Interoperability for the Identity Metasystem, Identity Selector Interoperability Profile made available under OSP.
Microsoft made several identity metasystem interoperability announcements at Interop 2007 today.
Microsoft has been a leading industry voice in the creation of an identity metasystem, an ecosystem designed to enable the exchange of personal identity information on the Internet so all parties may understand whom they are working with online. Three core elements make up the identity metasystem:
-
the people who are presenting their identity,
-
the Web site or online service requesting proof of identity,
-
the identity providers who assert some information about those people.
The projects announced today improve interoperability for each of the three identity metasystem components and represent the next step in Microsoft’s commitment to deliver interoperability by design.
“Our customers expect us to enable interoperability between Microsoft-based solutions, as well as across other platforms and technologies. For this reason, we take a very pragmatic, customer-centric view of interoperability. Addressing the effective exchange of identity information is a perfect example of how we look at interoperability holistically in order to meet a critical customer need.”
Bob Muglia, Senior Vice President of the Server and Tools Business, Microsoft
Identity Selector Interoperability Profile Specification Available Under Microsoft’s OSP
In September 2006 Microsoft announced the availability of 38 Web services specifications under the Open Specification Promise (OSP). A subset of those specifications, such as WS-Trust and WS-SecureConversation, addressed identity metasystem scenarios and have led to interoperable identity solutions such as Novell’s Bandit project and the Eclipse Foundation’s Higgins Trust Framework Project. Microsoft is now making the Identity Selector Interoperability Profile available under the OSP to enhance interoperability in the identity metasystem for client computers using any platform. This is great news and should please one or two commenters to this blog!
Open Source projects to help make web sites Identity-Aware
Microsoft is also starting four open source projects that will help Web developers support information cards, the primary mechanism for representing user identities in the identity metasystem. These projects will implement software for specifying the Web site’s security policy and accepting information cards in Java for Sun Java System Web Servers or Apache Tomcat or IBM’s WebSphere Application Server, Ruby on Rails, and PHP for the Apache Web server. An additional project will implement a C Library that may be used generically for any Web site or service.
The projects will be hosted on the open source project sites http://informationcard.sourceforge.net and http://rubyforge.org/projects/informationcard, and will be aggregated for ease of use for all developers to access at http://www.codeplex.com/informationcardjava and http://www.codeplex.com/informationcardruby.
OpenLDAP adapter for Microsoft ILM 2007
Microsoft also announced its collaboration on an open source project with KERNEL Networks and Oxford Computer Group to provide an OpenLDAP adapter for Microsoft ILM 2007. The adapter will extend ILM 2007’s support for heterogeneous environments by enabling efficient two-way synchronization of identity information for OpenLDAP. This adds to ILM 2007’s already significant out-of-the-box connectivity to more than 30 directories, databases and other systems. The benefit to Microsoft customers is a more extensible and flexible identity management solution.
Wow, there's alot there! I am really pleased as I've had conversations across Europe and beyond about each one of these topics. Here are some of the quotes from the press release:-
“The OSP continues to represent a significant step forward as the industry works to build more interoperable identity infrastructure. We’ve seen a number of advancements and collaborations in the last several months that are a direct result of the OSP process and expect this trend to continue.”
Gerry Gebel, Vice President and Service Director, Burton Group
“Microsoft’s extension of its Open Specification Promise is a key milestone for the community developing software that interoperates with Windows CardSpace™. We appreciate all the effort that Microsoft has made and is making toward interoperability.”
Paul Trevithick and Mary Ruddy, Co-Leads, Eclipse Higgins Project, Eclipse Foundation
“We are impressed with Microsoft’s continuing efforts to support Web site developers, using Java and other languages, in implementing information card support and making this technology available across multiple platforms.”
Jens Fromm, Spokesman, Fraunhofer-Institute FOKUS
“I’m excited and encouraged to see that Microsoft is continuing to further the Open Specification Promise and include additional specifications in the information card area as this will go a long way to help ensure that open source communities can implement information card identity providers and relying parties.”
Anthony Nadalin, Chief security architect, Higgins Project member, IBM
“Microsoft's efforts to broaden the use of OSP, particularly with the ISIP, have enabled greater interoperability across platforms.”
Dale Olds, Bandit project leader, Novell Distinguished Engineer, Novell Inc.
“ThoughtWorks is excited to be working with Microsoft on this open, cross-platform identity management initiative. In supporting open standards, Microsoft has opened the door for our customers to leverage Microsoft products with its current technology investments like Ruby and Java.”
Roy Singham, CEO, ThoughtWorks Inc.
Maybe Kim's right and we're close to the identity metasystem big bang.
(Update: The news is so good Jason's blogging again 
Yo Jason!)