The Perfect Identity Authorization Scheme???

June 12, 2008

Lots of discussion lately around the idea of managing your digital identity in a global social world.  There are various vendor specific and open source projects (Open ID and Chris Messina’s DiSo project) looking at this issue but I have an idea…  

With the proliferation of smart phones like the iPhone and Blackberry why can’t we use our phone as our identity server?  My unscientific poll tells me most people keep their mobile phone number for ever so you don’t have to worry about managing a transient server somewhere and since it is always with you, you own the server/data and it’s use.

Now for this to work it really presupposes an unlimited data plan and we’d have to think about security, maybe 2 one-way hashes of the phone number so it is not detectable.  Also battery life is of course a concern but most smart phones have a notification or push awake feature so that should not be an issue

All we’d have to do is install an ID server to the smart phone and Bob’s your uncle.

It would be fairly easy to build a proof of concept of this, I am sure there a holes so let’s discuss…

Advertisements

2 Responses to “The Perfect Identity Authorization Scheme???”


  1. Give this post a read:

    http://factoryjoe.com/blog/2008/05/17/the-openid-mobile-experience-part-ii/

    Not too far from what you’re asking for… though perhaps a little more constrained in ambition. 😉

  2. swarmsync Says:

    Cool, looks like Chris has envisioned some of this already. 🙂


Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: