14:59:02 RRSAgent has joined #swxg 14:59:02 logging to http://www.w3.org/2010/09/15-swxg-irc 14:59:04 RRSAgent, make logs world 14:59:04 Zakim has joined #swxg 14:59:06 Zakim, this will be 7994 14:59:06 ok, trackbot; I see INC_SWXG()11:00AM scheduled to start in 1 minute 14:59:07 Meeting: Social Web Incubator Group Teleconference 14:59:07 Date: 15 September 2010 15:00:10 INC_SWXG()11:00AM has now started 15:00:17 + +1.540.961.aaaa 15:00:24 zakim, I am aaaa 15:00:24 +manu; got it 15:01:38 + +44.208.439.aabb 15:01:44 +OpenLink_Software 15:01:53 Zakim, OpenLink_Software is temporarily me 15:01:55 Zakim, mute me 15:02:00 zakim, Garlik is aabb 15:02:03 +MacTed; got it 15:02:04 MacTed should now be muted 15:02:05 sorry, mischat, I do not recognize a party named 'Garlik' 15:02:09 zakim, i am aabb 15:02:16 +mischat; got it 15:02:21 zakim, mute me 15:02:22 +??P41 15:02:26 mischat should now be muted 15:02:34 zakim, unmute me 15:02:36 mischat should no longer be muted 15:02:46 ? 15:02:47 hhalpin: poke 15:02:48 Zakim, who's on the phone? 15:02:48 On the phone I see manu, mischat, MacTed (muted), ??P41 15:03:03 Zakim, ??P41 is hhalpin 15:03:03 +hhalpin; got it 15:03:08 + +1.781.416.aacc 15:03:34 +1 15:03:43 PROPOSED: to accept minutes of Sept 1st meeting: http://www.w3.org/2010/09/01-swxg-minutes.html 15:03:50 do people accept last weeks notes ? 15:04:11 + +1.510.931.aadd 15:04:14 +1 15:04:17 ACCEPTED: minutes of Sept 1st meeting 15:04:22 chair: hhalpin 15:04:25 pchampin has joined #swxg 15:04:31 Zakim, pick a scribe 15:04:31 Not knowing who is chairing or who scribed recently, I propose +1.781.416.aacc 15:04:33 + +1.650.299.aaee 15:04:42 scribe: Manu 15:04:43 paul has joined #swxg 15:05:00 Harry: meeting next week, discussing Infocard from HIggins project. 15:05:07 scribenick: manu 15:05:28 Harry: Don't see any problems there... let's try to get through these actions. 15:05:29 PROPOSED: to meet again Wed. Sept 22nd (Infocards and Higgins Project). 15:05:29 ACCEPTED: Meeting next week on Infocards and Higgins project 15:05:29 2. Final Report Action Apocalypse 15:05:30 bblfish has joined #swxg 15:05:34 +??P45 15:05:39 Harry: At this point, we have to move the wiki to HTML now 15:05:45 zakim, ??P45 is me 15:05:45 +melvster; got it 15:05:48 Harry: so we can get a coherent draft out to the community 15:05:53 Harry: We wrap up the XG in two weeks! 15:05:58 ACTION [DONE]: Mischa to put up wiki page about social networks deploying these technologies. (i.e. reference the one from GNU Social?) 15:05:58 Sorry, couldn't find user - [DONE] 15:06:01 Harry: I believe most of the actions have been done. 15:06:06 people are welcome 15:06:07 +??P46 15:06:08 :) 15:06:09 Zakim, ??P46 is me 15:06:09 +AlexPassant; got it 15:06:28 Harry: the only action that remains seems to be use case - Daniel - looking at use case document and move them to a coherent phrasing 15:06:33 cperey has joined #swxg 15:06:43 s//SWAT/ 15:06:47 +1 15:06:50 i am happy with that 15:06:50 Harry: unless the group objects, if you could use the use case out to a separate document... does that work for folks? 15:06:52 +1 15:06:54 ACTION [CANCELLED] DKA to shorten too long use-cases and see if he can reference in SWAT test cases. 15:06:54 Sorry, couldn't find user - [CANCELLED] 15:06:58 Scribe notes no objections 15:07:10 ACTION: hhalpin move use-case appendix to separate document. 15:07:10 Created ACTION-177 - Move use-case appendix to separate document. [on Harry Halpin - due 2010-09-22]. 15:07:44 mischat: One of the is currently empty. 15:07:52 Harry: We'll have time during the next two weeks. 15:07:59 [CANCEL] ACTION: For diaspora to talk about being included in final report (interoperable code-basess agreed to SWAT tests?). 15:08:02 Harry: We're going to cancel the diaspora thing... we ran out of time. 15:08:03 + +1.617.848.aaff 15:08:08 diaspora opens code later today here: http://github.com/diaspora 15:08:20 Mischa: I think Henry went through it... haven't had a chance to read through it. 15:08:23 hi 15:08:26 hi 15:08:37 Henry: Distributed federated networks? 