Posted February 14th, 2007 Thanks to Raj, Paul, and Conor for all chiming in on my previous post of SPML in the CardSpace world.
Conor wrote:
However, we also decided that this “model of provisioning looked a bit strange” to try to shoehorn into SPML as the problem we were solving was just different. There was at least one contributor to SPML in the room while this disucssion was going on and the decision was being made, so I presume they also felt that the model was “strange” for SPML.
Can someone summarize the “strangeness” in the Advanced Client spec? It seems to me that the Trusted Module is a bit like a PSO in SPML. That still doesn’t feel right, but I am having a hard time trying to be more specific than that.
Posted February 14th, 2007 I love my iMac. Really. Truly. Love it. Every so often it does something to test my patience.
When the mood strikes me, I like to take a self-portrait using Photo Booth, the cute little app that Apple has built. I send the photo of to friends and loved ones. It is a more interesting way of saying hi than:
Hey -
What’s up?
I’m bored.
i
At any rate, I wanted to do that this afternoon. I fire up Photo Booth and it tells me another application is using the iSight camera, please close that application and try again.
- What a very Windows-esque uninformative error. How the hell was I supposed to know which application had the camera pinned?
- Why didn’t I get the choice to close the mystery app from the error message?
- WTF? See #1
I searched the process list to no avail. I went so far as to log out and log back in. Nothing. I deleted Photo Booth’s plist. Nada.
So I used the intarwebs to go to the Google. Sure enough, people are having the same issue I am. “Solutions” range from zapping the PRAM to renewing your DHCP lease. As my dad would say, “That’s about as helpful as pig in shit” – no idea what that really means but it sounds appropriate.
I took the very drastic action of rebooting. REBOOTING! My Mac. Yes, I rebooted. This, in my opinion, is an admission of total and utter failure. Continue reading "iSight Silliness"...
Posted February 13th, 2007 I was reading about Conor Cahill’s workshop at RSA on secure provisioning of network credentials over the wire. It was a joint proof of concept between Intel, BT, and HP using Liberty’s ID-WSF Advanced Client. They talked about how to get credentials from service providers down into a client environment. (Although it is not a requirement, clearly Intel would love it if the client environment was a TPM-like object.)
One aspect of all this is a provisioning service, one for which Liberty has cooked up a spec. As a user provisioning guy this model of provisioning looked a bit strange to me. Think telephone service provisioning, not enterprise user account provisioning. The funny thing is, I thought there already was a perfectly good provisioning service standard out there – Service Provisioning Markup Language (SPML).
That got me thinking. Provisioning is an aspect of the identity lifecycle that you don’t really hear about in talks on Higgins and CardSpace and such. This is a bit of history repeating itself. Back in the day, the authentication guys got all the glory, all the publicity, and when it came time to make sure there were actually credentials in back-end services, they waved their hands. It was the lowly user provisioning system, the late-shift janitor of the identity world, that actually had to do the dirty work. Who is this janitor in the user-centric identity world? Continue reading "Is SPML irrelevant in the coming CardSpace/Higgins/OpenID identity world?"...
Posted February 8th, 2007 Mr. Bourdain shares his thoughts on the Food Network. The following gives you some idea what awaits you in this blog entry:
SANDRA LEE: Pure evil. This frightening Hell Spawn of Kathie Lee and Betty Crocker seems on a mission to kill her fans, one meal at a time. She Must Be Stopped. Her death-dealing can-opening ways will cut a swath of destruction through the world if not contained.
And when you finish your helping of Bourdain, try Buford’s take on the same subject.
Posted February 6th, 2007 New York is the location of yet another identity information on public website fun. It is sad, but I am kind of used to reading about these. What is slightly more shocking was the reason given why the data was out there in the first place:
The documents were posted on the New York site as a convenience to lenders looking to learn more about the financial status of potential borrowers.
Ah yes… for the convenience of industry the government will put citizens at risk. I thought that government was formed to protect citizens, not to facilitate industry making a buck off them. Oh wait, I forgot, this whole HD television thing is an exercise in that. Ok, ok, ok, if government is going to help industry make a buck off of us, at least do it more securely.
Stuff like this makes me wish I could be a Blank.
|
|
what others say