Language Selection

English French German Italian Portuguese Spanish

IBM and Microsoft face WS-critics

Filed under
Misc

The title of the five-person panel debate at the Digital ID World conference was "Federated Standards: The State of Convergence". The answer, if there was one, was that there will be no broad convergence. Not any time soon, anyway.

The debate, which got quite heated, boiled down to people asking Microsoft and IBM to develop their WS- specs in the open, where any interested vendor can contribute, and Microsoft and IBM declining, saying such processes are not suitable.

"It's not necessarily the optimal process for everything," said John Shewchuk, chief technology officer of Microsoft's Distributed Systems Group. "What comes out at the end may not meet our technical objectives as a vendor."

For several years, Microsoft and IBM have been working on WS- specs, such as WS-Security and WS-Trust, to enable interoperable web services. While some other vendors help out, the process is strictly invitation-only.

When a spec is mostly finished, it is submitted to OASIS, Organization for the Advancement of Structured Information Standards, but sometimes it will conflict with work already done by others, and differences need to be ironed out.

Recently, for example, there was a clash within OASIS between the Oracle-Hitachi- Fujitsu WS-Reliability and the Microsoft-IBM-BEA-Tibco WS-Reliable Exchange. The two groups will reportedly work to converge them.

It gets more confusing in the digital identity space, where there's also the Liberty Alliance, which works on standard specifications for federating identities between domains, enabling single sign-on.

"Everybody has enough invested now that they can't just get up and walk away from it," said Intel's George Goodman, on the panel in his capacity as Liberty president. "It's hard to see convergence... at this point we have to focus on interoperability."

Developers expressed frustration that the companies creating the specs cannot come to an agreement on converging them, and are basically leaving it up to buyers to decide whether to implement one, the other, or both.

Full Story.

More in Tux Machines

Linux Graphics

  • Libinput X.Org Driver Updated For X.Org Server 1.19
    Peter Hutterer has announced the release of a new version of xf86-input-libinput, the X.Org DDX driver that makes use of libinput for input handling on the X.Org Server.
  • xf86-input-libinput 0.20.0
    Most important fix is the use of input_lock() instead of the old SIGIO stuff to handle the input thread in server 1.19.
  • Mesa 13.0 Planning For Release At End Of October, Might Include RADV Vulkan
    Following the mailing list talk over the past two days about doing the next Mesa release, plans are being discussed for releasing at the end of October and it might have just got a whole lot more exciting. Emil Velikov, Collabora developer and Mesa release manager for the past several release series, has commented on that previously discussed mailing list thread. He mentioned he was secretly waiting in hopes of seeing the RADV Radeon Vulkan driver merged for this next release! He said he'd even be willing to see it merged even if it's "not perfect/feature complete."

Security News

  • Don't Trust Consumer Routers
    Another example of why you shouldn’t trust consumer routers. d-link It isn’t just this specific d-link router. We’ve seen the same issues over and over and over with pretty much every non-enterprise vendor. Plus we don’t want our devices used by crackers to DDoS Brian Krebs anymore, right? We are Linux people. We CAN do this ourselves.
  • D-Link DWR-932 router is chock-full of security holes
    Security researcher Pierre Kim has unearthed a bucketload of vulnerabilities affecting the LTE router/portable wireless hotspot D-Link DWR-932. Among these are backdoor accounts, weak default PINs, and hardcoded passwords.
  • The Cost of Cyberattacks Is Less than You Might Think
    What's being left out of these costs are the externalities. Yes, the costs to a company of a cyberattack are low to them, but there are often substantial additional costs borne by other people. The way to look at this is not to conclude that cybersecurity isn't really a problem, but instead that there is a significant market failure that governments need to address.
  • NHS trusts are still using unsupported Windows XP PCs
    AT LEAST 42 National Health Service (NHS) trusts in the UK still run Microsoft's now-defunct Windows XP operating system. Motherboard filed Freedom of Information requests with more than 70 NHS hospital trusts asking how many Windows XP machines they use. 48 replied within the allotted time, and a whopping 42 of them admitted that they still use the operating system that reached end-of-life status in April 2014. Some of the culprits include East Sussex Healthcare, which has 413 Windows XP machines, Sheffield's Children's hospital with 1,290, and Guy's and St Thomas' NHS Trust in London with an insane 10,800 Windows XP-powered PCs. 23 replied to Motherboard's quizzing about whether they have an extended support agreement in place and, unsurprisingly, the majority said that they do not.

Games for GNU/Linux

Android Leftovers