15:08:42 [DONE] ACTION: bblfish and mischa to write a new introductory paragraph with definition of social web and case for open-source/business use of standards. 15:08:42 http://www.w3.org/2005/Incubator/socialweb/wiki/FinalReport 15:08:44 s/Henry/Harry/ 15:08:56 http://www.w3.org/2005/Incubator/socialweb/wiki/FinalReport 15:09:02 Henry: So I added one paragraph... "heres my attempt at a definition..." 15:09:14 [CANCEL] ACTION: MacTed to add to intro a "user story" of why current approaches don't work. 15:09:19 zakim, 848.aaff is me 15:09:19 sorry, cperey, I do not recognize a party named '848.aaff' 15:09:24 Harry: Cancelling that action, then. 15:09:34 :-) 15:09:36 Harry: tried to setup a call w/ the various browser vendors, do we have any on the call? 15:09:45 zakim, aaff is me 15:09:45 +cperey; got it 15:09:48 [DONE] ACTION: hhalpin to set up HTML5/Interaction domain telecon before Sept. 15:09:50 Harry: There is definitely intrest from Apple, Google, Mozilla on identity in the browser. 15:09:55 Harry: No answer on Opera yet. 15:10:05 Harry: There is enough interest to get that going. 15:10:09 hello 15:10:17 Unknown: Hi, I'm from the Chrome team at Google. 15:10:20 +[IPcaller] 15:10:20 [DONE] ACTION: bblfish (and paul maybe?) flesh out and draft identity section. 15:10:29 s/Unknown/Dirk 15:10:33 who was that from Google? 15:11:19 Mischa: One more comment - all of the XRDFY type stuff... we need to review that. 15:11:22 Aza: I'm here 15:11:36 aza has joined #swxg 15:11:39 Harry: Paragraph on mobile seems to be done 15:11:42 [DONE] ACTION: venezia to do mobile paragraph 15:11:49 Harry: W3C strategy is to pull vendors in quickly. 15:11:49 [DONE] ACTION: hhalpin to work on strategy document 15:12:09 3. Aza Raskin on Privacy Icon 15:12:11 Topic: Privacy Icons 15:12:22 dpranke has joined #swxg 15:12:59 Harry: From a W3C strategy perspective, we are revamping process to make it more lightweight. 15:13:13 Harry: Hope to have it sorted out by november. 15:13:26 Harry: Hopefully, more W3C resources to federated social web area. 15:13:35 Harry: Looking for more vendor input on digital identity. 15:13:47 Harry: W3C should support these identity efforts. 15:14:21 Harry: W3C is not quite sure what the right move to make is yet... which is why Aza is here today. To see if there is a clear sign. W3C would like to make a move in this area. Perhaps a workshop, Perhaps with OpenID Foundation. 15:14:30 IIW Europe 11th October by the way 15:14:34 Harry: If there are compelling technical solutions on the table, W3C may move into a WG on that. 15:14:50 Harry: This is an issue that is near to W3C's CEO's heart. 15:15:02 his gooey identity-loving heart. 15:15:42 Someone3: So, last week at IW in DC there was some meetings - not public info yet, but general idea is there are a number of people involved in active client work. 15:16:04 s/Someone3/Paul (higgin's project/ 15:16:17 Paul: The gist of the meetings is that you're going to see a change in the ?IETF? and see some changes in the browser based on the Infocard experience... definitely decisions are starting to get made. 15:16:24 Paul Trevithick 15:16:27 zakim, call thomas-781 15:16:27 ok, tlr; the call is being made 15:16:28 there you go 15:16:28 +Thomas 15:16:57 Harry: W3C is looking for some technical leadership from people that have been in this space for longer than them... Infocard has been around here for a very long time. 15:17:08 http://www.w3.org/2010/api-privacy-ws/papers/privacy-ws-22.txt 15:17:27 http://www.azarask.in/ 15:17:27 Someone4: I'm the create lead for Firefox, used to head up User Experience at Mozilla - did Ubiquity, Geolocation spec, etc. 15:17:40 s/Someone4/Aza Raskin/ 15:17:53 Aza: Been working on Firefox4 features - working on Privacy for the Web. 15:18:08 Aza: Do a lot of design work - design focus - trying to understand the privacy space. 15:18:28 manu: instead of typing Aza: each time you can just type '...' 15:18:40 Aza: Looking at P3P, Lorie Craynor Privacy finder, Nutrition labels - one of the things that we found were that these things were taking a taxonomical viewpoint. 15:18:54 Aza: We were letting the perfect be the enemy of the good - we wanted to focus on one question. 