Making change

So last week I made a big transition, joining Andrew Nash‘s identity services team at PayPal. (And I kind of told Twitter about it before I told y’all. Sorry about that; it’s the nature of the communications beast.) Working with Andrew, Ashish, and other great folks at PayPal is going to be a blast. And it’s an especially interesting time to shift from a technology-stack-providing world to a consumer-facing one.

Being with Sun Microsystems for ten years was an honor and a pleasure; I got to work closely with some of the most talented and interesting folks in the business. And during that time my experiences helped me layer new personae onto “old SGMLer”: “XMLgrrl”, “the SAML lady”, and even, ahem, “the queen of Venn”.

You’ll still find me involved in some familiar activities — for example, I remain involved in ProtectServe and User-Managed Access efforts, and I hope to keep up my fledgling Tek-Tips video-blogging series on identity and the cloud (#1 on the relevance of federated identity to cloud computing, #2 on the challenges of passwords for authenticating to cloud services).

Thanks for continuing to witness my pushing of string over here. I plan to continue blogging my thoughts on matters of identity, security, privacy, and trust (and occasionally nutrition, music, and knitting…), and look forward to your feedback. You can find fresh contact and bio information on my welcome page; drop me a note anytime.

Chocolate Frosted Sugar Bombs

“But what do you eat for breakfast?”

That’s the first question everyone asks when we get to talking about low-carb eating. Admittedly, it took me a while to figure out what to do. The obvious answer, eggs, can take time if you don’t plan ahead. So here’s what I really do eat for breakfast, in case you want to try the low-carb way and you’re looking for ideas.

Breakfasts That Only Seem Carby

(Hey, if Tim can toast-blog, why can’t I?)

Almost every morning I have Oroweat Whole Wheat Light bread, toasted, with plenty of good-quality butter and sometimes a bit of low-carb jam (any flavor of Hero Sugar Free Preserves is my favorite). When traveling to destinations with toasters I usually bring some Oroweat along.

The Pacific Northwest bakery Franz also has a Net 4 line that’s low-carb. Good, if a bit sour-tasting, and tends to go off faster for some reason.

Favorite bread: Carb Krunchers Rye, bought online and kept in the freezer. It actually says “rye” with quotes on the package; it’s not real, but its caraway seeds have a magical ability to transport me into rye-land.

Next bread I’m going to try: Julian Bakery’s Smart Carb #1.

I owe Joe Andrieu big-time for introducing me to a granola product called Flax-Z-Snax. Follow this link to get it straight from the source and save money. This stuff tastes so good you’ll be tempted to overdo it. It’s good plain or with a splash of half-and-half or Calorie Countdown milk, but amazing with Dannon Light ‘n’ Fit low-carb vanilla yogurt. I’m always worried these latter two products will be discontinued; you have to hunt for the supermarkets that carry them. I’ve also tried and liked Dixie Carb Counters granola (and appreciate that it’s a lot harder to overconsume).

Breakfasts That Don’t Look Carby in the Least

Favorite: There’s an Original Pancake House within walking distance of my house. Why make eggs when you can get someone else to cook them? Their huge fluffy five-egg omelettes are awesome, especially stuffed with cheese, onion, and bacon. (Great for lunch too.) I can only ever eat about half, and take the rest home.

Weekends: Eli makes a mean cheesy scramble (scrambled eggs with cheese, onion powder, and half-and-half). By the way, real cream is much yummier in morning coffee than milk is. I prefer a scant tablespoon, or what my sister refers to as “a molecule”.

Making ahead: Speaking of my sis, she worked up this recipe for no-crust mini-quiche muffins…

Preheat oven to 350°F.
Quantities only seem important with the eggs and cream; otherwise load it up and have fun!

• Red onions chopped
• Red peppers chopped
• Scallions chopped
• Diced ham
• 2 cups shredded cheddar cheese
• 6 eggs
• 3/4 cup half-and-half or heavy cream [the latter is less watery]
• Salt
• Pepper
• Pinch of garlic powder
• 7 or 8 shakes of hot sauce

Sauté onions and peppers till soft.
Mix all ingredients.
Spray muffin tin with cooking spray.
[I load the lumpy ingredients before pouring the egg mixture on top.]
Bake for 40 minutes or until golden brown.
Eat and enjoy!

Hybrid Breakfasts

Eli may specialize in cheesy scrambles, but I specialize in the Sunday morning egg sandwich. Two eggs fried over medium, some good cheddar, pre-toasted and buttered low-carb bread, the whole thing assembled and grilled — and served with low-carb strawberry jam. It’s got to be strawberry; this is tradition. (Forgive its tar-like appearance in the picture.)

Breakfast in the Before-Time

The one supermarket aisle I still swoon over is the one with all the breakfast cereal. I had a bowl of cereal (or two, once the insulin resistance kicked in) nearly every day of my life until 2004. I had Kellogg’s Sugar Frosted Flakes — yes, they still proudly had “Sugar” in the name back then — right through high school. In college it was Grape-Nuts with honey, sometimes microwaved. Later, I got sophisticated (what with the Bread & Circus stores all around) and went the granola-with-yogurt route.

The most counterintuitive part about starting a low-carb routine is staring at a plate of eggs and bacon and wondering: Can this be right? Review the facts, and you’ll conclude it’s the rare cereal that’s “part of a balanced breakfast”.

Concordia workshop: the secret word is authz

Dave Kearns asks, I deliver — in two parts (so far)…

Concordia workshop report

Monday’s Concordia workshop at Catalyst was a surprise and a delight. We tried to make it a more interactive and intimate experience than the mega-carnivals we do at RSA: check. We set up a theme — identity in Enterprise 2.0 — and hoped for a bunch of interesting use-case submissions to tee up the subject: check. We worried that the diverse agenda would hang together: we needn’t have. A leitmotif emerged pretty quickly: authorization.

A crack team of volunteer tweeters, led by Brett McDowell (in English; I helped!) and Tatsuo Kudo (in Japanese), helped keep the outside world connected to our discussions (searching #catalyst09 concordia gives you an accessible sampling, but looking for tweets on July 27 for just #catalyst09 will give a more complete listing).

All presentations and original sources are now linked from the workshop agenda, and I strongly encourage you to check out this rich material. Attendees were enthusiastic about the new XACML profile work and our Burton speakers’ thoughts on the complexity of social networking in enterprise settings (thanks again to Mike Gotta and Alice Wang for presenting some exciting/scary scenarios, and to Burton as a whole for continuing to support our Concordic efforts). And people had lots of useful feedback on the Levels of Assurance survey idea we’ve been hammering on for a couple of months now — basically, we think we’re going to start with in-depth interviews instead, since all our questions are open-ended and lead to more questions.

If you want to help us figure all this out going forward — including possibly contributing multi-technology authorization use cases for future interop experimentation — don’t forget to join Concordia in its new guise as a Kantara discussion group! Here are simple instructions.

ProtectServe and UMA deeper dive

At the workshop I had a great opportunity, given that my User-Managed Access group is just spinning up, to do a quick overview of the ProtectServe work that has inspired UMA and to review some alternative “use-case topologies” that could satisfy a single generic scenario in different ways. Srijith Nair et al. of BT submitted an interesting ProtectServe use-case document, and in my workshop presentation I walked through some of the implications.

The scenario I highlighted is about an employer and an employee, and the fact that both might want to impose their own constraints on the sharing of the same piece of information. Examples of pieces of information your employer holds that you might need to share (the Liberty ID-SIS employee profile spec might suggest more):

• Employment status (often needed when you apply for a loan)
• U.S. Internal Revenue Service W-4 (tax withholding) form details (handy for sharing with accountants and investment planners)

I (sort of ab)used the Scrum concept by formulating the following “user stories” that capture what’s special about the need:

• As an employee, I want to audit and control the further dissemination of information my employer must know about me as a condition of employment.
• As an employer, I want to adhere to laws and best practices regulating my sharing of information about my employee.

Three obvious ProtectServe entity topologies present themselves, each with a different sweet spot:

#1: Employer as authorization manager and service provider

This topology preserves an explicit place for the employer to apply its own sharing policies — the authorization manager (and enclosing relationship management app) that it hosts itself. However, I think this is probably a “legacy” solution because it forces the employee to seek out other relationship managers in the outside world where they’re just an individual rather than an employee, and I can’t think of very good reasons for the employer to host this AM/RM other than corporate inertia (admittedly, a force to be reckoned with). Maybe I’m wrong, though, and a good reason will emerge.

#2: Employer as service provider

For information for which the employer is authoritative (“Is this person employed here?”), it should host a service provider willing to attest to this on request (in accordance with the instructions issued by the employee’s personal AM). If the employer doesn’t want to release the data even though the employee is cool with the sharing, it could use existing access control mechanisms that are out of band with respect to ProtectServe, perhaps only surfacing a response code that reflects its refusal. (Ah, there’s a potential requirement for the UMA work if this use case is accepted by the group.)

#3: Employer as consumer

For information that the employee already self-asserts to the employer (“What is the employee’s home address of record?”), why can’t the employer consume this data in the same way some other “vendor” (online service) on the open Internet could? If the employee moves, a number of workflow actions have to unroll on the employer’s side as they would have anyway (in the U.S., moving to a different state might involve withholding a different amount of state income tax), but this is already handled in existing systems when the employee provisions the new information into employee portal apps by hand. An on-board “personal datastore” service provider is shown here as being hosted out of the same relationship manager app as the user’s chosen AM, but the SP could just as easily have been hosted remotely somewhere.

If you have thoughts on this, either about the problem space or the solution space, please consider joining the UMA group and helping out!

Fat Head

My low-carb pal Mark Wilcox pointed me to this movie. I haven’t seen it yet, but it somehow (ahem) reminds me of the politico-nutritional mess we’re in. Two headlines I saw today, right next to each other:

• USA Today: Obesity is a key link to soaring health tab
• San Diego Union-Tribune: Senators inch toward deal on health care

Sorry, but I just don’t trust senators to get it right on health and nutrition. What if senators had something to do with the problem in the first place?

In GCBC, Gary Taubes relates the controversy around Dietary Goals for the United States, produced by the staff of George McGovern’s U.S. Senate Select Committee on Nutrition and Human Needs in 1977. This document is pretty much the well from which all U.S. public-health “fat bad, carbs good” nonsense springs.

Taubes quotes the Senate testimony of Philip Handler, president of the National Academy of Sciences and a metabolism expert in his own right, representing the NAS Food and Nutrition Board:

However tenuous that linkage [of dietary fat and cholesterol, blood cholesterol, and heart disease], however disappointing the various intervention trials, it still seems prudent to propose to the American public that we not only maintain reasonable weights for our height, body structure and age, but also reduce our dietary fat intakes significantly, and keep cholesterol intake to a minimum. And, conceivably, you might conclude that it is proper for the federal government to so recommend.

On the other hand, you may instead argue: What right has the federal government to propose that the American people conduct a vast nutritional experiment, with themselves as subjects, on the strength of so very little evidence that it will do them any good?

Mr. Chairman, resolution of this dilemma turns on a value judgment. The dilemma so posed is not a scientific question; it is a question of ethics, morals, politics. Those who argue either position strongly are expressing their values; they are not making scientific judgments.

(For your reading convenience, I’ve helpfully emboldened the ethical/moral/political choice I’d make.)

I know I’m always saying this, but: Read the whole thing. And if you’re suspicious about which scientists worked for the Egg Board, just wait till you see where the Frito-Lay funding went.

ProtectServe news: User-Managed Access group

After a few weeks’ worth of charter wrangling, I’m delighted to announce the launch of a new Kantara Initiative work group called User-Managed Access (UMA). Quoting some text from the charter that may sound familiar if you’ve been following the ProtectServe story:

The purpose of this Work Group is to develop a set of draft specifications that enable an individual to control the authorization of data sharing and service access made between online services on the individual’s behalf, and to facilitate the development of interoperable implementations of these specifications by others.

Quite a few folks have expressed strong interest in using this work to solve their use cases and in implementing the protocol (speaking of which, sincere thanks to the dozen-plus people who joined with me in proposing the group). With a basic design pattern that is as generative as ProtectServe seems to be, and with the variety of communities we’ll need to engage, it could be tricky to stay focused on a core set of scenarios and solutions, but I intend to work hard to do just that. Better to boil a small pond than…well, you know. Stay tuned for more thoughts on how I think we can accomplish this.

If you’d like to contribute to the continuing adventures of ProtectServe, please check out the User-Managed Access WG charter and join up! Here’s where to go to subscribe to the wg-uma list, which is read-only by default, and to become an official participant in the group, which gains you list posting privileges. (In case you’re wondering, there is no fee whatsoever for Kantara group participation.)

By the end of this week we’ll start using the list to figure out a first-telecon time slot, and I’ll provide updates on various group milestones here. If you’ve got any questions at all, feel free to drop me a line.

Two OpenSSO summer blockbusters

A few days ago I suggested taking in a summer movie. If you’re a fan of OpenSSO, now you’ve got your choice of flicks, playing at a theater very near you.

Yesterday Daniel Raskin took the wraps off a video for the new Fedlet for .NET in OpenSSO Enterprise. You might recall that this version of the Fedlet made an appearance in this joint paper from Sun and Microsoft on federated identity interop.

And today he’s got a new vid showing an OpenSSO technology preview: its new OAuth Token Service. Pat Patterson gets a nice cameo in this one.

The team has done some very cool work on this tech preview, remaining truly webby, RESTful, and resource-oriented while tackling real entitlement management issues faced by enterprises. (As I’ve been saying — snarking? — recently, the smart way to bet is more consumerization of IT, ’cause we sure won’t see further ITization of consumers!)

To download and try this stuff out yourself, just click your mouse three times and say “There’s no place like Sun… There’s no place like Sun… There’s no place like Sun…”

Consumerizing IT at Catalyst

The Burton Catalyst conference being held in San Diego in a couple of weeks is one of those don’t-miss events. If you’re going (I said it was don’t-miss, didn’t I?), you’ll want to get into town in time for the free Project Concordia workshop being held on the Monday. Our theme is Use Cases Driving Identity in Enterprise 2.0: The Consumerization of IT. This link gives you the agenda and instructions on how to register — it’s not too late.

We Concordians are excited to have Mike Gotta and Alice Wang of Burton Group on hand on Monday to present Relationships and Identity: Two Sides of the Social Networking Coin. We’ll also deep-dive on authorization standards progress and the evergreen “levels of assurance” topic (see the Concordia mailing list for huge volumes of discussion on it). And we’ll even review some potential ProtectServe use cases.

The workshop also makes a great companion to the Cloud SSO Interop Demo being run later in the week, in which Sun is participating. And and come visit me and my colleagues at the Sun hospitality suite on Wednesday night! I hear our own Smoking Monkey might be decked out in special attire…

UPDATE: Pat has blogged more Catalyst plans (breakdancing! hip-hop rivalries! super-secret Catalyst discount code!), and includes info on a very special get-together Sun is planning with Don Bowen. This is an excellent opportunity to see Don and wish him well in person; I can’t wait.

Beach reading on identity

So, what did you read on your summer vacation? If you’re still planning for yours, submitted herewith for your approval:

It’s been well over a year since I first spoke on The Design of Everyday Identity; a companion article I wrote just after that wonderful event in New Zealand has finally been published in the Online Information Review journal (unfortunately the article is for-pay). Usability has taken a front seat in many of the efforts to improve user-centric identity since then, which is great, but you may find that the paper and talk still offer useful food for thought. And by the way, this analysis strongly influenced my design criteria for ProtectServe.

After lugging this article down to the beach for some light summer reading, if you’re still looking for some entertainment, try watching a movie. Podcast Hotel-meister Alex Williams invited me to do some identity video-blogging for the venerable Tek-Tips site for IT professionals, and I’ll be joined by others there soon. Thanks for the opportunity, Alex!

Since I’m not big on watching long videos online myself, I’m trying mightily to keep these to just a minute or two. The first one responds to the question: What Identity Issues Should The Enterprise Be Aware of With Public Cloud Computing? In a nice coincidental tie-in, my colleague Rajeev Angal recently posted some great info on how to integrate SAML2-based single sign-on with Salesforce CRM using OpenSSO.

What did I read on my summer vacation? I cannot tell a lie. But y’know, it was a lot better than you’d think…

Like sands through the hourglass

…so are the Carbs of Our Lives. (No? How about As the Pancreas Turns? Maybe not.)

