Hailstorm competes with Sun, Oracle, AOL and
Are .NET users free to choose any directory other than Microsoft's Active Directory? Can they replace Microsoft's Kerberos with any other Kerberos server? Can the replace Windows 2000 with any other operating system? The answer, in every case, is no..
Consumers targeted by HailStorm are the same people that AOL relies on for its revenue...
Technically unbiased comparison of web services implemented in both.
The Sun J2EE vision for shared context is a decentralized, distributed suite of shared context services that live on the Internet.
Dave Winer discusses two concurrent conferences, open source and The Burton Group's Catalyst conference.
10. We also discussed identity in both venues: Passport and AOL's leaking Magic Carpet, Jabber, XNS, etc. I said let's do an API that flattens the differences between the services and support them all. (Applying the inclusion philosophy, which applies to BigCo's as well as small ones.)
TechNetCast mp3s of the debate.
Common authentication begets very wide trust circle. Passwords in the clear on 95 and ME. Too many trusted root keys in shipped web clients. UI confusion. Several DES keys per vendor - weak key more likely. Central point of attack. Cookie (key) inconsistancies on browsers. Hotmail's dubious accounts given passports. Bogus merchant (Trojan horse or man in the middle). DNS attack - phoney server name resolution inserted in a DNS server.
Plans to move to Kerberose.
mentions AOL's Magic Carpet
But Theodore Tso, former team leader for Kerberos development at MIT and now an industry consultant, complained that Microsoft has in the past added extensions to Kerberos that either prevent the use of competing server software or make Microsoft software work better.
Muglia and other Microsoft executive, however, said those proprietary extensions arent involved in the log-on process, and said any software that adopts standard elements of Kerberos will work with the authentication scheme.
Readers with long memories will remember the furore when Microsoft documented its Kerberos implementation, and then sent its legal attack dogs round to our friends at Slashdot who hosted postings containing the details of this 'open' implementation.
"They're very clever. They know the smallest amount of control they need to leverage monopoly. If you have a server that does authentication and authorization, then you have the equivalent of a Windows Primary Domain Controller, and that's their terror," he says.
When will I be able to use my MS Passport login to login to Slashdot?
That way MS can post comments for me, and save me the time I spend thinking for myself.
another copy
vague issues about open source fighting but still furthuring MS business model
more of the same
Winterspeak article on Microsoft squeezing competition and customers facing more virus problems. some interesting links. (endorsed W3C patent policy, how 'bout that?)
Mostly went right into a presentation.