15:19:07 http://www.slideshare.net/azaraskin/mozilla-privacy-icons-project 15:19:10 Aza: We do not want to make sure a user understands everything in a privacy policy - that is a difficult taks. 15:19:12 slides ^^ 15:19:42 private broswer 15:19:53 Aza: Schematics - looking at things like Firefox anti-malware site protection. 15:20:03 pchampin has joined #swxg 15:20:20 Aza: We fixed issues, but changes were not understandable to a end user. 15:20:31 Aza: So, we are asking what 'should' people care about in privacy? 15:20:44 + +1.760.705.aagg - is perhaps Alan 15:20:46 Aza: That's the one question we're trying to answer... the fewer choices, the easier it is for people to understand and care. 15:20:57 also folks my want to look at Zittrain and co.'s http://www.stopbadware.org/ 15:21:24 zakim, who is making noise 15:21:24 I don't understand 'who is making noise', mischat 15:21:24 Aza: Privacy often goes down the route of per-user or based on preferences, usually based on defaults - why not help people choose. 15:21:25 zakim, +1.760.705.aagg is me 15:21:25 sorry, pchampin, I do not recognize a party named '+1.760.705.aagg' 15:21:29 + +1.781.392.aahh 15:21:32 Aza: Problem is that people don't usually know what they want. 15:21:59 Aza: What do you want to eat? Difficult to answer. 15:22:09 http://www.flickr.com/photos/azaraskin/4786688290/in/photostream/ 15:22:12 zakim, who is making noise ? 15:22:22 mischat, listening for 10 seconds I heard sound from the following: Alan (9%) 15:22:24 from Sören 15:22:28 Aza: Do you want delicious steak with a little bit of truffle oil and fois gras with a baked potato and mahi-mahi??? People find it easier to say yes to that. 15:22:42 ah that's soeren's work, he's part of the SWXG too 15:22:50 Aza: most of US population can be identified down to name using only - zip code, birthday, gender 15:23:08 Aza: Those things people feel are not sensitive - first and last names are more sensitive than those previous three pieces of information. 15:23:24 Aza: People don't understand the meaning of giving up that data - so we're the experts, we need to help them understand. 15:23:41 Aza: But simultaneously, every time we ask a user what they don't care about - we've failed. 15:23:50 Aza: So this is how we ended up with the privacy icons stuff 15:23:51 FabGandon has joined #swxg 15:23:57 Aza: What attributes of privacy should people care about? 15:24:23 ... I wanted to go into more basic stuff before delving into the icons. 15:24:34 ... the icons can be highly contentious, so we'll cover that last. 15:24:49 -AlexPassant 15:24:50 ... our goal is not to make this understandable by everyone. 15:24:56 ... we just need it to work for most people. 15:25:12 ... Privacy marketplace... we're not going after Facebook (yet) with Privacy policieis... 15:25:32 ... we're focusing on places where Privacy already affects you. 15:25:39 kennyluck has joined #swxg 15:25:44 ... places like sites that say they're not going to re-use your e-mail address. 15:25:53 ... will it change the way you use google or facebook? probably not 15:25:55 +[IPcaller.a] 15:26:03 ... however, it may make sense on sites that you don't know anything about. 15:26:04 Zakim, ?[IPcaller.a] is me 15:26:04 sorry, AlexPassant, I do not recognize a party named '?[IPcaller.a]' 15:26:18 ... we want to get adoptives to understand this transparency. 15:26:37 ... Washington Journal did a cover on all the diferent types of privacy policies that companies did 15:26:42 ... they had to do a ton of digging 15:26:47 ... we want to make it simpler 15:26:54 ... taxonimical view doesn't work - it's too much information. 15:27:09 ... writing a privacy policy is very company-specific (at least, that's what the lawyers want us to think) 15:27:25 ... when you use an icon, it gets bolted to the very end of the privacy policy. 15:27:36 ... "We do not sell data or barter with your data." 15:27:58 ... no matter what the privacy policy says, this is asserted somewhere in the privacy policy. 15:28:02 ... it's a minimum guarantee. 15:28:16 http://www.azarask.in/blog/post/what-should-matter-in-privacy/ 15:28:16 ... we're also trying really hard not to penalize business as usual. 