Yahoo’s release of open access to its BBAuth authentication service (see also here and here) is a big step forward. It’s just the thing for many simple applications. It’s not as good as a user-controlled cross-provider identity scheme, but the emergence of a few real high-volume competing web services will help drive us there.
Archive for the ‘arch’ Category.
Jon Udell continues to look at various ways of interconnecting users, applications, and back-ends — only some of which have been explored yet.
I particularly like the idea of (having the option for) the user being in control of the back-end repositories, offering more freedom to retrieve their data unharmed and replace application components without necessarily being at the mercy of an application vendor.
The existence of cheap and presumed-reliable storage services such as
will cause a burst of innovation in personal and corporate storage options.
A particularly good fit: content-addressible storage schemes such as
that offer frugal use of bandwidth (important when metered), and attractive features like version snapshots “for free.”
A little searching shows one talented software developer thinking along these lines already:
“Brad Fitzpatrick: wsbackup — encrypted, over-the-net, multi-versioned backup.”
There will be more.
The policy ideally should be, I think, that all data in the Your Code block has to be known to be escaped or known to be unescaped. That is to say, you always do escaping on the data at the pointy end of the input arrows, or you never do it.
I think always-unescaped is a little better, since some of those output arrows might not be XML or HTML, but probably they all are; so always-escaped is certainly viable.
and then it gets worse, as treatment of HTML in RSS aggregators varies.
The same problem presents itself in cross-site scripting and code injection attacks.
It’s the bane of macro language beginners too, whether it’s shell or troff.
A press release (not included on this site) says that TeliaSonera, Ericsson, Radionet, and the Helsinki University of Technology have demonstrated a seamless handoff across commercial networks. The benefits they cite are absolutely the case: users want uninterrupted services and no monkeying around.
the article’s links
all point to Finnish-language web sites.
The article (by Glenn Fleishman) continues:
Interestingly, if you use NetMotion Wireless software, you can achieve most of this effect today. While you’re responsible as a user for changing your connectivity, the NetMotion client and server software maintain the persistent state of the Internet connection.
OK, everybody in the world is linking to it, so this isn’t new, but it’s a provocative note: Philip Greenspun’s Weblog: Java is the SUV of programming tools.
Make sure you
read the comments.