September 16, 2008
Metadata Interchange Notes
I've been working with SAML-based identity federations for a bit over four years now. For most of that time, it's been obvious that after basic federations like the UK federation and InCommon were up and running in production, the next big question would be how to break out of the "federation of my close friends" model. I've spent the last couple of years bending ears at conferences with my own particular views about how this might be done.
Impromptu in-person rants of that kind are very useful for finding out whether ideas have any appeal to other people at all, but I've felt for a while that something more coherent might be useful. I've therefore put together Some Notes on Metadata Interchange as a personal position paper on this area.
snomi-v2.pdf is the current version of the document;
snomi-v2-diff.pdf is the same document with change bars from the previous version. This means you can deduce what V1 looked like if that's of interest.
I very much welcome comments and discussion on this document. If you'd like to, you can leave a comment here (if you don't have a TypeKey account, there will be a delay before it's published) or post on your own blog or just send me e-mail.
Some disclaimers: This document does not represent the official position of any organisation or group, nor is it an attempt to describe any consensus view; it's purely a personal summary. It's not a collaborative document, except in the sense that if you change my mind I'll change the text.
I expect this document to change fairly often over the next few months; hopefully, some consensus-building (and even specification-building) efforts can be budded off from it when that seems appropriate; they will probably be hosted elsewhere.
Posted by Ian at 6:41 PM in Identity | Comments (0) | TrackBack (0) | Permalink
September 16, 2008
More Pixies Inside
There used to be a joke in photographic circles that most people had rolls of film printed with "Christmas at each end and a beach in the middle". This blog hasn't been idle quite that long, but I've just got back from a very nice vacation in Bruges inspired by the visit I made for the conference mentioned in the last two entries.
Mmmmmm, chocolate… and, apparently, pixies. Who knew?
Posted by Ian at 5:46 PM in Miscellanea | Comments (0) | TrackBack (0) | Permalink
May 22, 2008
Dueling Fingers
The wireless networking may have been problematic, but the human networking was excellent. Spirited argument between friends (see picture) is always great fun.
Posted by Ian at 11:06 AM in Miscellanea | Comments (0) | TrackBack (0) | Permalink
May 22, 2008
Beyond Connectivity
I've been at a networking conference this week. If you've sent me mail and I haven't replied, the above indicates why. Normal service will be resumed in a day or so.
Posted by Ian at 7:13 AM in Miscellanea | Comments (0) | TrackBack (0) | Permalink
April 1, 2008
RFC 5241 on Naming Rights in IETF Protocols
Not a bad one this year:
This document proposes a new revenue source for the IETF to support standardization activities: protocol field naming rights, i.e., the association of commercial brands with protocol fields. This memo describes a process for assignment of rights and explores some of the issues associated with the process. Individuals or organizations that wish to purchase naming rights for one or more protocol fields are expected to follow this process.
RFC 5241 for the whole thing.
Posted by Ian at 6:31 PM in Humour | Comments (1) | TrackBack (0) | Permalink
January 23, 2008
UK federation Technical Statistics
I was recently asked to give a presentation to a group of people involved with service delivery for the UK federation. The result is Technical Statistics: What they tell us, and what they don't.
There are some interesting statistics in there (for example, the high degree to which the fairly young JANET Server Certificate Service has already taken off) but the other theme of the talk was that there is an awful lot going on that we probably can't understand without a lot more direct interaction with the membership.
I've also uploaded the slides to slideshare, if you'd like to give that a try.
Posted by Ian at 11:46 AM in Identity | Comments (0) | TrackBack (0) | Permalink
January 9, 2008
McShib Talk on Core Attributes
I gave a presentation to the second meeting of the McShib group last month covering An Identity Provider’s Guide to the Core Attributes (of the UK federation).
I made an audio recording of the presentation. I ran "a bit long" on the day (70 minutes), but once I have edited out the coughing and some of the rambling I'll post a synchronised audio+slides version.
Links referenced during the talk:
Posted by Ian at 12:17 PM in Identity | Comments (0) | TrackBack (0) | Permalink
January 9, 2008
OmniFocus 1.0
After a long public beta program, OmniFocus, OmniGroup's "professional-grade personal task management" application for the Mac, has finally reached its 1.0 milestone. If you're already both a Mac cultist and a Getting Things Done convert, you probably already know this because you're one of the 13,590 people who pre-ordered it.
GTD and OmniFocus won't magically rescue you from being disorganised (they certainly haven't entirely done that for me) but I've found that some of the GTD principles that OmniFocus allows you to implement really do lead to some level of stress reduction:
Get everything that's on your mind out of your head and into a trusted system.
Plan in terms of small, concrete, actionable steps.
Concentrate on the next available action for your current context.
You probably can't plan multi-person mega-projects this way, but that's not what this product is for. If you're trying to hold together a lot of smaller projects, it can be pretty much ideal. There's a 14-day trial available.
Posted by Ian at 10:55 AM in Software | Comments (0) | TrackBack (0) | Permalink
January 4, 2008
Tiger Team
If you're at all interested in physical security as well as computer security (or, alternatively, if you find it interesting to think about security systems as opposed to just components of those systems) a new TV show called Tiger Team might be worth a look.
The idea is pretty self-explanatory if you've heard of the concept of a tiger team elsewhere: this is a "reality" show in which the heroes break real-world security systems using a combination of technology, brass neck and dumpster diving. Rather like Mission: Impossible but without Peter Graves and (so far) without the rubber masks. What's not to like?
Unfortunately, I can't see any evidence that this series will be shown anywhere here in the UK, but you can stream the pilot episode from the cable channel's web site, at least for now. It's interesting to watch the ways in which the target's (fairly good) security fails when approached in the right way, and the presentation isn't too grating even for my sensitive British ears. Some of what you see is obviously re-enactment, but I guess that's "reality" TV for you.
Posted by Ian at 9:39 PM in Security | Comments (2) | TrackBack (0) | Permalink
January 2, 2008
Responsible Behavior
People have observed that this blog can from time to time be characterised as "a nearly impenetrable thicket of geekitude". I can't really argue with that, and I have no intention of making any kind of New Year resolution to "mend my ways".
On the other hand, I do sometimes wonder about rating my posts in terms of a new metric: how many Wikipedia entries would you have to reference to explain this to the man on the Clapham omnibus?
One of my favourite cartoon sites — xkcd.com — also finds the need to peg the MOTCO-meter once in a while. Responsible Behavior is a good example; I have to rate it a four at least:
Do you agree? More interestingly, what do you think the answer will be in ten years?
Posted by Ian at 6:12 PM in Humour | Comments (0) | TrackBack (0) | Permalink
