Who are You? Who am I? Who is Anybody?

A session at GOTO Aarhus 2011

Tuesday 11th October, 2011

2:30pm to 3:20pm (CET)

One of the most difficult decisions in developing a Web site is how to manage user identity. As a user you have to assess the implications of connecting your Twitter or Facebook user to other random services. Meanwhile, enterprises are challenged to evaluate ever more magical products for connecting their silos with other silos, often in direct conflict with any desire for a RESTful architecture. Did innovation in authentication on the Web stop at usernames, passwords, and the HTTP Cookie? Does Firesheep mean you should serve everything over HTTPS? What happened to OpenID? Can outsourcing your userbase to Twitter, Facebook, Google or some other commercial entity really be a good idea?

This talk has some answers, but mostly offers a wide-ranging and opinionated tour of the current state of identity on the Web. There will be URIs and angle-brackets, but mostly anecdotes involving venn diagrams, famous bridges, self-destructing kiosks and quantum computers.

Keywords: Web, REST, Identity, PKI, SAML, VRM, UMA, XAuth, OpenID, OAuth, Webfinger.
Audience: Anyone who wants to build a Web site, or uses the Web, or has to talk to Enterprise Architects about the Web.

About the speaker

This person is speaking at this event.
Paul Downey

I never reveal my sources. I always give attribution. I never use absolutes. I am never conflicted. bio from Twitter

Coverage of this session

Sign in to add slides, notes or videos to this session

GOTO Aarhus 2011

Denmark Denmark, Arhus

10th12th October 2011

Tell your friends!


Time 2:30pm3:20pm CET

Date Tue 11th October 2011

Short URL


View the schedule



See something wrong?

Report an issue with this session