For some of our projects here at the TLC, we need to be able to manage identity information - traditionally, user accounts, groups, roles, etc... We're taking a bit of time to think about a better way of implementing this, and how to use a flexible, distributed identity model.
I've been going through some web searches to find out what others are doing. The "version numbers" are loosely based on Dick Hardt's descriptions (with apologies to him if I've misinterpreted what he was trying to say).
"Identity 1.0"
"Identity 1.5"
- federated/centralized repositories - institutional and trusted shared directories...
- SunOne Access Manager and SSO (and some Identity Management whitepapers from Sun)
- Liberty Alliance
- SAML (and OpenSAML)
- Shibboleth (implements OASIS SAML 1.1)
"Identity 2.0"
- distributed repositories
- Sxip (Simple eXtensible Identity Protocol)
- OpenID - distributed identity tied to services that respond to URLs
- LID (Lightweight IDentity) (wiki)
- Infocard (more info) (part of Vista/WinFX)
- Credentica
Any glaring omissions? I'll be editing this post as I go along (I've got the info in our TLC wiki, but that's behind an Identity 1.0 login)