Hi Brett, My apologies for my ignorance, but I was wondering if anyone in the industry is making any money with SSO or Web-SSO? If SSO is a facilitator towards "something", its not clear (to me) what that something is. If the business model (for that "something") is to save the user from memorizing passwords for various sites, then a software only solution exist today (and some browsers already do this (eg. Safari/MacOS key chain)). Smartcards (as in gov CAC cards) can also do the same thing. My limited understanding of the SSO vision is that a community of trust is supposed to be the foundation for creating IdP-to-SP and SP-to-SP trust. (In the PKI world a similar community of CAs (identrust?) was started a few years ago, but not sure what happened). However, even this community of trust thing can be seen just a facilitator/facility towards that "something". Thoughts? /thomas/ From: community-bounces@kantarainitiative.org [mailto:community-bounces@kantarainitiative.org] On Behalf Of Brett McDowell Sent: Friday, February 12, 2010 10:28 AM To: community@kantarainitiative.org Subject: [Kantara - Community] An observation: SSO's are consolidating and/or collaborating more This email notice prompted me to share an observation with this community list. CEN and CENELEC are essentially consolidating. FSTC & BITS have essentially consolidated (or are somewhere along in the process). Liberty Alliance & Concordia Project are consolidating into Kantara Initiative. Electronic Authentication Partnership & Raddichio consolidated with Liberty Alliance before that. OpenID Foundation & Information Card Foundation seem to be consolidating their trust framework activities into the OIF/OIE project/organization. OASIS is more directly involved with various "non-accredited industry consortia" than I've ever seen before. ISOC is investing time and dollars into Kantara Initiative and W3C (among others no doubt). There are probably other moves like this in the identity, security, and privacy space that I'm forgetting to mention or haven't actually stumbled upon yet. For discussion: why is this happening, and is it a good thing for standards development and/or adoption? It's no secret that standards setting organizations are feeling the impact of the economic downturn and consolidation is one of several options each group faces. Many of you subscribed to this mailing list are pretty close to several of these consolidation/cooperation projects. I hoping some of you will share your personal observations about how this strategy is working and where you think this is all headed -- is this trend going to reverse or continue? -- Brett Begin forwarded message: From: Penny Sarah [mailto:spenny@cencenelec.eu] Sent: 11 February 2010 18:03 To: Coop_all; CGF_Email List Subject: CEN and CENELEC new email addresses Email.gif Dear Madam, Dear Sir, The close collaboration between CEN and CENELEC, which was consolidated by the creation of a common CEN-CENELEC Management Centre (CCMC) at the beginning of this year, is now further reflected in our new e-mail address: flastname@cencenelec.eu. For example, if you wish to contact CCMC Communication Unit Manager, Elisabeth Brodthagen use ebrodthagen@cencenelec.eu Please make a note of our new email addresses and amend your contact lists accordingly. In attachment you will find the organization chart of the CEN-CENELEC Management Centre as well as a telephone and e-mail directory of all CCMC staff. Our postal address is: CEN-CENELEC Management Centre Avenue Marnix 17 B-1000 Brussels We would appreciate if you could distribute this email in your organisation. Should you have any enquiries, please send an e-mail to communication@cencenelec.eu. Best regards, Sarah PENNY Director - External Relations