Presentation is loading. Please wait.

Presentation is loading. Please wait.

Mashing Up with User-Centric Identity America Online LLC John Panzer, Praveen Alavilli.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Mashing Up with User-Centric Identity America Online LLC John Panzer, Praveen Alavilli."— Presentation transcript:

1 Mashing Up with User-Centric Identity America Online LLC John Panzer, Praveen Alavilli

2 Web 2.0  Data Sharing  Social Collaboration  Perpetual Beta  Incremental Evolution  Web as a Platform, and  Users in Control

3 Mashup  Wikipedia: "a website or application that combines content from more than one source into an integrated experience."  API[1] + API[2] + … +API[N]  Netvibes.com, imified.com, etc…

4 Role of Identity  Well.. to identify the user for ….  Personalization  Authorization / Access Control  Communication  Content Publishing  Maintaining Public Identity across Providers

5 But … it is also  A barrier to entry  Registration == drop off  ID fatigue among users  Expensive to maintain authentication infrastructure

6 Online Identity  Lives moving online  Virtual world identity != physical world identity  Fragmentation of identity across services  Limits value of services (network growth slowed)  Not necessary to bind identity and services together

7 User-Centric Identity  Providing user choice  Privacy protecting  Easy to adopt & use  Allowing collaboration  Supporting Long Tail applications  Internet scale

8 Open Protocols  Community driven  OpenID  CardSpace  Liberty (SAML)  Single Provider  Yahoo! BBAuth  Google Account API  AOL OpenAuth

9 Challenges w/ Adoption  Platform/OS dependencies  Programming language support  Too many APIs/protocols  Complex message formats

10 Challenges: User Experience  Sites with existing user base  Same ID/Password every where  Inconsistent login experience  ‘Deputization’ of services  Redirects

11 Challenges: Permission Management  Different ways to manage user permissions (consent)  Implicit vs explicit  Client vs server  Decentralized consent management  Managing given consents

12 Security Issues  XSS  Phishing  Authentication tokens for sites vs users  Managing sessions (client side vs server side)  Validating and invalidating authentication tokens

13 Privacy Issues  Same identifier everywhere  Public vs private personas  Anonymous and randomized identities

14 Reputation Services  Why is reputation important?  Who owns it?  Based on  Published content  Activity  Collaboration with other services (Mail, IM, etc.)  Actions to take  Restricted usage limits  Block/deny requests  Report to reputation services

15 Next Steps…  User Experience  Consistency is key  User Permissions  Ask user  Implied consents are bad  Report and consume reputation  Identity and associated data under user’s control  Support multiple public/private identities  Support switching Identity Providers  Adopt protocols that support all (most) of the above

16 AOL Open Authentication API http://dev.aol.com/openauth  Light weight provisioning and authentication of AIM/ICQ/AOL users  Easy to integrate via browser redirect, AJAX, or direct models  Permission management  ‘Deputization’ of services through secure token exchange  AOL Open Services built on OpenAuth  Other services:  Integrated OpenID Provider (OP)  OpenID Authentication Token Exchange Extension  OpenID Consumer/Relying Party - accepts 3rd party OpenIDs  STS for CardSpace in future

17 Sign In Page

18 Permission Request Page

19 User Permission Management Page https://my.screenname.aol.com

20 Ficlets

21 Q & A Contact Info Praveen AlavilliJohn Panzer =praveen.alavilli=john.panzer http://dev.aol.com

Download ppt "Mashing Up with User-Centric Identity America Online LLC John Panzer, Praveen Alavilli."

Similar presentations

Yahoo! OpenID and OAuth 1 Allen Tom Yahoo! Membership Architect OpenID Foundation Board

Yahoo! OpenID and OAuth 1 Allen Tom Yahoo! Membership Architect OpenID Foundation Board
Performance Challenges for the Open Web Stanford CS193H 29 September 2008.

