Headlines
=Drummond
|
Identity Woman
|
The Tao of XDI
|
Identity for All
|
|
.Nat Zone
|
ID Commons
|
|
Technometria
|
InfoCard WebLog
|
|
Kim Cameron's Id Blog
|
@linksafe/+blog
|
|
inamers blog
|
itickr.com
|
|
itickr.com
|
Recent Headlines
| An Operating System for Your Personal Cloud | Technometria | |
Everyone has a cloud strategy these days. Of course, when you hear about clouds, you hear questions like "Are we talking about IaaS, PaaS, or SaaS?" This assumes an enterprise-centric view of clouds that is belied by what Robert Scoble calls the game of games. Facebook, Google, and Apple are most selling clouds in various guises and see their cloud strategy as a key to their future. The problems with these "personal clouds" is that they have no operating system. An operating system is what makes your personal computer personal. Without an OS, it would be a special purpose appliance that does specific things (like run an office suite) but not others (like play a game). There are certainly those who wish that was the norm, but for now, at least, we have general purpose computers that run a variety of applications and can be configured according to the dictates and wishes of their owners. [An aside for those of you getting ready to comment: yes Facebook allows apps and is an app platform, but they are ancillary to the experience, not core. The core experience is still very much a Facebook-determined thing.] The user-focused clouds we see today are special purpose. You can't customize them much or make them do something their builders didn't envision in the selection of applications that they offer. In contrast a personal event network is like an OS for your personal cloud. You can install apps to customize it for your purpose, it can store and manage your personal data, and it provides generalized services through APIs that any app can take advantage of. |
||
| å˜ãªã‚‹ OAuth 2.0 ã‚’èªè¨¼ã«ä½¿ã†ã¨ã€è»ŠãŒé€šã‚Œã‚‹... | .Nat Zone | |
 OAuth 2.0 ã® implicit grant flow ã‚’èªè¨¼ã«ä½¿ã†ã¨ã€è»ŠãŒé€šã‚Œã‚‹ç¨‹ã©ã¦ã‹ã„ã‚»ã‚ュリティ・ホールãŒé–‹ãよã€ã¨è¨€ã†ã€ã‚¸ãƒ§ãƒ³ãƒ»ãƒ–ラッドレーæ°[1]ã«ã‚ˆã‚‹è‰¯è¨˜äº‹ã€‚コメントもèªã¿å¿œãˆã‚ã‚Šã¾ã™ã€‚ã¡ã‚‡ã£ã¨ãƒã‚§ãƒƒã‚¯ã—ãŸè¦‹ãŸã¨ã“ã‚ã¯ã€å…¨æ»…。RPå´ã‚’æ²»ã•ãªãゃã„ã‘ãªã„ã‹ã‚‰ã€ã¨ã£ã¨ã¨å…¬é–‹ã‚¢ãƒŠã‚¦ãƒ³ã‚¹ã—ãŸã»ã†ãŒè‰¯ã„ã®ã§ã—ょã†ã。ã„ã¡ã„ã¡ã‚³ãƒ³ã‚¿ã‚¯ãƒˆã—ã¦ã‚‰ã‚Œãªã„ã—。Facebook ã‚„ã€ãã®ä»–OAuthãƒã‚°ã‚¤ãƒ³ã—ã¦ã„るサイトã¯ã¿ã‚“ãªãƒã‚§ã‚¯ï¼
In some of the feedback I have gotten on the openID Connect spec, the statement is made that Connect is too complicated. That OAuth 2.0 is all you need to do authentication. Many point to Identity Pro… 英語èªã¿ãŸããªã„ã¨ã„ã†äººã®ãŸã‚ã«ç°¡å˜ã«è§£èª¬ã™ã‚‹ã¨… OAuth 2.0 ã® implicit flow を使ã£ã¦ã€Œèªè¨¼ã€ã‚’ã—よã†ã¨ã™ã‚‹ã¨ã€ã¨ã£ã¦ã‚‚大ããªç©´ãŒé–‹ãã¾ã™ã€‚ カット&ペーストアタックãŒå¯èƒ½ã ã‹ã‚‰ã§ã™ã€‚ OAuth èªè¨¼ï¼Ÿã¯ã€å›³ï¼‘ã®ã‚ˆã†ãªæµã‚Œã«ãªã‚Šã¾ã™ã€‚ 図1 OAuth èªè¨¼ï¼Ÿã®æµã‚Œ 一見ã€å•é¡Œãªã•ãã†ã«è¦‹ãˆã¾ã™ã€‚ã—ã‹ã—ã€ãã‚Œã¯ã™ã¹ã¦ã®ã‚µã‚¤ãƒˆãŒã€Œè‰¯ã„サイトã€ãªã‚‰ã°ã§ã™ã€‚ Site_A ãŒå®Ÿã¯æ‚ªã„サイトã ã£ãŸã¨ã—ã¾ã—ょã†ã€‚ã™ã‚‹ã¨ã€Site_A ã¯ã€ã“ã®ãƒ¦ãƒ¼ã‚¶ã«ãªã‚Šå¤‰ã‚ã‚‹ access_token ã‚’ã¾ã‚“ã¾ã¨å…¥æ‰‹ã—ã¦ã—ã¾ã£ãŸã“ã¨ã«ãªã‚Šã¾ã™ã€‚ Site_A ã¯ã€ä»¥å¾Œã€ã“ã®ãƒ¦ãƒ¼ã‚¶ã«ãªã‚Šã™ã¾ã—ã¦ã€ä»»æ„ã®ã€ŒOAuth èªè¨¼ï¼Ÿã€ã‚’ã‚„ã£ã¦ã„るサイトã«ãƒã‚°ã‚¤ãƒ³ã™ã‚‹ã“ã¨ãŒã§ãã¾ã™ã€‚ éžæŠ€è¡“者ã®ãŸã‚ã®OAuthèªè¨¼(?)ã¨OpenIDã®é•ã„入門 ã«ã‚‚書ãã¾ã—ãŸãŒã€å®›å…ˆã®æ›¸ã„ã¦ãªã„åˆéµæ¸¡ã—ã¡ã‚ƒã£ã¦ã€ãれをæŒã£ã¦ã„る人ã¯èª°ã§ã‚‚ç§ã®åˆ†èº«ã§ã™ã¨è¨€ã£ã¦ã„ã‚‹ã‚ã‘ã§ã™ã‹ã‚‰å½“ãŸã‚Šå‰ã§ã™ã。 具体的ã«æ›¸ãã¨ã€ Site_A ã¯ãƒ–ラウザ(User Agent) UAを使ã£ã¦ã€Site_B ã«è¡Œã£ã¦ãƒã‚°ã‚¤ãƒ³ã—よã†ã¨ã—ã¾ã™ã€‚ã™ã‚‹ã¨ã€ä¸Šè¨˜ã¨åŒã˜æ‰‹ç¶šã§ Site_B ã¯ã€Œèªè¨¼ã€ã‚’ã—よã†ã¨ã—ã¾ã™ã€‚UA㯠Site_B用ã®ã€æ”»æ’ƒè€…用ã®ã‚¢ã‚¯ã‚»ã‚¹ãƒˆãƒ¼ã‚¯ãƒ³ access_token_B ã‚’OAuth ã® Authorization Endpoint (Authz) ã‹ã‚‰ã‚‚らã„ã¾ã™ãŒã€ã“れをSite_Bã«ã¯æ¸¡ã•ãšã«ã€ã•ã£ãå–å¾—ã—ãŸã€ãƒ¦ãƒ¼ã‚¶ï¼ˆï¼è¢«å®³è€…)ã®ã‚¢ã‚¯ã‚»ã‚¹ãƒˆãƒ¼ã‚¯ãƒ³ access_token_A を代ã‚ã‚Šã«æ¸¡ã—ã¾ã™ã€‚Site_BãŒã“ã®ãƒˆãƒ¼ã‚¯ãƒ³ãŒæœ¬å½“ã¯Site_A用ã®ã‚‚ã®ã ã¨èªè˜ã™ã‚‹æ‰‹æ®µã¯ã‚ã‚Šã¾ã›ã‚“。ãªã®ã§ã€è‡ªåˆ†å‘ã‘ã®ã‚‚ã®ã¨ã—ã¦å—ã‘å–ã£ã¦ã—ã¾ã„ã¾ã™ã€‚ãã—ã¦ã€Site_B㯠GraphAPI ã« access_token を投ã’ã¦ã€è¢«å®³è€…ã®email ã‚„ user_id ã‚’å–å¾—ã—よã†ã¨ã—ã¾ã™ã€‚GraphAPI ãŒã€ã“ã®Site_A用ã®ãƒˆãƒ¼ã‚¯ãƒ³ã‚’é€ã£ã¦ãã¦ã„ã‚‹ã®ãŒSite_Bã ã¨ã„ã†ã“ã¨ã‚’èªè˜ã™ã‚‹æ‰‹æ®µã‚‚ã‚ã‚Šã¾ã›ã‚“。ã—ãŸãŒã£ã¦ã€GraphAPIã¯ã€Site_AãŒãƒªã‚¯ã‚¨ã‚¹ãƒˆã—ã¦ããŸã®ã¨åŒæ§˜ã«ã€è¢«å®³è€…ã®emailã‚„user_idã‚’é€ã‚Šè¿”ã—ã¦ã—ã¾ã„ã¾ã™ã€‚çµæžœã€Site_Bã¯ã€æ”»æ’ƒè€…を被害者ã¨ã—ã¦ãƒã‚°ã‚¤ãƒ³ã•ã›ã¦ã—ã¾ã„ã¾ã™[5]。ã“ã®æµã‚ŒãŒå›³ï¼’ã§ã™ã€‚ 図2 OAuth ã® access_token ç½®æ›ãˆæ”»æ’ƒ ã“ã‚Œã¯ã€OAuth ã® state パラメータを使ã£ã¦ XSRF 対ç–ã‚’ã—ã¦ã„ã¦ã‚‚防ã’ã¾ã›ã‚“。ã¤ã¾ã‚Šã€OAuth 2.0 ã® Client ã¯ã€ãã®Client (サイト)ã«ãƒã‚°ã‚¤ãƒ³ã—ãŸã™ã¹ã¦ã®äººã«ãªã‚Šã™ã¾ã—ã¦ã€ä»»æ„ã®ä»–ã®OAuth 対応サイトã«ãƒã‚°ã‚¤ãƒ³ã§ãã‚‹ã®ã§ã™ã€‚ ã“ã‚Œã¯ã€OAuth ã®å•é¡Œã§ã¯ã‚ã‚Šã¾ã›ã‚“。 OAuth 㯠Authorization Delegation Protocol = èªå¯ã‚’デリゲーションã™ã‚‹ãŸã‚ã®ãƒ—ãƒãƒˆã‚³ãƒ«ã§ã‚ã£ã¦ã€ãƒ¦ãƒ¼ã‚¶èªè¨¼ã®ãŸã‚ã®ãƒ—ãƒãƒˆã‚³ãƒ«ã§ã¯ãªã„ã‹ã‚‰ã§ã™[5]。ã¯ã£ãり言ã£ã¦ã€æ¥½ã¡ã‚“ã ã‹ã‚‰ã¨ã„ã£ã¦ã€ãれをå˜ä½“ã§èªè¨¼ã®ä»£ã‚ã‚Šã«ä½¿ã£ã¦ã„ã‚‹æ–¹ãŒæ‚ªã„。 実ã¯ã€Facebook ã‚‚ã“ã®ã“ã¨ã¯æ°—ã¥ã„ã¦ã„ã¦ã€signed_request ã¨ã„ã†APIã‚’æŒã£ã¦ã„ã¾ã™ã€‚ã“ã‚Œã¯ã»ã¨ã‚“ã© OpenID Connect ã¨åŒã˜ã§ã™[2]。Facebook ã§ãƒã‚°ã‚¤ãƒ³ã™ã‚‹ãŸã‚ã«ã¯ã€ã“ã¡ã‚‰ã‚’使ã‚ãªã‘ã‚Œã°ã„ã‘ãªã„ã®ã§ã™ã€‚scope=signed_request ã£ã¦ã‚„ã‚‹ã‚“ã§ã™ã‚ˆã€‚ã§ã‚‚ã€ä½¿ã£ã¦ã„る人ã€ã©ã‚Œãらã„å±…ã¾ã™ã‹ï¼Ÿã‚„ã£ã¦ã¾ã™ï¼Ÿã»ã¨ã‚“ã©ã¯ã€access token ã‚’å–å¾—ã™ã‚‹ãŸã‚ã® client side flow (Facebook ã®ãƒ‡ãƒ•ã‚©ãƒ«ãƒˆï¼‰ ã‚’èªè¨¼ã®ä»£ã‚ã‚Šã«ã¤ã‹ã£ã¡ã‚ƒã£ã¦ã¾ã™ã‚ˆãï¼Ÿï¼ Google ã® Identity Service ã®è²¬ä»»è€…ã® Eric Sachs æ°ã®ã€John ã® blog ã«å¯„ã›ã‚‰ã‚ŒãŸæŠ•ç¨¿ã‚‚ã€ã“ã®ã“ã¨ã®é‡è¦æ€§ã‚’指摘ã—ã¦ã„ã¾ã™ã€‚
å•é¡Œã®åŽŸå› ã¯ã€access_token ã® audience 㯠resource endpoint ã§ã‚ã‚‹ã®ã«å¯¾ã—ã¦ã€èªè¨¼ã«ä½¿ã†ãƒˆãƒ¼ã‚¯ãƒ³ã® audience 㯠client ã§ãªã‘ã‚Œã°ã„ã‘ãªã„ã¨ã„ã†ã¨ã“ã‚ã«ã‚ã‚Šã¾ã™ã€‚ã ã‹ã‚‰ã€OpenID Connect ã§ã¯ã€client ã‚’ audience ã«ã—㟠id_token ã¨ã„ã†ã€access_token ã¨ã¯åˆ¥ã®ãƒˆãƒ¼ã‚¯ãƒ³ã‚’発行ã—ã¦ã„ã‚‹ã®ã§ã™ã€‚Facebook ã® signed_request ã‚‚åŒã˜ã§ã™ã€‚ ã¡ã‚ƒã‚“ã¨æ²»ã—ã¦ãã ã•ã„ãã€çš†ã•ã‚“。治ã™ã£ã¦ã“ã¨ã¯ã€OpenID Connect 対応ã™ã‚‹ã£ã¦ã“ã¨ã§ã™ã‚ˆï¼ 大ã—ãŸå·¥æ•°ã˜ã‚ƒãªã„ã‚“ã ã‹ã‚‰ã€‚数行を惜ã—ã‚“ã§ãƒ¦ãƒ¼ã‚¶ã‚’å±é™ºã«æ™’ã™[4]ã®ã¯ã€ãœã²ã‚„ã‚ã¦ã„ãŸã ããŸã„ã¨ã“ã‚ã§ã™ã€‚
[1] John Bradley. アメリカ政府㮠ICAMã®ä¸ã®äººã§ã€IMI, OpenID, SAML ã®ãƒ—ãƒãƒ•ã‚¡ã‚¤ãƒ«ã‚’書ã„ã¦ã„る。OpenID Foundation ç†äº‹ã€‚Kantara Initiative リーダーシップカウンシルè°é•·ã€‚今回ã®è¨˜äº‹ã¯ã€OAuth èªè¨¼ã®ãƒ—ãƒãƒ•ã‚¡ã‚¤ãƒ«ã‚’書ã“ã†ã¨ã—ã¦ã€ã€Œã ã‚ã ã“りゃã€ã¨ã„ã†ã“ã¨ã‚‰ã—ã„。 [2] signed_request ã¯ã€Facebook 独自ã®ç½²åæ–¹å¼ã‚’ã¨ã£ã¦ã„ã‚‹ã®ã«å¯¾ã—ã¦ã€OpenID Connect 㯠IETF JOSE WG ã§æ¨™æº–化ã•ã‚Œã¦ã„ã‚‹JWSを利用ã—ã¦ã„ã¾ã™ã€‚ã¾ãŸã€signed_request ã§ã¯ã€access_token 自体をsigned_request ã®ä¸ã«å…¥ã‚Œã¦ã„ã¾ã™ãŒã€OpenID Connect ã§ã¯ã€ä»–ã®OAuth 2.0 サイトã¨ã®äº’æ›æ€§ã‚’考慮ã—ã¦ã€å¤–出ã—ã«ã—ã¦ã„ã¾ã™ã€‚ [3] 原文: Great post by John Bradley on the huge security hole many IDPs have created by using plain OAuth, instead of OpenIDConnect, for authentication. We need to keep hammering away on this point both so IDPs realize the security problems they are creating for their partners, and to get RPs to realize how easily they can compromise their own security just because of the lack of a few additional lines of code. Years ago when Google first launched its proprietary equivalent of OAuth, called AuthSub, we had a big section at the bottom warning people not to use it for authentication for exactly this reason. (source: https://plus.google.com/u/0/102425765611793764729/posts/UKcZQzuvosQ ) [4] ä¹—ã£å–られãŸã¨ã—ã¦ã‚‚何も起ããªã„ã®ãªã‚‰ã°è‰¯ã„ã®ã§ã™ãŒã€ãƒ¦ãƒ¼ã‚¶ã®å€‹äººæƒ…å ±ã‚’è²¯ã‚ã¦ãŸã‚Šã—ãŸã‚‰ã€å½“ç„¶å€‹äººæƒ…å ±æ¼ãˆã„事件ã«ãªã‚Šã¾ã™ã‚ˆã。 [5] 太å—部分ã€2/3追記。 [6] (2/3追記)攻撃者ã§ã‚ã‚‹Site_AãŒã€è‡ªåˆ†ã‚ã¦ã® access_token ã‚’ä»–ã®äººã«æ¸¡ã™ã®ã¯ã€Site_AãŒè‡ªåˆ†ã§ã‚¢ã‚¯ã‚»ã‚¹ã—ãŸçµæžœã‚’渡ã™ã®ã¨å¾—られるçµæžœã¯åŒã˜ã§ã™ã€‚ã—ãŸãŒã£ã¦ã€GraphAPI/Resourceã®æ供者ã®ç«‹å ´ã‹ã‚‰ã—ãŸã‚‰ã€Site_A用㮠access_token ã‚’ Site_BãŒä½¿ã†ã“ã¨ã¯ã€åˆ¥ã«ãƒªã‚¹ã‚¯ãŒå¢—åŠ ã—ã¦ã„ã‚‹ã“ã¨ã«ã¯ãªã‚Šã¾ã›ã‚“。 |
||
| NSTIC Moving Forward with Pilots and Steering Group | ID Commons | |
| The following announcement was just sent from NIST's Jeremy Grant, with important updates on the coming NSTIC funded pilots and plans for constituting a Steering Group, among other updates. We'll be providing information on these items and more over the next several days. Looks like 2012 will be the year NSTIC begins true implementation. Dear NSTIC [...] |
||
| ID Collaboration Day Will Happen in San Francisco the Monda... | ID Commons | |
| This is an important opportunity to collaborate for all members of the Identity Community so please update your schedule and try to attend. For More Information Click Here |
||
| Place-Based Networks | Technometria | |
Here's a thought-provoking piece on place-based networks from Gideon Rosenblatt. Imagine if the Internet worked the way the real world does - and that physical places still helped build connection and community. That's the idea behind Place-Based Networks; it's mobile, social technology to help you connect with people based on your shared interest in a place. From Place-Based Networks: A New Kind of Social Network » Alchemy of Change by Gideon RosenblattReferenced Wed Feb 01 2012 07:27:40 GMT-0700 (MST) I imagine that our personal event networks could help with that. If your personal event network knows where you are and what venues you frequent, it can automate things like tagging in your communications, negotiating meet-ups, and so on. |
||
| 「雪やã“ã‚“ã“ã€ã¯ç€§å»‰å¤ªéƒŽä½œæ›²ï¼Ÿ | .Nat Zone | |
以å‰æ›¸ã„ãŸè¨˜äº‹ã€ã€Žã€Œé›ªã‚„ã“ã‚“ã“ã€ã¯ãƒ‰ãƒœãƒ«ã‚¶ãƒ¼ã‚¯ä½œæ›²ã ã£ãŸã‚“ã …ã€ã«ä¹…ã—ã¶ã‚Šã«ã‚³ãƒ¡ãƒ³ãƒˆã‚’ã„ãŸã ãã¾ã—ãŸã€‚ 「作者ä¸è©³ã§ã¯ãªãã€æ»å»‰å¤ªéƒŽä½œæ›²ã§ã¯ãªã„ã‹ã€ã€Œ1901å¹´ã®æ»å»‰å¤ªéƒŽã®ã‚ªãƒªã‚¸ãƒŠãƒ«ã ã‹ã‚‰ãã¡ã‚‰ã®ã»ã†ãŒæ—©ã„ã®ã§ã¯ã€ã¨ã„ã†è©±ã§ã™ã€‚ 「ãˆã£ï¼Ÿï¼ã€ ã¨æ€ã£ã¦ã€Wikipedia 様ã«ãŠä¼ºã„ã‚’ç«‹ã¦ãŸã‚‰ã€ãªã‚“ã¨ç€§å»‰å¤ªéƒŽä½œæ›²ã«ãªã£ã¦ã„ã‚‹ã§ã¯ã‚ã‚Šã¾ã›ã‚“ã‹ã€‚ ã—ã‹ã—ã€ã€Œã¸ãƒ¼ã€ãã†ãªã‚“ã 。ã€ã¨æ€ã„ã¾ã›ã‚“ã§ã—ãŸã€‚ç§ãŒå¤©ã®é‚ªé¬¼ã ã‹ã‚‰ã§ã¯ãªãã€æ›²ã®ã‚¹ã‚¿ã‚¤ãƒ«ãŒç€§å»‰å¤ªéƒŽã¨ã¯ã¾ã‚‹ã§é•ã†ã‹ã‚‰ã§ã™ã€‚ 実ã¯ç€§å»‰å¤ªéƒŽã«ã¯ã€ã€Œé›ªã‚„ã“ã‚“ã“ã‚“ã€ã¨ã„ã†æ›²ãŒã‚ã‚Šã¾ã™ã€‚「ã“ã‚“ã“ã€ã§ã¯ãªã「ã“ã‚“ã“ã‚“ã€ã§ã™ã€‚「雪やã“ã‚“ã“ã€ã®æ–¹ï¼ˆæœ¬å½“ã®é¡Œåã¯ã€Œé›ªã€ã§ã™ï¼‰ã¯ã€å°‹å¸¸å°å¦å”±æŒï¼ˆï¼’)ã§æœ‰ã‚‹ã®ã«å¯¾ã—ã€ã€Œé›ªã‚„ã“ã‚“ã“ã‚“ã€ã®æ–¹ã¯å¹¼ç¨šåœ’å”±æŒ[1]ã§ã™ã€‚ã“ã®æ›²é›†ã«ã¯20曲åŽéŒ²ã•ã‚Œã¦ãŠã‚Šã€ä¸ã«ã¯ã‚ã®æœ‰åãªã€Œã‚‚ã†ã„ãã¤å¯ã‚‹ã¨ãŠæ£æœˆã€ã®ã€ŒãŠæ£æœˆã€ã‚‚å…¥ã£ã¦ã„ã¾ã™ã€‚
å…¨ã別ã®æ›²ã§ã™ã‚ˆã。ã“ã¡ã‚‰ã¯ã€ã—ã£ã‹ã‚Šç€§å»‰å¤ªéƒŽã‚¹ã‚¿ã‚¤ãƒ«ã§ã”ã–ã„ã¾ã™ã€‚ ã¨ã„ã†ã‚ã‘ã§ã€wikipedia ã‚‚ç›´ã—ã¦ãŠãã¾ã—ãŸã€‚ ãªãŠã€ã‚„ã‚„ã“ã—ã„ã“ã¨ã«ã€ç€§å»‰å¤ªéƒŽã«ã¯ã€Œé›ªã€ã¨ã„ã†æŒæ›²ã‚‚ã‚ã‚Šã¾ã™ã€‚明治33年(19ï¼ï¼ï¼‰ï¼’1æ³ã®ã¨ãã«ç™ºè¡¨ã—ãŸã€çµ„æŒã€Žå››å£ã€ã®ä¸€æ›²ã§ã™ã€‚
「花ã€ã¯å¤§å¤‰æœ‰åãªã‚ã®ã€ã€Œæ˜¥ã®ã†ã‚‰ã‚‰ã®éš…ç”°å·ã€ã§å§‹ã¾ã‚‹æ›²ã§ã™ã€‚ã“ã®4曲目ãŒã€Œé›ªã€ãªã‚ã‘ã§ã™ã€‚ã‚ã¾ã‚Šèžã„ãŸã“ã¨ã¯ãªã„ã®ã§ã¯ãªã„ã‹ã¨æ€ã„ã¾ã™ã€‚
ã“ã®ã€Œå››å£ã€ã¯å®Ÿã¯æ—¥æœ¬ã®è¥¿æ´‹å¼éŸ³æ¥½å²ã§ã¯å¤§å¤‰é‡è¦ãªä½œå“ã§ã—ã¦ã€é‚¦äººã«ã‚ˆã£ã¦æ›¸ã‹ã‚ŒãŸã€åˆã‚ã¦ã®èŠ¸è¡“的西洋音楽ãªã®ã§ã‚ã‚Šã¾ã™ã€‚ãã‚Œã¾ã§ã¯ã›ã„ãœã„å”±æŒã—ã‹ãªã‹ã£ãŸ[3]ã¨ã“ã‚ã«ã€çªç„¶ã€å…¨ãç„¡åã®ä½œæ›²å®¶ã«ã‚ˆã£ã¦ã“ã®ã‚ˆã†ãªæ›²ãŒç™ºè¡¨ã•ã‚Œã¦å¤§å¤‰é©šã‹ã‚ŒãŸã‚ˆã†ã§ã™ã€‚詳細ã¯ã€ç¾ä»£å¿ƒç†ç ”究会ã®æ»å»‰å¤ªéƒŽã®æŒæ›²ã€Œé›ªã€ï¼ˆçµ„æŒã€Œå››å£ã€ï¼‰ã«ã¤ã„ã¦ã«è©³ã—ã„ã®ã§ã€ãœã²ã”覧ã«ãªã‚‰ã‚Œã‚‹ã“ã¨ã‚’ãŠå‹§ã‚ã—ã¾ã™ã€‚ãªãŠã€ã“ã®é ƒã®æ›²ã¯å¤§å¤‰è¥¿æ´‹éŸ³æ¥½ã®å½±éŸ¿ãŒå¼·ã„[2]ã§ã™ã€‚ã¾ãŸã€æ£ç›´ã€ã€Œãã“ã¯é•ã†ã ã‚ã€çš„ãªã¨ã“ã‚ã‚‚ã¾ã¾æœ‰ã‚‹ã®ã§ã™ãŒã€å½“時ã®çŠ¶æ³ã‹ã‚‰è€ƒãˆã‚‹ã¨ã€é©šãã¹ã曲ã§ã‚ã‚‹ã“ã¨ã«ã¯å¤‰ã‚ã‚Šã‚ã‚Šã¾ã›ã‚“。 ã§ã¯ã€çµ„æŒã€Žå››å£ã€ãŠæ¥½ã—ã¿ãã ã•ã„。
[1] 共益商社編『幼稚園唱æŒã€(共益商社楽器店)明治三å四年七月発行 |
||
| Podcatchers for Smartphones | Technometria | |
As you might guess, given that I'm Executive Producer of IT Conversations, I like listening to podcasts. I'm also an iPhone user. Not to put too fine a point on it: iTunes sucks rocks for listening to podcasts. The problem is mostly that iTunes has a crappy interface for subscribing to and managing podcasts. It also downloads only one episode per day, with no way to change the defaults. Moreover it will stop downloading podcasts that you haven't listened to for a while and you have to remember to go in an start it up. I started feeling like I had to "take care of iTunes" like it was a recalcitrant pet or something. For some reason, it never really occurred to me to download an app for listening to podcasts, although I've downloaded several single purpose ones (like the This American Life app). Then Paul Figgiani introduced me to Downcast. I'm in love. I no longer have to fight iTunes and all my favorites are right there waiting for me to listen to them when I go for a walk or drive to work. The interface is good, with plenty of controls for skipping forward and back or adjusting the playback speed. I also like the built-in "share" features although I wish they allowed me to customize the default text for the share. Unfortunately, Downcast isn't available on Android. I have an Android tablet (Galaxy Tab) that I've used Google Listen on. It's a functional podcatcher, albeit a little bare-boned compared to Downcast: no speed or skipping controls and no built-in sharing. So, go grab Downcast, plug in the IT Conversations feed URL and enjoy great tech talks from the longest running podcast on the planet...no matter where you're at. |
