All Regions
Argentina
Australia
Austria
Belgium (fr)
Belgium (nl)
Brazil
Bulgaria
Canada (en)
Canada (fr)
Catalonia
Chile
China
Colombia
Croatia
Czech Republic
Denmark
Estonia
Finland
France
Germany
Greece
Hong Kong
Hungary
Iceland
India (en)
Indonesia (en)
Ireland
Israel (en)
Italy
Japan
Korea
Latvia
Lithuania
Malaysia (en)
Mexico
Netherlands
New Zealand
Norway
Pakistan (en)
Peru
Philippines (en)
Poland
Portugal
Romania
Russia
Saudi Arabia
Singapore
Slovakia
Slovenia
South Africa
Spain (ca)
Spain (es)
Sweden
Switzerland (de)
Switzerland (fr)
Taiwan
Thailand (en)
Turkey
US (English)
US (Spanish)
Ukraine
United Kingdom
Vietnam (en)
Any Time
Past Day
Past Week
Past Month
Past Year
Directed Identity vs Identifier Select - Will Norris
willnorris.com/2009/openid-directed-identity-identifier-select/
Directed
identity
protects against collusion. Today,
identity
data is being thrown around pretty loosely without much regard to how it is being used, but that is quickly changing. Slowly but surely, we are seeing reputable companies involved in high value transactions express interest in what federated
identity
can offer.
Identity and Identifiers - willnorris.com
willnorris.com/2010/identity-and-identifiers/
Identity
Online. I think that I really started giving thought to my online
identity
when I was in college at Georgia Tech. When I was a student, we were all given a "GT Number", which was simply an opaque username and email address. Mine was gte739u, and so my email address was gte739u@prism.gatech.edu. Everyone had these numbers, and we ...
Best Practices with Directed Identity - willnorris.com
willnorris.com/2009/best-practices-with-directed-identity/
This is SAML's directed
identity
. Shibboleth's implementation of persistent identifiers has matured a bit over the years, but the main algorithm remains the same. At it's simplest, the identifier is simply a hash of three things: an identifier for the user, an identifier for the
identity
provider, and an identifier for the relying party.
A New Kind of OpenID Proxy - Will Norris
willnorris.com/2009/a-new-kind-of-openid-proxy/
There are cases where privacy is truly important. As I demonstrated in my last post on directed
identity
implementations, there are algorithms that can adequately protect the
identity
of the user from the
site
they are logging in to. But remember, those algorithms do absolutely nothing for protecting my
identity
from my
identity
provider.
strong authentication and emailing passwords
willnorris.com/2007/strong-authentication-and-emailing-passwords/
2023-03-01T00:00:00.0000000
From the looks of it, you enter your iamdentity username and password at the service provider website, instead of being redirected to the
identity
provider (…not good). But then, you are immediately emailed another one time use token (a five digit number) that you must immediately use to complete the authentication.
Free Your ID - willnorris.com
willnorris.com/2007/free-your-id/
Wow, when Scott said yesterday that JanRain was going to be making a cool announcement, he wasn't kidding. Today they, along with GNR, announced a new service called FreeYourID, which provides
identity
services with a .name domain.This top level domain was originally setup for use by individuals in this fashion, but it never really seemed to catch on (at least from my perspective).
wp-openid 2.0 released - Will Norris
willnorris.com/2007/wp-openid-20-released/
Nice to see that here the 2.0 specific directed
identity
feature worked like a charm. I entered openid.ee as the website URL and the comment got a really obvious Anonymous name even. Unfortunately on my
site
it doesn't work that smoothly. I probably should work with templates a bit. Also Spam Karma did not like the post with the anonymous URL.
Identity on the phone
willnorris.com/2008/identity-on-the-phone/
Identity
on the phone. March 21, 2008 by Will Norris. Yesterday I called Bank of America to find out what had happened to my income tax refund check. I was prompted to enter my account number for 'faster service', but I instead simply pressed zero to bypass it. Entering your account number leads you into this drawn out description of your ...
How well does your OpenID Provider stack up?
willnorris.com/2007/how-well-does-your-openid-provider-stack-up/
There are increasingly more specs in the OpenID space, and many of the extensions rely on XRDS documents to publicize support. To help enable that, I've been looking to update my yadis plugin for WordPress to automatically include the correct protocol support for the major OpenID Providers. Of course, in order to do that I have to actually find out what all protocols they supported, so I ...
Comparison of Support among OpenID Providers - Will Norris
willnorris.com/openid-support/
Gone as of December 2013 This page used to display a table comparing the OpenID protocol support by some of the more popular OpenID providers. The protocols this page tested for are all but dead at this point, and I haven't maintained the list for several years now, so I've taken it down.
Java OpenID Library Design - Message Handling - Will Norris
willnorris.com/2009/java-openid-library-design-message-handling/
This past June I contracted with Internet2 to work on adding OpenID support to the Shibboleth
Identity
Provider. I had actually started to work on this over a year prior while working at USC. At the time there were (and still are) two primary OpenID libraries in Java, Verisign's JOID, and Sxip's OpenID4Java.I spent a fair amount of time looking at both libraries, but ultimately decided ...
WordPress OpenID v3.3 - Will Norris
willnorris.com/2009/wordpress-openid-v3-3/
Tom: why don't they work? Because email addresses are not OpenIDs. Google defined their own custom discovery protocol for Google Apps. RPX, which the demo
site
you linked to is using, implements Google's discovery protocol so it works on any RPX
sites
.Because this is not a standard discovery protocol, but is instead a vendor-specific option, I will not be adding support for it to the OpenID ...
OSIS Interop Testing
willnorris.com/2008/osis-interop-testing/
The DiSo Project (well, wp-openid specifically) is participating in the Open-Source
Identity
System Interop Testing happening now until the RSA Conference in April. WP-OpenID is an OpenID 1.1 and 2.0 consumer, and additionally uses the simple-registration extension. We do not yet support attribute exchange. Under the covers, we use the JanRain PHP Library… a version somewhere between the 2.0 ...
OpenID provider wish-list
willnorris.com/2007/openid-provider-wish-list/
Identity
Linking - This is certainly in the running for being the latest "holy grail" of OpenID… the ability to link multiple OpenIDs in such a way that relying parties understand that they are equivalent. I'm not even sure if the provider is the right party to address this problem (I imagine it will require work on both sides) but if ...
Bigger and Better Things - Will Norris
willnorris.com/2009/bigger-and-better-things/
At this point, I'm not entirely sure where I'll end up after this. Ideally, I'd like to stay in the
identity
space, continuing to work on technologies like SAML, OpenID, OAuth, XRD, etc. That's where both my interest and experience lie, and where I'd be most effective… I still have a lot I'd like to offer to that space.
Archive - Will Norris
willnorris.com/archives/
Identity
on the phone Mar 21, 2008; OSIS Interop Testing Mar 3, 2008; 2007. out of town Dec 15, 2007; wp-openid moving to DiSo Dec 10, 2007; WordPress plugins - development version Dec 7, 2007; rebuild wp-openid tables Dec 4, 2007; improving OpenID support Nov 12, 2007; wp-openid 2.0 released Nov 9, 2007; final push for wp-openid 2.0 Nov 8, 2007
A place to call home - willnorris.com
willnorris.com/2013/a-place-to-call-home/
I have hosted my primary
identity
online on a domain that I control for 11+ years (8 years on
willnorris.com
, and three years on a previous domain). In that decade, I have used at least four different content management systems (homegrown, blosxom, Movable Type, and WordPress), and have hosted it on close to a dozen different servers.
About - Will Norris
willnorris.com/about/
About. Hi, I'm Will Norris. I'm a follower of Jesus, a husband to Elisabeth, a father to Gabriel and Judah , a citizen of the indie web, and a software engineer at Tailscale. Prior to Tailscale, I was the Open Source Lead at Twitter. Before that, I was at Google for 10 years, with most of that time spent in their Open Source Programs Office ...
WordCamp badge fail
willnorris.com/2013/wordcamp-badge-fail/
Last December, Matt Mullenweg linked to a post titled A lawyer's home base on the web is their blog, advocating the use of a personal website as your primary
identity
online. Blogs have become a home base: a hub of personal information, which is then pushed to services like Facebook and Twitter.
wp-openid moving to DiSo
willnorris.com/2007/wp-openid-moving-to-diso/
In case you missed it last week, Steve Ivy and Chris Messina announced the DiSo Project as an incubator of sorts to develop distributed social applications. Initially, they will be focussing on plugins for existing publishing platforms like WordPress and Drupal.On the WordPress side, they are using wp-openid as a foundation to develop additional plugins that build on OpenID to bring other ...
hCard is not a provisioning engine (for private data)
willnorris.com/2007/hcard-is-not-a-provisioning-engine-for-private-data/
Last week I wrote about how hCard is much more appropriate than OpenID for the provisioning use-case and Chris continued that discussion, questioning why we need SREG and Attribute Exchange when hCard works just fine.. So the question is, when OpenID is clearly a player in the future and part of that promise is about making things easier, more consistent and more citizen-centric, why would we ...
willnorris.com
willnorris.com
Jun 15, 2021. We were a Kraft household growing up, certainly eating our fair share of blue box mac and cheese. The steps to make it are quite simple: cook the pasta and drain out the water, put the pasta back in the pan, then stir in milk, butter, and the cheese packet.
Will Norris
willnorris.com/resume/
willnorris.com
• will@willnorris.com Experienced engineering leader with 15+ years building products for developers and leading teams with a particular focus on open source. Work Experience Tailscale Software Engineer 2022 - Present Twitter Open Source Lead 2020 - 2022 Re-established Twitter's Open Source Programs Office and recruited team of Technical Program Managers and Engineers to ...
Feedback