FOAF and OpenID: two great tastes that taste great together

Submitted by connolly on Wed, 2007-10-24 23:00. :: | |

As Simon Willison notes, OpenID solves the identity problem, not the trust problem. Meanwhile, FOAF and RDF are potential solutions to lots of problems but not yet actual solutions to very many. I think they go together like peanut butter and chocolate, creating a deliciously practical testbed for our Policy Aware Web research.

Our struggle to build a community is fairly typical:

In Dec 2006, Ryan did a Drupal upgrade that included OpenID support, but that only held the spammers back for a couple weeks. Meanwhile, Six Apart is Opening the Social Graph:

 

... if you manage a social networking service, we strongly encourage you to embrace OpenID, hCard XFN, FOAF and the other open standards around data portability.

With that in mind, a suggestion to outsource to a centralized commercial blog spam filtering service seemed like a step in the wrong direction; we are the Decentralized Information Group after all; time to eat our own cooking!

The policy we have working right now is, roughly: you can comment on our blog if you're a friend of a friend of a member of the group.

In more detail, you can comment on our blog if:

  1. You can show ownership of a web page via the OpenID protocol.
  2. That web page is related by the foaf:openid property to a foaf:Person, and
  3. That foaf:Person is
    1. listed as a member of the DIG group in http://dig.csail.mit.edu/data, or
    2. related to a dig member by one or two foaf:knows links.

The implementation has two components so far:

  • an enhancement to drupal's OpenID support to check a whitelist
  • a FOAF crawler that generates a whitelist periodically

We're looking into policies such as You can comment if you're in a class taught by a DIG group member, but there are challenges reconciling policies protecting privacy of MIT students with this approach.

We're also interested in federating with other communities. The Advogato community is particuarly interesting because

  1. The DIG group is pretty into Open Source, the core value of advogato.
  2. Advogato's trust metric is designed to be robust in the face of spammers and seems to work well in practice.

So I'd like to be able to say You can comment on our blog if you're certified Journeyer or above in the Advogato community. Advogato has been exporting basic foaf:name and foaf:knows data since a Feb 2007 update, but they didn't export the results of the trust metric computation in RDF.

Asking for that data in RDF has been on my todo list for months, but when Sean Palmer found out about this OpenID and FOAF stuff, he sent an enhancement request, and Steven Rainwater joined the #swig channel to let us alpha test it in no time. Sean also did a nice write-up.

This is a perfect example of the sort of integration of statistical methods into the Semantic Web that we have been talking about as far back as our DAML proposal in 2000:

Some of these systems use relatively simple and straightforward manipulation of well-characterized data, such as an access control system. Others, such as search engines, use wildly heuristic manipulations to reach less clearly justified but often extremely useful conclusions. In order to achieve its potential, the Semantic Web must provide a common interchange language bridging these diverse systems. Like HTML, the Semantic Web language should be basic enough that it does not impose an undue burden on the simplest web software systems, but powerful enough to allow more sophisticated components to use it to advantage as well.

Now we just have to enhance our crawler to get that data or otherwise integrate it with the drupal whitelist. (I'm particularly interested in using GRDDL to get FOAF data right from the OpenID page; stay tuned for more on that.) And I guess we need Advogato to provide a user interface for foaf:openid support... or maybe links to supplementary FOAF files via rdfs:seeAlso or owl:sameAs.
connolly's blog | login to post comments

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.
Cool, I logged in
Submitted by http://openid.s... (OpenID: http://openid.sun.com/bblfish) on Wed, 2007-12-12 16:08.
Cool I logged into this using my openid.
 

But did I get to log into this because someone from dig has me in his foaf file, and I logged in via the OpenId listed in my foaf file ?  It would be nice if the magic were shown, so that people could feel the power of the network. :-)

Ok. So I suppose I am in there from my foaf file because I get the following output:

hjs@bblfish:3$ curl http://dig.csail.mit.edu/auth/breadcrumbs | grep bblfish
 
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100  2141  100  2141    0     0   1166      0  0:00:01  0:00:01 --:--:-- 32062 
http://bblfish.videntity.org/
http://myopenlink.net/dataspace/bblfish
http://openid.sun.com/bblfish

 Make the magic a little more explicity!

 Also since a foaf file is used, the service should not have to ask me for my name or email address. It's all in the foaf file!

 Otherwise this is very neat :-) 

login to post comments
FOAF wiki now openid-extended MediaWiki
Submitted by http://danbri.org/ (OpenID: http://danbri.org/) on Thu, 2007-11-01 10:12.

With some nudging from TimBL, the FOAF wiki is back from beyond the grave :)

It's moved from MoinMoin to MediaWiki, and has Evan Prodromou's OpenID extension, plus spam-filter and capcha extensions, which I might be able to disable if OpenID plus social network approach works out.

Is the DIG whitelist of OpenIDs available publically somewhere? "We're also interested in federating with other communities" sounds worth following up. Also if these communities share common interests, it might be fun to autogenerate a config file for a Planet-style blog aggregator.

Hidden inside my Wordpress blog is a list of OpenIDs from comments I've accepted. I should figure out a way to export them...

Re the FOAF wiki, if folk here could try it out with OpenIDs that'd be great. I think the support is a bit more robust than last time I tried it, but it hasn't been heavily tested in this installation yet.

login to post comments
that sound really
Submitted by http://myopenli... (OpenID: http://myopenlink.net/dataspace/kidehen) on Sun, 2008-01-27 11:10.

that sound really interesting. Currently I am working on a Dutch Learning Community called LeerWiki. It is based on the MediaWiki platform.

Unfortunately I've been having a lot of SPAM lately and I already installed a Captcha spam filter. I am very willing to move over to an OpenId extension. In that way only members of the community will be accepted. I think it is a good technique to only accept members who are part of a community with proof of trusted contacts.

I will look onto the FOAF wiki.

regards

 

login to post comments
current DIG whitelist
Submitted by connolly (OpenID: http://www.w3.org/People/Connolly/) on Fri, 2007-11-02 10:58.
our whitelist currently lives at http://dig.csail.mit.edu/auth/breadcrumbs ; I'm not sure how stable that address is. We do intend to make it public, but we're noodling on adding names and homepages, using turtle or csv... etc.
login to post comments
Nice post
Submitted by http://www.w3.o... (OpenID: http://www.w3.org/People/Berners-Lee/) on Sun, 2007-10-28 13:34.

We could do with picking up full names from the FOAF files in the process, I think, as they are in the trust path and they would make the user interface more readable.

 

login to post comments
related work
Submitted by connolly (OpenID: http://www.w3.org/People/Connolly/) on Fri, 2007-10-26 19:04.

I forgot to work in related work that TimBL told me about:

login to post comments