Today’s carbgrrl musings are a little less overtly scientific than at times in the past, and a little more speculative and personal. You see, a friend loaned me a diet book that wasn’t actually 100-percent horrible, and it offered an insight that resonated with me in a big way.

The book was Michel Montignac’s Eat & Lose Weight For Good: The Montignac Weight-Loss Plan, in a UK edition. (This is probably the US equivalent.) My friend and I had discovered a mutual appreciation of GCBC, and she thought I’d like this book too.

Montignac has a wonderfully blunt style, and he seems to enjoy shocking his audience. Very French! He’s written quite a few books, focusing on what I’d call a hybrid low-glycemic/”French girls don’t get fat” approach. This book has a couple of scientific boo-boos, for example extolling the virtues of fructose (?!?). But he has a good handle on the sheer variability of people’s responses to carbs. (Atkins had the same, with his emphasis on finding your personal Critical Carbohydrate Level for Losing.)

This passage reached out and grabbed me:

Some people have been able to remain slim all their life, although they have bad eating habits. This is because they were blessed with a very healthy pancreas that has not lapsed into hyperinsulinism, despite the heavy glycaemia inflicted on it over a long period of time.

Others — and these are the majority — also started off with a healthy pancreas that enabled them to stay slim for many years despite their bad eating habits. And then, when they were about 30 or 35, and certainly by the time were 40, they started to put on weight. In later years, some even became obese and diabetic. Their pancreas held out for several decades, but in the end it succumbed to the abuse it had suffered.

And then there are those, like me, who arrived on earth with a sub-standard pancreas that was inherited. The chances of having a frail pancreas, if your parents were obese and therefore hyperinsulinic, is high. It is almost certain in any case, if the diet from an early age is hyperglycaemic. [p. 47]

I suspect he’s just described my pancreas: feeble, rickety, frail, sub-standard. Some of my friends (probably with brawny he-man pancreata) seem incredulous at the crazy lengths I go to even to avoid gaining weight at this point, having to cut out just about any slightly scary carb and some nominally okay ones (mmm, oatmeal). It’s like I’ve used up my lifetime allotment of normal insulin response.

Notice that Montignac suggests two factors to consider: heredity and environment. (With risk factors on both sides of my family, and with a history of dieting in the idiotic 70′s and 80′s, I bet I’ve got both.) One or both might explain one of the outcomes of an exercise in occupational medicine, done at DuPont in the late 1940′s to help executives lose weight and avoid the new epidemic of heart disease in America. Taubes recounts the tale:

In June 1949, [Alfred] Pennington published an account of the DuPont experience… All of this seemed paradoxical: the DuPont executives lost weight on a diet that did not restrict calories. Carbohydrates were restricted in their diet — no more than eighty calories at each meal. “In a few cases,” Pennington reported, “even this much carbohydrate prevented weight loss, though an ad-libitum [unrestricted] intake of protein and fat, more exclusively, was successful.” …. If [one executive] ate any carbohydrates, “even an apple,” Pennington wrote, his weight would climb upward. [GCBC p. 330, Ch. 20; bold added]

Heredity and environment are the filters through which I now view all women’s magazine articles, studies, and public-health pronouncements about obesity, diabetes, heart disease, and metabolic syndrome. Maybe low-fat does work — for the young, or the pancreatically strong. Maybe it works now but it contributes to later yo-yo effects. If we had an easy way of testing both axes, maybe we’d have a shot at predicting who will lose weight on which diet at which juncture in their lives without lasting damage.

Speaking for myself, I just can’t take the chance anymore.

Protocol peep show

While lots of other people are having their fun at JavaOne, I have to content myself with publishing a clearer version of the ProtectServe protocol flows Paul Bryan walked through in our video-recorded IIW8 session.

We originally prepared the flow diagrams using that wonderful tool, WebSequenceDiagrams.com. Paul then doctored the resulting PDF files with a special new technology: overlaying the diagrams with translucent gray boxes that have holes strategically cut out of them, and then — this was the tricky part — moving the holes. (I think Paul is using this special technology as part of his JavaOne session on Designing and Building Security into REST Applications for explaining OAuth tomorrow. He may even have enhanced the special technology by then. Don’t miss it!)

The protocol peep show starts…now.

• Step 0
• Step 1
• Step 2
• Step 3

(Check out the other entries in this blog category for more explanation.)