Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
×
Privacy

A Universal Roaming Profile? 295

Arnaud Sahuguet asks: "I have a cell-phone with my phone book, a PDA with my calendar info and my address book. I have my home desktop bookmarks, my work desktop bookmarks, my laptop bookmarks, my PDA bookmarks, etc. They are all mine, but somehow they are not, because they live in different networks (or on the same network but with different operators).Everybody keeps talking about convergence, but I don't see any convergence on the user profile front (data that matters to me). Microsoft is pushing for .NET MyServices, Sun et al. are pushing for Liberty Alliance, Apple is pushing for .Mac. Is it the right way to go?" One of the large major issues surrounding such a system would be implementing it in a way where the user can control the flow of data: where it is stored, when a certain piece of data can be sent, and who is allowed to get it. Sounds like a fine idea to me, what do you all think?

"As a user:

  • would you be willing to have your personal profile information stored on the network?
  • who would you trust? Your bank, your ISP, your cell phone provider, your company, the EFF, no one but you?
  • what kind of guarantees would you require?
I have been struggling with this idea for a while and the best solution I can see is to reuse the Napster paradigm for my generic user profile infrastructure (let's call it GUPster).

Napster is (I should say was) a community of users willing to share MP3 music files, administered by a central server managing meta-data about users and files. I don't know what the exact goal was, but I can see it as a way to free ourselves from the music industry monopoly.

GUPster would be a community of network entities (e.g. servers at Yahoo!, server at SprintPCS, servers at my university, my home machine, etc.) willing to share standardized user profile components, administered conceptually by a central server managing meta-data about entities and components. The goal is to create synergies between network components in order to deploy value added services for the user. (Since I am working for the telecom industry, the goal is to make network operators happy by making end users happier.)

Just like in Napster, my user profile information will be distributed but the meta-data will be centralized (at least from a logical point of view) at the GUPster server. This way, I can decide that my credit card information will be stored at my bank, my calendar information on my Yahoo! account, my game scores on the Sony web site, etc. Network components storing my profile information will have to support the right set of interfaces and protocol and will register to the server the pieces of my profile they are storing.

Note: I will be the one deciding who stores what. Think of it as like moving to a new place. You can choose your electricity, gas, phone, cable and Internet providers.

Applications willing to access any of this information will talk to the GUPster server. And just like Napster, the server will not return data, but referrals (i.e. where this information can be found).

Unlike Napster, the central server will also enforce some access control policies defined by the user (let's call them my 'privacy shield'). If the request for user profile information is not OK (e.g. nobody can access my presence information after 9pm), the returned referral is empty.

Does it sound crazy?"
This discussion has been archived. No new comments can be posted.

A Universal Roaming Profile?

Comments Filter:
  • heheh (Score:4, Funny)

    by IIRCAFAIKIANAL ( 572786 ) on Thursday September 19, 2002 @05:42PM (#4293350) Journal
    Microsoft Passport?

    *ducks*
    • That's exactly what this is supposed to be.. LOL..

      'Cept for the 'Trust Microsoft' part.
      • Re:heheh (Score:2, Offtopic)

        by WEFUNK ( 471506 )
        'Cept for the 'Trust Microsoft' part.

        This may be a little off topic, but perhaps relevant to the discussion of trust: Have you noticed the NASDAQ 100 commercials with Steve Ballmer etc. Not bad ads but they finish with the words "NASDAQ 100: Trust Companies". Very big brother sounding and rather poorly timed with all the scandals. There needs to be some level of trust in order to implement a universal roaming profile and I wish companies would try the approach of earning trust rather than expecting to convince people with half-assed and rather condescending slogans like this.
  • Honestly... (Score:5, Insightful)

    by intermodal ( 534361 ) on Thursday September 19, 2002 @05:44PM (#4293360) Homepage Journal
    do you really think we want to trust someone else with that information? and if we did, would it be a commercial interest? I lied on my profiles from the time I got my first Hotmail acount more than half a decade ago. And I've seen more problems with companies having people's information than i care to count since then. So I don't see anyone with a background in information security or an idea of what goes on with that information, particularly those of us who are paranoid, as liking this concept one bit, regardless of who controls it.
    • A better solution (Score:4, Interesting)

      by plover ( 150551 ) on Thursday September 19, 2002 @06:06PM (#4293525) Homepage Journal
      In order to achieve the service you're looking for, you're saying all programs and devices will need to implement some common "standard universal interface" to this kind of data, be it XML or whatever. Your proposal is for a Central Repository Server, which is the stated goal of Microsoft's Passport or .NET services.

      A better solution than storing it on someone else's server would be to make the interface synchronizable between platforms.

      I'd keep a copy on my work desktop. I'd sync my home PC and my work PC over the internet (using VPN or SSL, of course.) I'd HotSync it to my PalmOS device. My Palm could Bluetooth it to my phone. My phone could GPRS it to my car's phone. My wife could sync the "Family" category on her Palm to the "Family" category on my Visor.

      PalmOS does this sort of thing now with the HotSync program, but only in the limited "Handheld -- Palm Desktop -- Outlook" chain. With a robust protocol (almost certainly XML) and a strong standards committee this should not be an insurmountable task.

      • Re:A better solution (Score:2, Informative)

        by r3tro ( 307019 )
        www.syncml.org

        XML-based, designed for n:m devices:servers, strong industry support, but not yet any consumer products i know of, and i cannot find any open source implementations. The standard is out now for almost 2 years....

        --
        cu
        Sebastian
        • vcards. Of course! (You'll forgive me if I celebrate my duh! moment with a small slap to my forehead.)

          And now that you mention it, that must be how my phone SMSs "calendar" events around.

          Thanks for the link!

    • what it comes down to is if you can make money

      boils down to if the retailers will accept it, not the consumers
      this will only happen if you cant cheat them because after all they dont want to lose money because the system is insecure

      visa cards are after all very insecure but reatilers put up with them because they make them money

      the key is retailers and they are not about to sign up to a insecure system just to get ripped off

      regards

      John Jones

      p.s. Visa are in http://www.projectliberty.org [projectliberty.org] and are not in the habit of throwing money away or doing it for the good of mankind
    • You don't have to trust the network. Just click on "access from public machine" and then simply scan the barcode tattooed on your forehead each time you want to log in. Sure, forehead scanning is a PITA, but it beats having all your data available to the Forces of Evil.
      • Re:Honestly... (Score:2, Interesting)

        Yup... no way in hell will I ever go for Liberty or Passport. They're _reducing_ your security. Having more than one signon is of higher security, even if many people have the same passwords for each site. Why? Because the bad person trying to get your data has to know what sites you have data on, and what aliases you go by, which might not be that easy to figure out. Throw in at least a few different passwords, and it would be quite difficult to gather all of someone's information.

        With a single signon service, you're throwing all your eggs in one basket (didn't your mother tell you that was bad?). If someone knows your username/password, they've got access to _everything_. No thanks, and pass the potatoes would ya?

        Besides, ever get on bad terms with a merchant and want to cut all ties with them? What if they required access to your single signon area? Good luck cutting them off. I've had my share of loser companies charge me many months after terminating service after repeated attempts by me to fix the problem. Imagine if they had all that info, too. Scoundrels.
  • danger? (Score:3, Insightful)

    by kg439. ( 609744 ) <emailkgNO@SPAMfastmail.fm> on Thursday September 19, 2002 @05:48PM (#4293394)
    what about when this profile gets accessed by someone else? someone is bound to figure out how to spoof usernames and get another user's profile, giving them full access to all your information! now doesnt that sound like fun? it takes identity theft to a new level when your entire identity is on a network.
  • With some storage space for any type of files that I want to push onto the server. I don't know if such a service is out there, but I'd use it is they were cheap enough.
    • Replied too fast after only reading the abstract of the article. I'm not interested in sharing all of my data like on Napster. I just want some storage space on a server, with the option of sharing some of the files through some webpages.
      • This is what I think is a much better solution. If you have any "public" storage, like a website from your school or ISP, where you have some kind of read/write, password protected access, then you could store all this information in an encrypted form. If it was standardized, somehow (read html, write ftp), in a format like xml or something, then most applications could easily take advantage of it.

        The drawback is requiring net connectivity, most people are still on dial-up, but then they would have much less a need for this sort of thing.
  • by garcia ( 6573 ) on Thursday September 19, 2002 @05:49PM (#4293398)
    hell I don't even trust my own bookmarks on my own computer.

    Girlfriend: Bill, why do you have two more links listed under Porn?

    Bill: Uhh, I have always had those, they are there just for laughs.

    Girlfriend: Bill, what a bunch of crap.

    Bill: Actually, they are full of great sites.
    • This is actually a good point. Maintaining favorites on an individual computer. I really hate how browsers tend to manage my "favorites" etc. I'd prefer to either have a global favorites which I can update from anywhere, and retrieve with a password - and which nukes when I logoff.

      Maybe I'll make an app for this and sync it on my webserver. Email me (email link on website) if anyone is interested in the finished project, or helping me work in it (making it cross-platform,etc). Area management would be nice too, so that "global" groups are loaded from anywhere, but some do/don't when at work, etc.

      (so that "porn" doesn't load at work, yes) - phorm
    • Why are you dating a girlfriend who doesn't like porn?
    • The Real Problem (Score:3, Insightful)

      by zpengo ( 99887 )
      The real problem with these roaming, universal profiles is that when someone gets your password, they have your password for EVERYTHING. Mail, finances, medical, whatever. It's *very* easy to trick people into filling out a bogus form that captures their logins and passwords.

      Would you have your house, your car, your office, and your secret cash box all use the same key? It's all very convenient until someone else finds the key....

  • XNS (Score:2, Informative)

    by glenstar ( 569572 )
    You are looking for something like XNS. There is a company called OneName in Seattle that is working on a solution to do exactly what you want.
  • How about just exporting everything to .txt and sending those files to HOTMAIL or another free web based email server. That way all your #s, people, things, etc are at your fingertips no matter where you are as long as you have access to the Internet.
    Or if you lose your palm on a trip you could buy another at some store and update it nearly immediately.

    Just a thought.
  • Seriously now (Score:5, Insightful)

    by IIRCAFAIKIANAL ( 572786 ) on Thursday September 19, 2002 @05:50PM (#4293404) Journal
    Nobody here will trust the government to setup a universal ID card - why on earth would we want a full profile, ready and waiting to be hacked?

    Even the idea of what you are suggesting (info on the Internet) scares the shit out of me.

    Now, on the other hand, a profile based on a physical item (ie/ a cd, datacard, etc) might be a nice idea. Just plug it into your PDA, cell phone, laptop, pc, etc.

    Of course, considering how much information about me is sent across the Internet, maybe it's time to just give up privacy.

    If we have to do that, let's at least all go nudist. That might be a fair trade off then...
    • but thers 2 probs with this:
      1. lose the card/cd/etc and you are entirely screwed
      2. it would require all phones, pdas, computers, etc to be redesigned/updated to include the reader/writer component - not an easy or cheap thing to do across the board
  • by sielwolf ( 246764 ) on Thursday September 19, 2002 @05:51PM (#4293408) Homepage Journal
    It's called my brain. Seriously though, I follow the philosophy of "A chain is only as strong as its weakest link." Distribution of resources (with no central access) limits the damage of a single weak link.

    Of course, though, if I was interested in a central system, why not something implemented with a directory service (e-Directory or AD)? A nice little certification architecture for a multi-tiered privilege structure? I'd put my faith in NDS before a lot of the other products mentioned.
  • Who would I trust? (Score:1, Interesting)

    by Anonymous Coward
    Without considerable redefinition of privacy and substantial limitations on business re-use of such: nobody but me.
  • Phooey... (Score:1, Insightful)

    by Anonymous Coward
    A universal roaming profile? Isn't that what personal electronic devices (said: notebooks) are for?
  • What we need... (Score:3, Informative)

    by rant-mode-on ( 512772 ) on Thursday September 19, 2002 @05:52PM (#4293418) Homepage
    ... is an open source (preferably) suite that I can run on my PC at home, where I can decide the access controls, and have complete control privacy policy. Ok, so this requires a permanent connection, but that's becoming more and more available all the time.
  • Yahoo (Score:3, Insightful)

    by NineNine ( 235196 ) on Thursday September 19, 2002 @05:53PM (#4293421)
    I'm not all paranoid about privacy. I think that convenience is more important than any information people my glean from me ("He drinks PBR! We've got him now"). So, that being said, I think that so far, Yahoo does one of the best jobs of any kind of convergence. While it's not open, they've got enough services where you really can start to integrate. You can sync your Yahoo mail with any mail client, you can store your browser bookmarks there, files, notes, etc. You can get all of your Yahoo info already personalized in a Sprint phone. You can take care of scheduling with your Yahoo, your cell phone, or even text messaging to almost any device. It's not perfect, but it's the best I've seen. I'm even willing to buy some of their upgrades (premium mail, for example).
  • Check out SyncML. (Score:3, Informative)

    by Anonymous Coward on Thursday September 19, 2002 @05:53PM (#4293425)
    What you are looking for is a synchronization system (ie. SyncML). Passport and Liberty alliance only store authentication credentials and some basic profile info (ie. your contact info and optionally your credit card info for purchases.) SyncML.org has created an open standard for synchronization of PIM data so that you can have access to all of your contacts, appointments, tasks, bookmarks, etc from any devices or computers you sync with.
  • Take it with you! (Score:5, Interesting)

    by Trinition ( 114758 ) on Thursday September 19, 2002 @05:55PM (#4293439) Homepage
    A co-worker and I just discussed this very thing yesterday! However, we defaulted to a hardware device that you would carry with you (quite possibly a PDA), then when you log into a machine, would have your preferences wirelessly available. Not just a desktop, but your cell phoen could wirelessly use teh address book for making calls, etc. I personally like the hardware solution best because then no one owns the cetral store of your personal data & preferences but you.

    But, hardware or software, the only way this would be useful is if there was a standard for these major classes of data so multiple devices and applications could read, and in some case modify, the data. Your cell phone might not only want to use your existing numbers,but add a number when you receive a call from a never-before-seen number.

    Who would make such standards? Surely Microsoft could give it a stab, and then extend it beyond usefulness. Maybe some of the existing standards are good enough, or could be extended (vCard, vCal, etc.).

    Probably all just a pipe dream anyways.
    • we defaulted to a hardware device that you would carry with you (quite possibly a PDA), then when you log into a machine, would have your preferences wirelessly available. Not just a desktop, but your cell phoen could wirelessly use teh address book for making calls, etc. I personally like the hardware solution best because then no one owns the cetral store of your personal data & preferences but you.

      Like you can trust your machine at work! Where I work we click through the most outrageous agreements before we log in to the NT network. Essentialy all our data is our boss's, no personal use, that kind of thing.

      Surely Microsoft could give it a stab, and then extend it beyond usefulness.

      Most things Microsoft does are beyond usefulness and into rapicious. Have you read your EULA? Neither has my boss, or he would have realized that M$ owns all the data he thinks he owns.

      All my information is available through ssh and ftp. Sensitive stuff gets no where near a computer at work, regardless of protocal.

  • I had to go shave my bed. I go kind of nuts when
    I hear or read corporate buzzwords.

    -Dirkr
    Eat wet cement, get stoned.
  • by BlueLines ( 24753 ) <slashdot@divisio ... m ['nby' in gap]> on Thursday September 19, 2002 @05:56PM (#4293452) Homepage
    with netscape 4.x (dunno about mozilla), you could store a roaming profile in an ldap db. then you could log in with navigator from wherever and instantly have your addressbook / bookmarks / preferences / mail settings magically load up. i have seen it work, and it was pretty sweet.

    -BlueLines
    • Mozilla (as of version 1.0.1, 1.1 and 1.2 alpha) does not yet support roaming, unfortunately.

      I used it with Netscape 4.x at work and at my home, and it was very practical (sorry, my online dictionary page is currently down:-P)

      It is amazing how comfortable such a "simple" solution can be. StarOffice founder Börries has a new company http://www.verdisoft.com which wants to provide unified device/software configuration.

      They use SyncML, and SyncML is IMHO the protocol of choice for this goal, supported by many vendors, but i cannot see mass products since almost 2 years. and: unfortunately there is not yet an open source implementation :-(

      I think central device and software configuration and management is the next big thing. Think of the millions of poor users today who have to keep their workstations, laptops, cell phones, pda's and frigerators on sync :-)

      --
      cu
      Sebastian
  • No need for trust (Score:5, Insightful)

    by yamla ( 136560 ) <chris@@@hypocrite...org> on Thursday September 19, 2002 @05:56PM (#4293453)

    There's no need for trust. Store my data on your server but store it encrypted. Only I have the decryption key. Everything I send to you and receive from you is encrypted. You are just providing the storage (and possibly I am paying you for this service).

    Now, I don't need to trust you. I, of course, do have to trust my local machine and I have to trust the client I use to access my files. But I do not need to trust you.

    • That's no good. This way you'd have to download all the data on every device every time there's a change. You can't search encrypted data, you can't update encrypted data and you can't delta sync encrypted data. I for one wouldn't what to download my entire address book (at cell phone rates) every time I needed to lookup a number on my phone.
      • What? The information on your local computer isn't encrypted. So do the deltas on your local computer, send those. Treat the remote storage as multiple data blocks.
      • Two words: translucent databases

        You don't need to encrypt the whole database at once: that's a concept years out-of-date for the reasons you mention. You encrypt the URL, and nothing more.

        If you have a multi-user sytem, it's even easier. You just store the URL plaintext, and use MD5(Your name/your password/bookmark number) as the key-field. Nobody can then relate any record to any other, and only someone with your name/password can scan the bookmark numbers to do the search.

  • USB Keychain drives. 128MB, on a key chain. You can encrypt sensitive stuff, put programs on it, put your book marks, e-mail, etc on it, and it follows you wherever you go.

    Why store it on someone else's network?
    • Damn! You stole my answer!

      Seriously, this is a great idea but for two things: 1) Cellphones don't have USB ports, and 2) With few exceptions, PDAs don't have host USB ports.

      There are work-arounds, of course: You can upload the info to both the PDA and phone with appropriate connection hardware/software. But you'll still need a way (perl scripts?) to translate the data from some central format to the target software's preferred format.

      Business plan:
      1) Work out a solution for all the above.
      2) Make it work with every PDA, cellphone, browser, email reader, etc. -- and continue to support it as those all change (tracking cellphones alone will keep you busy).
      3) Package it up so any bozo can use it.
      4) Profit!

  • Now you have a single point of compromise for someone to gain access to you and all things that matter to you. Do you really want to do that?
  • Ok this is what I wanna see.... Every computer, PDA, cellphone, laptop, etc have fingerprint scanners. You turn them on and w/ your fingerprint you login your profile is pulled from a secure server over the net. This contains your info and profile... This is info is held in ram on the computer in a secure way and email clients, web browsers, im clients, etc.. all have plugins to use this info. Anyone see a problem with this and why it could not be made possible in the future?
  • Not sure if this is really the same you are talking about (I'm having a sleepless night and haven't really taken the trouble to read your post), but I think the main issue with roaming profiles is lack of standards.

    First of all there's the filesystem (how to actually get to the profile). NFS seems to be the UNIX standard, whereas Samba (AKA CIFS) is pushed by MicroSoft. Then there's the whole set of alternatives that claim to be better, but for the most part are in too early stage of development. Names that spring to mind are Coda, AFS, and Dav. And there's the standard Internet protocols HTTP and FTP. Or maybe just rsync will do the trick?

    Secondly, there's the format of the data itself. So you have your contact list. It has names, email addresses, phone numbers, and whatnot. So what file format are they stored in? Palm? MicroSoft? Plain text? XML? MySQL?

    Etc. etc. The nice thing about standards...
  • You start your post talking about Bookmarks, Phone Numbers, Calendar etc. This is information you want to access from anywhere. Real easy: agree standard XML formats, trusted authentication services, and security protocols. Whammo-bammo you can access your bookmarks from anywhere using pure XML and a password.

    But then you start talking about banking and privacy and trusted companies. This is totally different, it's information you want others to access from anywhere; and the security model wouldn't be remotely similar. Which are you talking about?

    Your GUPster idea is also fatally flawed because you're talking technology -- same thing as Microsoft and Sun and Apple. Talk standards and maybe you'll get somewhere. Anyone can come up with a technology to do this, but it's only in getting people to agree that you'll come up with anything decent.

  • ...but I just carry a floppy disk around with a few text-files on it. A HTML bookmark page can be viewed on pretty much anything if you stick to HTML standards and don't use any dumb formatting.

