exploitation of this work without authorization could subject the perpetrator to criminal and civil liability.
General Disclaimer
This document is not to be construed as a promise by any participating company to develop, deliver, or market a product. Novell, Inc., makes no representations or warranties with respect to the contents of this document, and specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose. Further, Novell, Inc., reserves the right to revise this document and to make changes to its content, at any time, without obligation to notify any person or entity of such revisions or changes. All Novell marks referenced in this presentation are trademarks or registered trademarks of Novell, Inc. in the United States and other countries. All third-party trademarks are the property of their respective owners.