ClaimID

Last updated November 28, 2022

ClaimID was a website that allowed users to create unique profiles that showed personal websites, profiles at other sites, and other biographical information. The goal of ClaimID was to help users collect and screen information created about them and by them on the web, to help them manage their online identity.^[1]

History

ClaimID was founded by Terrell Russell and Fred Stutzman.^[2] Both Stutzman and Russell were PhD students at University of North Carolina's Chapel Hill School of Information and Library Science when they began the company.^[3]^[4]

There was facility to create OpenID along with creating a new account on ClaimID. By October 2013 this was not working.

In August 2007, Peter Saint-Andre submitted an Internet-Draft draft to the IETF defining the MicroID spec.^[5] MicroID was a deployed Internet standard designed for use as a lightweight, decentralized identity primitive in web applications and communities.^[6]

The official HTML metatag was created:

<metaname="microid"content="mailto+http:sha1:xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx"/>

The ClaimID was deactivated in December 2013.^[7] All member pages and authentication services as well as the main website were dismantled. Users can choose to use another OpenID provider, especially if previously having used authentication delegation.^[8] Users can also extract their link collection^[9] from an available web cache or web archive.

Importance

Both print and digital news outlets, including Businessweek , the San Francisco Chronicle , Reuters, New Scientist and Asian News International, described ClaimID as part of the online reputation management (ORM) movement.

Related Research Articles

The Dynamic Host Configuration Protocol (DHCP) is a network management protocol used on Internet Protocol (IP) networks for automatically assigning IP addresses and other communication parameters to devices connected to the network using a client–server architecture.

Electronic mail is a method of exchanging messages ("mail") between people using electronic devices. Email was thus conceived as the electronic (digital) version of, or counterpart to, mail, at a time when "mail" meant only physical mail. Email later became a ubiquitous communication medium, to the point that in current use, an email address is often treated as a basic and necessary part of many processes in business, commerce, government, education, entertainment, and other spheres of daily life in most countries. Email is the medium, and each message sent therewith is called an email.

In computer network engineering, an Internet Standard is a normative specification of a technology or methodology applicable to the Internet. Internet Standards are created and published by the Internet Engineering Task Force (IETF). They allow interoperation of hardware and software from different sources which allows internets to function. As the Internet became global, Internet Standards became the lingua franca of worldwide communications.

<span class="mw-page-title-main">World Wide Web</span> System of interlinked hypertext documents accessed over the Internet

The World Wide Web (WWW), commonly known as the Web, is an information system enabling documents and other web resources to be accessed over the Internet.

<span class="mw-page-title-main">Authentication</span> Act of proving an assertion, often the identity of a computer system user

Authentication is the act of proving an assertion, such as the identity of a computer system user. In contrast with identification, the act of indicating a person or thing's identity, authentication is the process of verifying that identity. It might involve validating personal identity documents, verifying the authenticity of a website with a digital certificate, determining the age of an artifact by carbon dating, or ensuring that a product or document is not counterfeit.

Transport Layer Security (TLS) is a cryptographic protocol designed to provide communications security over a computer network. The protocol is widely used in applications such as email, instant messaging, and voice over IP, but its use in securing HTTPS remains the most publicly visible.

Sender Policy Framework (SPF) is an email authentication method designed to detect forging sender addresses during the delivery of the email. SPF alone, though, is limited to detecting a forged sender claim in the envelope of the email, which is used when the mail gets bounced. Only in combination with DMARC can it be used to detect the forging of the visible sender in emails, a technique often used in phishing and email spam.

<span class="mw-page-title-main">Internet security</span> Branch of computer security

Internet security is a branch of computer security. It encompasses the Internet, browser security, web site security, and network security as it applies to other applications or operating systems as a whole. Its objective is to establish rules and measures to use against attacks over the Internet. The Internet is an inherently insecure channel for information exchange, with high risk of intrusion or fraud, such as phishing, online viruses, trojans, ransomware and worms.

Identity management (IdM), also known as identity and access management, is a framework of policies and technologies to ensure that the right users have the appropriate access to technology resources. IdM systems fall under the overarching umbrellas of IT security and data management. Identity and access management systems not only identify, authenticate, and control access for individuals who will be utilizing IT resources but also the hardware and applications employees need to access.

Email authentication, or validation, is a collection of techniques aimed at providing verifiable information about the origin of email messages by validating the domain ownership of any message transfer agents (MTA) who participated in transferring and possibly modifying a message.

A digital identity is information used by computer systems to represent an external agent – a person, organization, application, or device. Digital identities allow access to services provided with computers to be automated and make it possible for computers to mediate relationships.

OpenID is an open standard and decentralized authentication protocol promoted by the non-profit OpenID Foundation. It allows users to be authenticated by co-operating sites using a third-party identity provider (IDP) service, eliminating the need for webmasters to provide their own ad hoc login systems, and allowing users to log in to multiple unrelated websites without having to have a separate identity and password for each. Users create accounts by selecting an OpenID identity provider, and then use those accounts to sign on to any website that accepts OpenID authentication. Several large organizations either issue or accept OpenIDs on their websites.