Performance Challenges for the Open Web Stanford CS193H 29 September 2008.
1 SensorWebs and Security Experiences Dan Mandl Presented at WGISS Meeting in Toulouse, France May 11, 2009.

1 SensorWebs and Security Experiences Dan Mandl Presented at WGISS Meeting in Toulouse, France May 11, 2009.
Eunice Mondésir Pierre Weill-Tessier 1 Federated Identity with Ping Federate Project Supervisor: M. Maknavicius-Laurent ASR Coordinator: G. Bernard ASR.

Eunice Mondésir Pierre Weill-Tessier 1 Federated Identity with Ping Federate Project Supervisor: M. Maknavicius-Laurent ASR Coordinator: G. Bernard ASR.
| Copyright© 2010 Microsoft Corporation Quick Start into Activating and Selling Office 365.

| Copyright© 2010 Microsoft Corporation Quick Start into Activating and Selling Office 365.
By: Hassan Waqar.  A PROTOCOL for securely transmitting data via the internet.  NETWORK LAYER application.  Developed by NETSCAPE.

By: Hassan Waqar.  A PROTOCOL for securely transmitting data via the internet.  NETWORK LAYER application.  Developed by NETSCAPE.
Donkey Project Introduction and ideas around February 21, 2003 Yuri Demchenko.

Donkey Project Introduction and ideas around February 21, 2003 Yuri Demchenko.
Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.

Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.
Will Darby 91.514 5 April 2010.  What is Federated Security  Security Assertion Markup Language (SAML) Overview  Example Implementations  Alternative.

Will Darby April  What is Federated Security  Security Assertion Markup Language (SAML) Overview  Example Implementations  Alternative.
By: Ansuya Chauhan.

By: Ansuya Chauhan.
Web Services and the Semantic Web: Open Discussion Session Diana Geangalau Ryan Layfield.

Web Services and the Semantic Web: Open Discussion Session Diana Geangalau Ryan Layfield.
Spark Web 2.0 Tools for Communication and Collaboration David Grogan Manager, Curricular Technology Group UIT Academic Technology Tufts University What.

Spark Web 2.0 Tools for Communication and Collaboration David Grogan Manager, Curricular Technology Group UIT Academic Technology Tufts University What.
T-110.5140 Network Application Frameworks and XML Service Federation 30.04.2007 Sasu Tarkoma.

T Network Application Frameworks and XML Service Federation Sasu Tarkoma.
1 Higgins 1: a species of Tasmanian long-tailed mouse 2: the name of an open source collaboration of IBM, Novell, Oracle, Parity…

1 Higgins 1: a species of Tasmanian long-tailed mouse 2: the name of an open source collaboration of IBM, Novell, Oracle, Parity…
 Lynn Ayres Program Manager Identity Services  Tore Sundelin Program Manager Identity Services BB29.

 Lynn Ayres Program Manager Identity Services  Tore Sundelin Program Manager Identity Services BB29.
One Stop Mail Service Bhattacharya, Tonmoy, Bhattacharya, Tonmoy, Hariharan, Rama Krishnan, MS in Engineering Science,

One Stop Mail Service Bhattacharya, Tonmoy, Bhattacharya, Tonmoy, Hariharan, Rama Krishnan, MS in Engineering Science,
Copyright B. Wilkinson, 2008. This material is the property of Professor Barry Wilkinson (UNC-Charlotte) and is for the sole and exclusive use of the students.

Copyright B. Wilkinson, This material is the property of Professor Barry Wilkinson (UNC-Charlotte) and is for the sole and exclusive use of the students.
OpenID And the Future of Digital Identity Alicia Bozyk April 1, 2008.

OpenID And the Future of Digital Identity Alicia Bozyk April 1, 2008.
CertAnon A Proposal for an Anonymous WAN Authentication Service David Mirra CS410 January 30, 2007.

CertAnon A Proposal for an Anonymous WAN Authentication Service David Mirra CS410 January 30, 2007.
ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.

ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.

Similar presentations

Ads by Google