15:28:33 ... it's a fail if people have to put up an icon that scares people. 15:28:41 ... is 3rd party sharing of data suspect? 15:28:46 ... it's not 15:29:08 ... amazon sharing your addresss with UPS to ship something to you is 3rd party sharing 15:29:14 ... but thats not bad. 15:29:25 ... we're still writing some of the legal behind some of the icons we're doing. 15:29:34 ... not everyone has to use a bad icon 15:29:43 ... last point that I want to bring up as background 15:29:55 ... is that these icons are different from Creative Commons in a very important respect. 15:30:05 karen has joined #swxg 15:30:10 ... in CC, everyday authors have to figure out what they are to license their work under. 15:30:19 ... you have to be able to write what your work is licensed under. 15:30:39 ... with Privacy icons, you don't have to do the writing part... that's the job of the lawyer... we just needt o make sure these things are readable. 15:30:53 ... conditions for Privacy Icons are more lax when deciding what icon to use. 15:30:57 ... why Firefox, why now? 15:31:16 ... we thing that the taxonomical look didn't work well, and we don't think that the product people looked at it in this way before. 15:31:18 http://www.flickr.com/photos/azaraskin/4128966575/in/photostream/ 15:31:23 caribou has joined #swxg 15:31:25 ... we're looking at what identity in the browser looks like 15:31:28 http://www.flickr.com/photos/azaraskin/4156454152/in/photostream/ 15:31:34 ... here are a couple of things that we're looking at right now 15:31:41 ... about what we're thinking of putting into firefox. 15:31:41 http://www.mozilla.com/en-US/firefox/accountmanager/ 15:32:04 ... the basic idea is that you don't need to do the whole signing in/signing out to a website. 15:32:09 ... browser should understand who you are 15:32:12 aza: Are you working on tying this in with the SSL layer? 15:32:13 ... Weave 15:32:20 very nice design BTW 15:32:38 ... should understand all of your passwords - getting rid of login 15:32:40 very nice, I present it at all my talks 15:32:53 agreed 15:33:01 ... This is supposed to be a very fast thing for websites to implement - in 15 minutes. 15:33:12 ... So, if we manage to get something like this 15:33:20 ... these are early markups 15:33:32 ... if we do this, browsers become a user agent to all sites. 15:33:54 ... they are intermediaries of identity. If that is true, then we own the sign-in sign-out experience. 15:34:04 ... decreases sign-up time, increases conversion rate, etc. 15:34:10 ... lots of good things related to this. 15:34:22 ...sign in to a site using one button click. 15:34:38 ... this also means that we control the way in which end-users see the sign-up process. 15:34:47 ... we have a huge opportunity to affect the way the web works. 15:34:57 ... if this is the case, we can start bubbling up information about privacy policities. 15:35:05 ... Mozilla is very privacy-cognizant 15:35:29 machine-readable - perhaps in RDFa? 15:35:31 ... We need to make sure people know what their privacy state is... we can tell the user how the information is used. 15:35:55 ... We think that's exciting... we can take a very pro-active standpoint 15:36:20 ... it also helps identify bad-actors... if they don't give any sort of machine readable form of privacy data. 15:36:36 oshani has joined #swxg 15:36:37 ... So, that's the background. 15:36:51 q+ 15:36:53 q+ 15:36:57 Aza: Questions? 15:36:58 q+ 15:37:01 ack mischat 15:37:13 Mischat: I was wondering how people are going to be representing the privacy icons. 15:37:24 Mischat: If I am a provider, how do I display privacy icons? 15:37:41 Aza: We haven't delved into that yet - mainly because we want to figure out where to show these things in the interface. 15:37:49 Aza: What are the things that matter most to people. 15:38:10 ok 15:38:11 Aza: Delving into how people link, how to display - is just things to figure out as we move down the path... no strong preferences as long as it is pragramtic. 