OpenID and Microsoft, BFFs*!
Congratulations to all those in the OpenID world for Microsoft’s embrace of your efforts! It’s a great milestone not only for JanRain, Sxip, and Verisign, but also folks at NetMesh and SixApart not officially involved in the agreement.
It’s also a good deal for Microsoft, which is what seems to have gotten some hackles up. From Kim Cameron:
Here is Dick Hardt, CEO of SXIP, explaining our joint announcement on OpenID and CardSpace to people in the community who may worry that Starship Microsoft is about to land on OpenID and squish it.
This morning Microsoft announced they would support OpenID in future identity server products. Although this is a huge endorsement for OpenID, there will likely be many people that are fearful of what Microsoft’s involvement may do to OpenID.
[...]
I look forward to bridging the Microsoft and OpenID worlds today. The team at Microsoft get what we are doing in OpenID, and want to enable their technology to take advantage of the reach of OpenID, as well as enable the OpenID community to take advantage of CardSpace technology. This looks like a win-win for everybody.
[...]
Let me say something about potential squishing. It just won’t happen. One of the best things about OpenID is its organic quality, and the last thing we want to do is interfere with that.
Also via Kim, some commentary from Scott Kveton at JanRain:
There are a couple of points I’d like to make outside of the above announcement to hopefully address any concerns that the OpenID community might have:
- JanRain will never require users of our libraries or services to use Windows CardSpace ™. We offer support for this technology as another option for users much like using our Safe SignIn and Personal Icon technologies on MyOpenID.com. We’ll also continue to support the OpenID efforts going on with Mozilla and Firefox.
- Windows CardSpace â„¢ is shipping with Vista today and is a well thought-out technology that helps address many of the privacy and security concerns that people have had with OpenID. OpenID helps users describe their identity across many sites in a public fashion. The two together are very complimentary products and each has its strength.
- Microsoft did not cave in to the OpenID community and the OpenID community is giving nothing up to Microsoft. This is a collaboration on bringing the best technology to the marketplace as quickly as possible to help secure users and solve the single sign-on solution once and for all.
- Please reserve judgment on what this all means until you see it all work together. The technology is really quite simple and the ramifications for end-users is huge. It also goes a very long way to completely addressing the phishing concerns we’ve heard so much about.
Why is it that any collaboration or cooperation with Microsoft is immediately greeted with suspicion, paranoia and a sense of betrayal? Well, actually, I know why, but is it still justified? My employer, Novell, is still getting hammered by those convinced we sold our corporate soul to the devil when we signed a deal with Microsoft. Matt Asay, who is otherwise a thoughtful commentator on all things open source, said at the time the deal was announced that “Novell got duped.” Daniel Lyons at Forbes said:
Microsoft has done this many times before, so often that Redmond has a name for the technique: embrace, extend and exterminate. And yet people keep doing these deals. Usually, it’s weak, struggling, desperate companies with declining market share and little hope of turning things around. In other words, just like Novell.
But the consensus among those of us within Novell working on the front lines post-Microsoft-deal is that it is unquestionably a good thing for Novell, our customers, and the open source community. And so I believe the assurances of those involved that the Microsoft-OpenID deal will turn out similarly.
Now, none of this is to say that there is a new reformed Microsoft today that only wants to share the love with the rest of the industry. But I think these deals reflect the fact that Microsoft is not omnipotent. Bottom-up community-driven efforts can reach a tipping point, where Microsoft needs the community as much as the community needs Microsoft. I think this is true of OpenID as well as Linux.
*”Best Friends Forever.” In case you’re not a South Park fan, see here.