||
| Registration Now Open for 2012 NIST/NSTIC IDtrust Workshop | ID Commons | |
| March 13-14, 2012 at NIST in Gaithersburg, Maryland. This promises to be an important event for the digitial identity community and perhaps a milestone in progress on the National Strategy for Trusted Identities in Cyberspace (NSTIC). Don't Miss Out – Online Registration is NOW Open Click here for further details |
||
| The Fundamental Flaw in SOPA and PIPPA | =Drummond | |
| After all the raging debate about SOPA (Stop Online Piracy Act) and PIPA (Protect IP Act), the fundamental flaw in both is captured succinctly in this public letter to Senator Orrin Hatch from Phil Windley, Kynetx CTO and author of The … Continue reading → | ||
| ãƒã‚¤ãƒ‰ãƒ³äº¤éŸ¿æ›²ç¬¬89番ヘ長調「証城寺ã€ï¼Ÿï¼ | .Nat Zone | |
ã¿ãªã•ã‚“ã€ã€Œè¨¼åŸŽå¯ºã®ç‹¸å›ƒåã€é€šç§°ã€Œã—ょã†ã˜ã‚‡ã†å¯ºã€ã¨ã„ã†ç«¥è¬¡ã€ã”å˜çŸ¥ã§ã™ã‚ˆã? ãã†ã€ã‚ã®ã€Œã—ょã€ã—ょã€ã—ょã†ã˜ã‚‡ã†ã˜ã€‚ã—ょã†ã˜ã‚‡ã†ã˜ã®åºã¯â€¦ã€ã¨ã„ã†ã‚ã‚Œã§ã™ã€‚ æŒè©žè¡Œãã¾ã—ょã†ã€‚
楽ã—ã„æŒã§ã™ãã‡ã€‚(Youtube ã®ãƒªãƒ³ã‚¯ã¯ã“ã¡ã‚‰ï¼‰ã€‚ ãƒã‚¤ãƒ‰ãƒ³ã¯å¾¡å˜çŸ¥ã®é€šã‚Šçµ‚生交響曲を様々ãªå®Ÿé¨“ã‚’ç¹°ã‚Šè¿”ã—ãªãŒã‚‰ä½œã‚Šç¶šã‘ã€å‰å¤§ã«ã—ã¦ã„ã£ãŸå¤§ä½œæ›²å®¶ã§ã™ã€‚ã¾ã•ã«ã€äº¤éŸ¿æ›²ã®çˆ¶ã€‚ãã®ãƒã‚¤ãƒ‰ãƒ³ã®äº¤éŸ¿æ›²ç¬¬89番ã¯ã€å¾Œã®ãƒ™ãƒ¼ãƒˆãƒ¼ãƒ´ã‚§ãƒ³ã‚’予感ã•ã›ã‚‹ã¨ã„ã†å曲ã§ã™ã€‚冒é ã®éƒ¨åˆ†ã ã‘ã§ã™ãŒã€ãŠèžããã ã•ã„。
分ã‹ã‚Šã¾ã—ãŸï¼Ÿã®ã£ã‘ã‹ã‚‰ã€Œã—ょã€ã—ょã€ã—ょã˜ã‚‡ã˜ã£ï¼ã€ ã¾ãã€ãƒ‰ãƒ»ãƒŸãƒ»ã‚½ãƒŸãƒ‰ã€ã§ã™ã‹ã‚‰ã。ã—ã‹ã—ã€æœ€åˆã«èžã„ãŸã¨ãã¯ã‚ã£ã‘ã«å–られã¾ã—ãŸã。ã¿ãªã•ã‚“ã¯ã„ã‹ãŒã§ã—ãŸï¼Ÿã§ã‚‚ã€ã¨ã¦ã‚‚良ã„曲ãªã®ã§ã€ãœã²CDã‚’è²·ã£ã¦å…¨æ›²èžã„ã¦ã¿ã¦ãã ã•ã„。  Amazonã§è²·ã†ãƒã‚¤ãƒ‰ãƒ³:交響曲第69, 89, 91番 |
||
| フランス Orange Mobicarte ã§ã€ãƒ‡ãƒ¼ã‚¿ä½¿ã„放題ï¼... | .Nat Zone | |
| 本人確èªã¨ä¿é™ºè¨¼ï½žå…ƒã‚ªã‚¦ãƒ 信者・斎藤容ç–... | .Nat Zone | |
| My Letter to Senator Hatch in Opposition to PIPA | Technometria | |
| æ¾å‚和夫先生 | .Nat Zone | |
| WordPressã®ãƒ†ãƒ¼ãƒžã€Minimal Xpert ã®æ—¥æœ¬èªžåŒ– | .Nat Zone | |
