Tim Bray Now Working on Identity at Google

Tim Bray:

Iā€™ve beĀ­come fasĀ­ciĀ­nated by the tech and polĀ­icy and deĀ­velĀ­oper isĀ­sues around OAuth, and two things seem obĀ­viĀ­ous to me:

  • UserĀ­names and passĀ­words genĀ­erĀ­ally suck and obĀ­viĀ­ously donā€™t scale to the InĀ­terĀ­net, so we need to do away with ā€™em soonĀ­est.

  • The new techĀ­nolĀ­ogy comĀ­ing down the pipe, OAuth 2 and friends, is way too hard for deĀ­velĀ­opĀ­ers; there need to be betĀ­ter tools and serĀ­vices if weā€™re going to make this whole InĀ­terĀ­net thing smoother and safer.

No doubt in my mind that this is one of the big problems to be solved for the industry over the next decade, and Bray’s two-point bullet list is exactly right: the username/password solution is bad for users in numerous ways, but whatever eventually replaces it needs to be easy for developers.

ā˜… Friday, 29 June 2012