HTTP cookies are small blocks of data created by a web server while a user is browsing a website and placed on the user's computer or other device by the user's web browser. Cookies are placed on the device used to access a website, and more than one cookie may be placed on a user's device during a session.

Electronic authentication is the process of establishing confidence in user identities electronically presented to an information system. Digital authentication, or e-authentication, may be used synonymously when referring to the authentication process that confirms or certifies a person's identity and works. When used in conjunction with an electronic signature, it can provide evidence of whether data received has been tampered with after being signed by its original sender. Electronic authentication can reduce the risk of fraud and identity theft by verifying that a person is who they say they are when performing transactions online.

OAuth is an open standard for access delegation, commonly used as a way for internet users to grant websites or applications access to their information on other websites but without giving them the passwords. This mechanism is used by companies such as Amazon, Google, Facebook, Microsoft, and Twitter to permit the users to share information about their accounts with third-party applications or websites.

Time-based one-time password (TOTP) is a computer algorithm that generates a one-time password (OTP) that uses the current time as a source of uniqueness. As an extension of the HMAC-based one-time password algorithm (HOTP), it has been adopted as Internet Engineering Task Force (IETF) standard RFC 6238.

A Microsoft account or MSA is a single sign-on Microsoft user account for Microsoft customers to log in to Microsoft services, devices running on one of Microsoft's current operating systems, and Microsoft application software.

User-Managed Access (UMA) is an OAuth-based access management protocol standard. Version 1.0 of the standard was approved by the Kantara Initiative on March 23, 2015.

JSON Web Token is a proposed Internet standard for creating data with optional signature and/or optional encryption whose payload holds JSON that asserts some number of claims. The tokens are signed either using a private secret or a public/private key.

Token Binding is a proposed standard for a Transport Layer Security (TLS) extension that aims to increase TLS security by using cryptographic certificates on both ends of the TLS connection. Current practice often depends on bearer tokens, which may be lost or stolen. Bearer tokens are also vulnerable to man-in-the-middle attacks or replay attacks. In contrast, bound tokens are established by a user agent that generates a private-public key pair per target server, providing the public key to the server, and thereafter proving possession of the corresponding private key on every TLS connection to the server.

References

↑ "The Times & The Sunday Times".
↑ "How to protect yourself from 'cyberspite'". Yahoo! India News. May 22, 2008. Archived from the original on October 13, 2008.
↑ Russell, Terrell; Stutzman, Frederic (2008-10-24). "Self-representation of online identity in collected hyperlinks". Proceedings of the American Society for Information Science and Technology. 44: 1–4. doi: 10.1002/meet.1450440375 .
↑ Morgan, Fiona (2007-02-28). "Fred Stutzman: Techie, researcher and co-founder of ClaimID".
↑ "MicroID submitted as IETF Internet Draft".
↑ "MicroID considered harmful (to privacy)" (PDF). 2008-06-20. Archived from the original (PDF) on 2016-03-04. Retrieved 2015-01-14.{{cite journal}}: Cite journal requires |journal= (help)
↑ "ClaimID.com" . Retrieved 12 December 2013. After 7 years, 6 months, and 20 days of service, ClaimID has ceased operations.
↑ "OpenID Authentication 1.1 specification, 3.1.1. Delegating Authentication" . Retrieved 14 December 2013.
↑ Purra, Joel. "ClaimID.com dump data and link extraction" . Retrieved 14 December 2013.

External links

Official website

This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.

[1] "The Times & The Sunday Times".

[2] "How to protect yourself from 'cyberspite'". Yahoo! India News. May 22, 2008. Archived from the original on October 13, 2008.

[selfrepresentation-3] Russell, Terrell; Stutzman, Frederic (2008-10-24). "Self-representation of online identity in collected hyperlinks". Proceedings of the American Society for Information Science and Technology. 44: 1–4. doi: 10.1002/meet.1450440375 .

[4] Morgan, Fiona (2007-02-28). "Fred Stutzman: Techie, researcher and co-founder of ClaimID".

[ietf-5] "MicroID submitted as IETF Internet Draft".

[6] "MicroID considered harmful (to privacy)" (PDF). 2008-06-20. Archived from the original (PDF) on 2016-03-04. Retrieved 2015-01-14.{{cite journal}}: Cite journal requires |journal= (help)

[7] "ClaimID.com" . Retrieved 12 December 2013. After 7 years, 6 months, and 20 days of service, ClaimID has ceased operations.

[8] "OpenID Authentication 1.1 specification, 3.1.1. Delegating Authentication" . Retrieved 14 December 2013.

[9] Purra, Joel. "ClaimID.com dump data and link extraction" . Retrieved 14 December 2013.

[1]

[2]

[3]

[4]

[5]

[6]

[7]

[8]

[9]