Here's an article by Joris Evers, a Staff Writer at CNET News.com. Joris has done a great job covering the industry and has certainly paid his dues.
IBM and Novell on Monday are expected to announce an open-source response to Microsoft's forthcoming InfoCard identity management technology.
The companies plan to contribute to an open-source initiative code-named Higgins Project. The project aims to help people manage their plethora of Internet logins and passwords by integrating identity, profile and relationship information used across authentication systems on the Net.
The initiative also includes the Berkman Center for Internet & Society at Harvard Law School and Parity Communications, a company developing “social commerce” software that has been operating in stealth mode.
The open-source project, managed by the Eclipse Foundation, is a response to Microsoft's InfoCard identity management technology, Anthony Nadalin, distinguished engineer and chief security architect at IBM, said in an interview.
“This is a move to help get identity management out in the open source. InfoCard is one user-centric identity system…but the implementation Microsoft has is not what I would call open,” he said. “There are a lot of hidden elements.” One example, he said, is how it interacts with Active Directory, Microsoft's identity management technology for businesses.
Microsoft has described InfoCard as a technology that gives people a single place to manage authentication and payment information, in the same way a wallet holds multiple credit cards. An InfoCard client on a PC will connect with Web sites that need information for authentication or transactions.
Yet, the Higgins Project is more than a rival to InfoCard, Nadalin said. “We are not here to create another identity system; we are here to aggregate the existing systems,” he said. “We have invited Microsoft to participate…and we will continue to work with Microsoft to integrate with InfoCard. We think that has to happen.”
The Higgins Project will complement InfoCard in providing client software for operating systems other than Windows, Nadalin said. Also, it will make existing identity management products, such as IBM's Tivoli software, work with InfoCard, he said. IBM is expected to support Higgins in its products sometime next year.
“Microsoft would be left out in the cold without Higgins; it allows Microsoft to participate in non-Windows environments,” Nadalin said “Customers want choice. They end up voting with their pocket book. They don't want to be locked in.”
The Higgins Project looks to be a step forward in solving the problem surrounding online identities, said Kim Cameron, identity architect at Microsoft. “From what I've seen, this is a very positive development,” he said. “I think we are really going to see the identity big bang–a whole wave of social and identity-aware applications that are suddenly becoming possible.”
But while Nadalin may have his mind set on where the Higgins Project is headed, nothing is set in stone, said Burton Group analyst Mike Neuenschwander. “It is open source; it is hard to tell exactly where it will head,” he said.
There are other efforts to integrate identity information. But with IBM and Novell, the Higgins Project has attracted big-name support, Neuenschwander said.
“Everybody wants to be that central hub that integrates everybody else's stuff,” he said. “Higgins is significant in that IBM and Novell have stepped up to say they are going to develop their client software under that project.”
Neuenschwander doesn't expect to see anything tangible come out of the Higgins Project until at least the end of the year. “Then we can see with greater certainty where they are headed,” he said. “Microsoft has made it much further down the road with InfoCard.”
Microsoft plans to deliver InfoCard by the end of this year as part of Windows Vista, the next version of its flagship operating system. InfoCard will also be available for Windows XP, Microsoft has said.
Now, all is fair in love and software, and everyone who advances identity is a friend of mine. Nor do I expect people to bow down and say, “InfoCards are great and good and we will obsequiously follow in Microsoft's footsteps.” People need to differentiate themselves.
None-the-less I did contact Anthony to ask about the notion that “the implementation Microsoft has is not what I would call open.” I wanted to know what he saw as “hidden elements.” To my knowledge there is nothing hidden whatsoever, as the implementors guide published on this site testifies.
His answer:
“What I said was that User centric perspective points out the need to make it simple and easy for users to manage. What is also needed is that the framework be able to allow users and institutions to choose any identity systems and be able to integrate and interoperate between them. e.g., they can choose from any of the identity information stores to be federated – be it IBM Directory Server, Novell eDirectory, SAP system, ActiveDirectory, collaborative spaces, OpenLDAP, etc.”
And I couldn't agree more. InfoCard is specifically designed to allow this. And Anthony knows this as well as I do. So what I suspect might have happened is that when he pointed out the need to integrate all the other systems, it likely appeared that he saw things as being more counterposed than was actually the case.
With the Identity Metasystem, the paradigm is shifting. The way we are building this thing, in the open and in the blogosphere and in a spirit of collaboration, is a big break with the past. It's hard to get your arms around it. It's hard to know how to “message it” when we talk to others. It's hard to write about without it sounding silly.
But hey – we are gaining momentum and we are going to get this puppy moving full speed ahead. Further, we are going to have a renaissance of the industry that will shock everyone as the big bang hits the world of applications.