    I'm considering buying one of these [thinkgeek.com]. I'm a bit worried about the software requirements, though ("Requires Windows 98, ME 2000, Mac OS 8.6 or greater"; I guess my Linux box is greater...). They look like a nifty way to carry my stuff around with me. Until I lose it :-)

    --Jon

  • Bookmarksync [bookmarksync.com] will take care of your bookmarks for Winboxen. You can use it to access bookmarks from work via web, add bookmarks from work via web, download your bookmarks locally to any computer, and sync bookmarks between Netscape v4.x to IE. Its not free, but it works.

    JOhn
  • I would suggest looking closer at the Liberty Alliance Project. Most of the comments on this topic so far have expressed disaproval of Passport and projects like it. The Liberty Alliance Project is not like that in any respect. It is a set of rules and XML Schema that basically create a situation, for the purposes of authentication only, no user info is passed between sites, making universal signon easy and safer.-Ryan
  • P3P (Score:3, Informative)

    by 0x0d0a ( 568518 ) on Thursday September 19, 2002 @06:05PM (#4293513) Journal
    Take a look [w3.org]. This is the first of open standards to control information about yourself.
  • A: adj. The end-all be-all of human existence, usually emphasized by its combination with an expletive; See The Shit; See The Bomb

    "Fuckin' A, brother!! The Jive Page be the shit and then some on the receipt!"

  • Flash disks seem to go by various names (also "thumb drives", "pen drives", etc.). I am talking about those 128 MByte flash memories with a USB connection that you carry on a keychain.

    While your cell phone probably does not have a USB port, most other gadgets do.

    Carrying your information with you would seem to mitigate the security concerns of keeping a central network-based repository.

    Has anyone tried to put their email, bookmarks, contact info, etc. on a flash drive and use it across the various devices in their lives? My life is, as usual, a little more complicated since I run multiple OSes & apps, but it still seems feasible.

  • by Kunta Kinte ( 323399 ) on Thursday September 19, 2002 @06:12PM (#4293559) Journal

    The poster illustrates the problem with examples such as bookmarks and address books ( which is a different problem than what liberty et. al tries to solve I believe) . These kinds of information can already be kept in an LDAP server and most applications can store and retrieve these from those servers. Outlook does it, mozilla does, ximian does it.

    LDAP address book support is relatively mature in most email readers. Check out OpenLDAP [openldap.org] for more info.

    Single sign-on can also be done via LDAP. Or Kerberos/LDAP if you're so inclined. Netscape NTSych product, the Psynch® [psynch.com] product, etc. can be used to sych NT or win2k with an external database. Check out projects such as pgina [plu.edu]. There's a free general purpose NT password sync dll available from AcctSync [sf.net]. This DLL is nice, you can catch user passwords and pass them to an arbituary script with the username. This could be a perl script that updates LDAP to a vbscript that updates the coresponding Oracle user, it doesn't matter.

    Also, it's simple to store public certs in an ldap server, making it easier to deploy PKI on a budget ( you don't want to know how much netscape and novell charges for this per user, trust me :)

    In short, a lot of your problems can be solved right now by running a LDAP server and configuring your applications to rely on it for their datastore. Good luck.

    • by rixster ( 249481 ) on Thursday September 19, 2002 @06:33PM (#4293684) Journal
      Gotta agree with the LDAP thing. I use to spend hours trying to sync and keep everything in check. Now I have an LDAP database which I can access from the web (via www.horde.org [horde.org]) which integrates with my email (horde again) and also any other imap4 clients I use, like my Mac or PC, or even my Psion now they've finally bought out network drivers for it.
      I wrote a coupla noddy data entry screens as well for the ldap server so I can add anybodies email / phone number via a few web pages, I can dump it out as a text format for easy backup (it's human readable too). The only thing I haven't done it figure out how to write WAP pages in a syncML kinda way to replicate back to my mobile - if anyones's done that, I'd appreciate some links.

      Bottom line: Go LDAP / IMAP4 for all your email and address and weblink needs. It's a real existing support protocol that just about all clients have to support. I grant you setting it up is a bit of a bitch, but when it's working you'll never figure out why you had so many other disparate data stores again. Promise !!

  • Just use a keydisk and rsync. Or make the keydisk your home directory altogether. Is this so hard? Ok, maybe difficult in windoze, but is *anything* easy in that environment?