| spモードメールå•é¡Œ | .Nat Zone | |
| OpenID Foundation ã‹ã‚‰ã®ã‚¯ãƒªã‚¹ãƒžã‚¹ãƒ—レゼント | .Nat Zone | |
| Delivering Flowers with a Distributed Event System: Event S... | Technometria | |
| The Live Web is Live! | Technometria | |
| Foursquare and Personal Data in a Personal Event Network | Technometria | |
| Static Scoping of Persistents in KRL Modules | Technometria | |
| Students Loans: Debt Peonage | Technometria | |
| AT&T Are You Reading Your Own Emails??? | =Drummond | |
| オランダã®SIM – ortel ã®APNè¨å®šãªã© | .Nat Zone | |
| XDI Art from Mike Schwartz | =Drummond | |
| Dan Marovitz Shows his Zeal | =Drummond | |
| Notifications in Personal Event Networks | Technometria | |
| Buzzumi + Twitter = World Wide Video Chat Service | =Drummond | |
| Connect.Me: One Month In | =Drummond | |
| Support for this Hypothes.is | =Drummond | |
| Love, Crazy, Stupid, Love. | =Drummond | |
| Disintermediation: an Amazon parable | Kim Cameron's Id Blog | |
| A social network or the name police ? but not both | Kim Cameron's Id Blog | |
| 24 year old student lights match: Europe versus Facebook | Kim Cameron's Id Blog | |
| Update on Personal Event Networks: The Evented API Spec | =Drummond | |
| New Approaches for Transaction-based Assurance | ID Commons | |
| He Was Da Man | =Drummond | |
| NSTIC NOI Response Period Extended to August 31, 2011 | ID Commons | |
| Arrogant bullies versus Superheroine | Kim Cameron's Id Blog | |
| Linked In strikes out | Kim Cameron's Id Blog | |
| Who is harmed by a ?Real Names? policy? | Kim Cameron's Id Blog | |
| Head over to the Office of Inadequate Security | Kim Cameron's Id Blog | |
| The Idiot?s Guide to Why Voicemail Hacking is a Crime | Kim Cameron's Id Blog | |
| Robots reshaping social networks | Kim Cameron's Id Blog | |
| New paper on Wi-Fi positioning systems | Kim Cameron's Id Blog | |
| Session Timeout for PayPal OpenID | itickr.com | |
| Login to Google Apps using PayPal | itickr.com | |
| SAML SSO using PayPal | itickr.com | |
| PayPal OpenID Implementation details | itickr.com | |
| PayPal OpenID Provider | itickr.com | |