15:38:13 Tom has joined #swxg 15:38:18 ack bblfish 15:38:29 q+ to offer RDFa communities help on this 15:38:34 http://chromium.googlecode.com/issues/attachment?aid=-3626469059404489666&name=Picture+1.png&token=c3f3619e4a2e8a18d0031d6e9f912422&inline=1 15:38:45 Henry: Wonder if you're interested in demo by Google 15:38:52 -Alan 15:38:55 http://code.google.com/p/chromium/issues/detail?id=29784 15:39:14 Henry: Would be interesting to see how this would work with SSL layer 15:39:37 Henry: if you don't do things over https, then we don't really have secure identity. 15:39:57 Henry: Just to show how Google/Chrome/Firefox could complement each other. 15:40:09 q+ 15:40:35 Henry: There is a bug report on Firefox on SSL security issue - we really need Firefox to lead this 15:40:46 ack hhalpin 15:40:51 http://www.phreedom.org/research/rogue-ca/ 15:40:52 + +1.617.513.aaii 15:40:53 Aza: I'm always sad when CA's get more authority. 15:41:02 Henry: No, we can bypass CAs entirely with this. 15:41:04 must be careful with CAs. 15:41:10 Henry: Client side certs don't need to have CAs 15:41:14 http://blog.sidstamm.com/2010/08/http-strict-transport-security-has.html 15:41:15 Henry: That's a big misunderstanding. 15:41:32 Aza: We did just add HSTS 15:41:50 Aza: We really need to discuss having the User Agent intermediate the login process. 15:41:56 Aza: This solves a big problem. 15:42:11 Aza: Both from a technical as well as a user perspective. 15:42:12 yes definitively allowing the user to see what he logged in as is really important 15:42:19 q? 15:42:41 Henry: I was trying to understand privacy icon work... they don't know there is absence, they know there is presence. 15:42:57 Henry: If you don't have a license, then we know you're a bad actor. 15:43:11 Henry: These icons may be everywhere? 15:43:23 yes about 25% 15:43:24 Henry: There is a substantial minority of people that care about privacy. 15:43:34 s/Henry/Harry/ 15:43:38 s/Henry/Harry/ 15:43:39 s/Henry/Harry/ 15:43:43 'privacy fundamentalists' was the category 15:44:09 Harry: The user must set this in their privacy settings... 15:44:28 Harry: perhaps we can control what privacy icons appear based on the site that they refer to? 15:44:43 Aza: Privacy rules are pretty fascinating. 15:44:55 Aza: We want these icons to be important and universal. 15:45:08 Aza: if the site doesn't have it, perhaps we can crowd-source the icons to a site. 15:45:28 Aza: as soon as the site puts up info, they get a better icon 15:45:44 Aza: There are some questions of adoption, in the beginning, we wouldn't bubble the information up. 15:45:51 q+ 15:45:52 Aza: only the 20% that care would see it at first. 15:46:07 Aza: We hope that all major sites adopt it... but it'll take time. 15:46:12 ack manu 15:46:12 manu, you wanted to offer RDFa communities help on this 15:46:13 ack manu 15:46:50 Manu: asks about vetting the icons themselves, do you have any relationships with the CC group, for they have lots of experience in this space ? 15:47:11 manu: any connections to creative commons 15:47:22 Aza: Yeah, so we've worked with Joi Ito and CC guys a bit 15:47:27 manu: I'm sure RDFa community would be happy to help, I'm on the WG 15:47:33 Manu: the microformats/microdata/ and rdfa, would help out, and would give input into this process 15:47:34 Aza: As soon as we have some legal text, they'll help us there. 15:47:45 Aza: It's incredibly important to people like that. 15:48:04 Aza: As far as actual method of machine readability, there are a lot of smart people that will solve it. 15:48:13 Aza: Anything that is pragmatic makes sense. 15:48:15 ack mischat 15:48:32 Mischa: Two questions - all this talk about decentralized social networks - does it fit? 15:48:47 ... Do you think privacy icons relate to that? 15:49:03 Aza: potentially, but one of the things we're ignoring is the social networking case. 15:49:11 http://semanticidentity.com/Resources/Entries/2010/7/1_Virtual_Goods_+_ODRL_Workshop_2010.html 15:49:30 ... granted, when expectations of privacy on social network is violated. 15:49:35 ... people care at that point. 15:49:42 ... so there is this secondary use problem. 15:50:21 Mischa: Second question, identity in the browser: Is that basically a username/password management thing? Firefox Weave? 