    I don't bother with full profiles, but I use rsync on a daily basis to sync my home jukebox with my libretto along with a few other things (I also keep my ssh private and public keys on the keydisk, never storing the private keys on a hard disk). .config files in a *nix environment are beautiful. Too bad most windoze proggies have no clue about multi-user environments.

  • Consider storing data using servers local to your Internet provider (or company). This data could either be placed in LDAP-style servers, or in XML over HTTP. A mechanism could be designed whereby you establish your identity using your e-mail address (e.g. joe@example.com), name servers query ns.example.com for information about this service (using SRV records perhaps).

    So when you get a new cell phone, you'd tell it your e-mail address, and maybe given it a password, and it'd go fetch the information about you and store it into the phone, perhaps refresing it at intervals (or for every session).

    When 3rd parties query this server for information about you, they do so over a two-way authenticated SSL session. You either arrange in advance, or in response to the request, to allow these bits of data to be accessible to the requestor. Maybe exchange P3P-style policies first.

    You could implement this in HTTP by storing different "units" of information in XML under different URI's, and apply different ACL protection over each URI. You could either explicitly whitelist certificates beforehand, or use a combination of certifiate + a password that the 3rd party provider passes through to pull the requested data.

    Updates could be handled in a similar fashion. If you trust a 3rd party to update certain information on your behalf, perhaps using your own SSL certificate, you could let that happen too.

    Just some thoughts..
  • by Dylan Tynan ( 74383 ) on Thursday September 19, 2002 @06:21PM (#4293616)
    Back in Netscape 4.x days I had my netscape profile roaming across three home computers, and several computers at work. It worked great. You could select certain items to roam ... for example, the actual browser preferences file, calendar entries, bookmarks, cookies, etc. I think it might have even let you roam certificates (but maybe not).

    I use Mozilla now and I didn't see the roaming functionality in there on a quick check ... probably in NS 7 though.

    You could setup to Roam and store your info in either an LDAP database or on an HTTP server (much easier). You could then use SSL for those of you that are concerned with security to roam. Whenever you exited the browser, if you'd changed something (for example, new bookmark), it would update the central profile location with the new files. Nice feature, there were a couple of point releases where it would get confused and you'd wipe out your bookmarks on one system, but that was not a concern since you ended up with copies of everything on multiple computers.

    Note that Netscape's roaming support extended to Unix systems too. It was sweet. Too bad Microsoft's browser monopoly killed it off. We won't see real innovation like that anymore ... instead just MS-bastardized standards designed to get you to purchase more of their software so that it will work together (hah).

    A lot of you said people wouldn't store their profile info on someone else's network. Most people would though. Most of you store your email on other people's network right now. In this case, I was using my own colocated server and also ran an IMAP server on it to keep my mail in sync.

    The biggest problem they had w/roaming was the lack of documentation. You can go back into newsgroup archives and occasionally run across some poor soul trying to figure out what you had to do on the server. Once setup, though, it worked great.

    Good to see that we're now going to try and reinvent the wheel. Of course, this wheel will only work with a Microsoft axle, transmission, engine, and body, and it will cost you every time it turns.
  • Each device needs to be able to access what you store transparantly to make things easy. What can a Palm read as an address book?

    My first suggestion would be set up your own server -- something cheap, because you won't need a lot of horsepower. Then, install OpenLDAP and use that for storing everything. This is what LDAP is for.

    LDAP can be also tunneled thru SSL for devices that support it.

    I'm in the middle of installing LDAP services for a big telco who is using it to store the roaming profiles of their new 3G wireless service users. Authentication is thru a RADIUS server tied into the LDAP server. (No, open source software is NOT used, but it could be on your part.)
    • That's exactly the problem. LDAP is great, but my cellphone can't use it, which is where I need it.
      What I used to wind up doing was printing out my address book in *really* small type and folding it up in my wallet. Worked well enough until I got a palm pilot. Now I just keep that up to date. For anything else, I can usually just SSH home and open up Mozilla or whatever forwarding X and grab what I need. I do the same with email - my work email is only read from one program and I ssh in to the office if I need to access it.
      Cheers,
      Jim
  • I want ubiquitous storage with strong encryption. By ubiquitous storage, I mean that I want the storage accessible by all of my devices; my various computers, PDAs, cell phones, set top boxes, TiVo units and everything else.

