What’s Cool At Work These Days

We caught up with dave in 2004 to obtain the following information. Some of which is out of date, for instance, the sxip and lid references should be replaced by OpenId Connect. I guess we need to talk to him again...

identity services

Identity services, dave doesn’t know if he made up the phrase, but he was the first person he heard say it. It’s cool it’s all the rage now, or well iDm is. When he first mentioned Identity Services to himself (yes dave does talk to himself) he was thinking of directory services kicked up a notch...

dave said: Identity Services, which can be broken down to those things to manage and maintain identities. Things like backend stores like directories, authentication mechanisms to prove whose who, business systems that track who is authZ for what and the  provisioning mechanisms to ensure those are all maintained in proper lifecycle management form. And of course that Sarbox|Sox killer app is that report on everything people like dave have access to.

federation

dave: The ties that bind companies and things on the internet together, one killer app, passport was proprietary federation (had to use MS api) but allowed a person to have one account and info on that account used by multiple business and things. Thought to be implemented by something like SAML that allows information like a users email and public key to be passed between multiple sites maintained by verious peoples

Ping Identity and their ws-federation toolkit for apache is dave's favorite product announcement in the last few months. He says this is mostly because the EMAN management application suite he uses at work runs on apache and some embar rashingly simple authC technologies that could use that product to jump out of t he 90s.<-(inserted 2/10/2006 as this page is only updated once a year)

personal directories

dave: a directory that individuals could maintain all their own information on, locatable by DNS of course, allowing for applications anywhere to access them as the user gives them permission, later by federation. Cool thing about this is you don't maintain your information in amazon.com, buy.com, etc, you maintain it in your directory and when you purchase, the information is presented to the store. Can you say HotMe.com or HotDirectory.com? (like hotmail).

sxip pronounced like "skip", has tools. From sxip: “Passport is based upon a central data storage facility, while Sxip enables users to store their identity information on any Homesite they choose.” They also provide the toolset to host them yourself.

LID – is another player in the space, also giving tools to host yourself or for the company of your choise to host your LID information, which is http accessible directory information about you. At first I wondered why not use DSML, but their format is simpler for lo-res people to understand. But if you want to quote the CIM people “Don’t change the names! Adopt what’s there and enhance it if you need to.”

does dave have anything else to say?...

He does not at this time.

what does dave do for work?

Previously, dave was the principal of bisant.net (Bisant Networking), although he’d be happy to extend the sale of those solutions to you at a time like this.

dave is currently the Identity Services Architect at ciscoSystems.  Bio

wait, does he know Robbie Allen?

Yes, dave does know Robbie Allen. He's known Robbie since they first worked together on SinglePassword tools in 1997.

Robbie previously held dave's position, but Robbie didn't think it had enough reach so he redefined the role to have more responsibility and then left the team for another group inside Cisco.