15:50:37 Mischa: You're not using client-side certs... not using passwords? 15:50:58 ODRL machine readable privacy icons for social networking ^^ 15:51:13 Aza: A little bit more than that... one time passwords... name, address, credit card... if people are okay with that in the browser, you can do progressive input to websites. 15:51:26 contact API - DAP Working Group? 15:51:27 Aza: We should provide an API for this, so it's easier for sites to ask for that data. 15:51:32 PortableContacts... 15:51:36 Aza: identity starts to become much more powerful at that point. 15:51:58 Aza: it's interesting middle-ground - the browser isn't just a client - it also could have a cloud-side to it. 15:52:07 Mischa: So, that's working with the DAP working group? 15:52:09 Aza: Yes. 15:52:39 Mischa: How does privacy icons relate to that group? 15:52:46 http://www.w3.org/2010/api-privacy-ws/report.html 15:52:49 Aza: Really like that approach - these are two complementary approaches. 15:52:52 http://dev.w3.org/2009/dap/privacy-rulesets/ 15:53:03 Aza: Especially around secondary use... many things boil down to that. 15:53:06 q? 15:53:32 Harry: Quite interesting, going in direction where it could work with federated social networks. 15:54:00 Harry: Question that I have is: What is the cross-browser work in this area? You could just push this into Firefox when ready. 15:54:09 Harry: People most interested in Privacy probably also use Firefox. 15:54:34 Harry: There are other browsers that have interest in this area - do you think there is room for cross-browser work? 15:54:45 Aza: yes, the browser agents are always collaborating in some ways. 15:55:02 Aza: We are also competing... but real interest is in making the web better. 15:55:11 q+ 15:55:13 :) 15:55:17 ack hhalpin 15:55:19 Aza: we'll see other browser vendors do this if it's important. 15:55:33 then the problem is also multiple devices... 15:55:35 like identity transfer 15:55:40 Aza: It's not required that it happens everywhere re: Privacy Icons. 15:55:46 Aza: helps us bootstrap much faster. 15:56:27 Aza: Making all user agents do it? Maybe we can popularize it? 15:56:47 ... maybe if we can get a few million to care about it... that would be great. 15:56:57 Harry: What about identity over multiple devices? 15:57:06 i can chime in at some point - there's definitely a place and a desire for browser vendors to work together on identity. probably on privacy as well 15:57:14 http://www.links.org/?p=932 15:57:19 Harry: Are you guys looking at that space as well? How do you transfer identity over multiple devices - Nigori protocol like stuff? 15:57:25 q+ dpranke 15:57:42 Aza: I'm not the best person to talk about this - Firefox 4 has sync stuff 15:58:05 Aza: I can transfer where I'm browsing, passwords, etc, between browsers. 15:58:28 Aza: As long as experience gets richer and richer, that "identity" will get synched across from point to point. 15:58:33 ack dpranke 15:58:35 sure, you ask my question hhalpin 15:58:36 Aza: just to make sure that all devices are in sync 15:59:02 Dirk: I agree with almost everything that Aza has said - the days of us using one browser on one computer are going away. 15:59:13 -cperey 15:59:24 Dirk: we need to interoperate across browsers. 15:59:32 bye bye! 15:59:37 bye cperey 15:59:37 Dirk: vendors need to interoperate across browsers. 15:59:43 thank you, very interesting talk and discussion! 15:59:47 Role of the W3C in this sort of work? Workshop? Group? 15:59:47 Harry: Do you think there is a role for W3C here? 15:59:56 Dirk: I think there is always a role for W3C to work together... 16:00:04 Dirk: I'm still trying to understand how we can work together. 16:00:14 - +1.781.416.aacc 16:00:22 Harry: W3C is definitely interest in work around this. 16:00:29 ack mischat 16:00:35 one more thing … the nigori protocol is definitely interesting 16:00:45 Mischa: When you're thinking about identity, are you always thinking it's going to be inside the browser? Or is there a place for cloud-based identity. 16:00:50 -Thomas 16:00:59 Aza: Whatever solution we go with, it has to be federated - it has to be distributed. 16:01:09