- OASIS IMI 1.0 Standard: The OASIS Identity Metasystem Interoperability (IMI) 1.0 standard was approved on July 1, 2009.
- Information Card Foundation Board: In June 2008 I joined the Information Card Foundation board of directors as Microsoft’s representative, as announced on June 24th. Also see my personal perspective on the Information Card Foundation launch.
- OpenID Foundation Board: In January 2008 I joined the OpenID Foundation board of directors as Microsoft’s representative, as announced on February 7th. Also see my personal blog post supporting the announcement and Microsoft’s post at PressPass.
- Blogging: In April 2007 I launched self-issued.info, a blog for digital identity discussions. I hope you’ll find the content there useful, thought-provoking, and sometimes just plain fun. Let the conversation begin…
- Tighter Focus on Identity: In March 2007, I moved from the Web Services Interoperability team to the Federated Identity team (both within Microsoft’s Connected Systems Division). This move enables me to focus full-time on Digital Identity. I’m passionate about Identity and see it as a key enabler for making the online world both more personal and more valuable. I’m working with strategic customers and partners to drive adoption of privacy-enhancing, ubiquitously-accepted, easy-to-use identity solutions.
- Microsoft / OpenID Collaboration: Read about the Microsoft / OpenID collaboration on Kim Cameron’s blog and read thetranscript of Bill Gates’ and Craig Mundie’s speech announcing this at the RSA Security conference. We’re working together to bring the benefits of phishing-resistant authentication methods, such as Windows CardSpace, to the growing community of OpenID users.
- CardSpace One-Pager Published: This paper is a one-page introduction to Microsoft’s CardSpace software, which facilitates user-centric identity interactions online through an easy-to-use visual “Information Card” metaphor.
Michael B. Jones. A One-Page Introduction to Windows CardSpace, January 2007.
- Information Card Web Specification Published: This specification documents the web interfaces utilized by browsers and web applications that support Information Cards. The information in this document is not specific to any one browser or platform.
Michael B. Jones. A Guide to Supporting Information Cards within Web Applications and Browsers as of the Information Card Profile V1.0, December 2006.
- Identity Metasystem Design Rationale Paper Published: Many of the problems facing the Internet today stem from the lack of a widely deployed, easily understood, secure identity solution. Microsoft’s CardSpace software and the Identity Metasystem vision underlying it are aimed at filling this gap using technology all can adopt and solutions all can endorse, putting users in control of their identity interactions on the Internet. The design decisions presented in this paper are intended to result in a widely accepted, broadly applicable, inclusive, comprehensible, privacy-enhancing, security-enhancing identity solution for the Internet. We present them and the rationale behind them to facilitate review of these design decisions by the security, privacy, and policy communities, so that people will better understand Microsoft’s implementations, and to help guide others when building interoperating implementations.
Kim Cameron and Michael B. Jones. Design Rationale behind the Identity Metasystem Architecture, January 2006.
- Identity Metasystem Whitepaper Published: Kim Cameron and I authored the Microsoft whitepaper Microsoft’s Vision for an Identity Metasystem published on May 12, 2005. It describes our initiative with the rest of the industry to interconnect today’s diverse collection of identity systems into an interoperable Identity Metasystem, analogous to how the Internet Protocol tied together individual network technologies such as Ethernet, Token Ring, and X.25 (and enabled new technologies, such as 802.11 wireless to be easily incorporated as they were invented). The Identity Metasystem and Microsoft’s “InfoCard” identity selector client will help prevent phishing by ensuring that sites strongly authenticate themselves to users in a non-spoofable manner.
- From Research to Products: After 12+ years as a member of the Systems and Networking Research Group at Microsoft Research, in early 2005 I decided that it was time to find a position that would use the full range of both my technical and inter-personal, coalition-building skills. And I found a great one! At the beginning of March 2005 I started a new position at Microsoft as Director of Distributed Systems Customer Strategy and Evangelism. This position is a great fit for me because it’s very much a collaborative cross-group and multi-company, multi-platform effort. I’m working with people all over Microsoft and with numerous customers and partners across a tremendous range of industries worldwide.