    I want each of the above devices to be able to read/write a common format so I can share my various profiles phonebooks and calendars and they are all different views into the same large database.

    I also want each of these devices to be able to use the same strong encryption algorithm. The encryption is performed at the application level within the device. That is, when a device writes a record, the record is encrypted, then sent to the central repository where it is stored in its encrypted form.

    I believe that in this way, I can have ubiquitous access to my data, shares across multiple devices without requiring me to hand over my data to a trusted third party. All I need is a ubiquitous third party. I provide the trust using strong encryption and good keys.

    -tpg
  • Bad Idea (Score:2, Insightful)

    by Mysticweed ( 593354 )
    This is a bad idea all around, just ask .mac users :P
    Do you really want to put yourself in a position to have your data taken hostage. And can they really guarantee privacy or does private just mean that it is protected from hackers, but they and the law enforcement can access it anytime?
    I'd much rather see a sync over the internet from my systems to my systems using a pgp key.
  • "Note: I will be the one deciding who stores what. Think of it as like moving to a new place. You can choose your electricity, gas, phone, cable and Internet providers.""

    kinda, the thing thats wrong with this is that an apartment is stationary. You do not get charged on *your* power bill when you go watch tv at your parents house. Or pay on your internet bill when you use some other machine to check email.
  • Wasn't this proposed several years ago, that everybody carry around a Smartcard with your security information and desktop environment? Unforunately, smartcard readers don't seem to have become ubiquitous in all computing devices. Still think it's a good idea, though. Functionally equivalent to the tiny USB disk drives, but smaller/cheaper/less memory.
  • I had this problem when I originally started having more than one computer, or started spending a lot of time at different computers. That's when I came up with a solution that has worked great for me.

    I made one web page that looked nice with a set of nicely organized links that my wife and I use most often. It's got all the important links to place I visit on a weekly/daily basis, for shopping, banks, etc... Then wherever I go, I just make that my homepage and instantly I'm in a familiar environment that will take me wherever I need to go.

    I still use bookmarks for something I find interesting, or something I only rarely visit. And if I need to remember what that is when I'm away, I can just telnet to my box at home, find the file mozilla uses to store my bookmarks and get it that way. Between those two methods, I've never needed a bookmark I couldn't get.

    • Just a word of caution if you use a "personal homepage" to do this.

      Remember that the HTTP referrer header that is written to the web logs of sites you visit will reveal your "personal homepage" URL, so be careful if you store other information (such as friends email addresses or contact numbers etc.)
  • The obvious answer to this, is to load a unix on everything, and share your home directory via NFS to all of these things, or perhaps a secure version.

    Honestly, think of it. A minimalistic NFS with a bit more bandwidth and you have it.
  • The answer isn't to store your personal information somewhere new, but store it where you store it already - in your wallet. With flash cards and plug-in flash readers and the increased proliferation of USB buses, one would think it wouldn't be too big of a deal to sit down at your computer or open up your PDA, slide in your flash or whatever card, and have your preferences loaded, or when you leave, saved. If you're willing to have all the information you already do in your wallet, there's certainly no reason not to put the same information on a password-protected, access-location-limitted smart card in your wallet. You could even go so far as to have your card double as your car key.
  • Seriously, this is (IMHO) the perfect opportunity for another nice and easy application of strong cryptography. The idea is you want to store your own bookmarks, address book, and all sorts of personal information. And you want to be able to access it anywhere, right? So why not just store it somewhere reasonably decentralized (maybe a few redundant server farms) as a block of data encrypted with a symmetric algorithm? It wouldn't be more than maybe a couple of megs at the absolute MOST (that's a TON of addresses). I'd pay a few bucks a month for that service. In a sense, I already do, as I store a copy of my bookmarks, address books, and more on my Apple .mac iDisk in an encrypted disk image.

    You're the only one who ever needs your own personal information, right? So this way you don't have to trust anyone with it. Your Mozilla will pull the block from the server, decrypt it with your pass phrase, and load it into the application. You'll could keep it locally cached if you like.

    It doesn't require any new technology. The data could be served up by web servers. The back-end databases would use the usual replication and high-availability stuff.

    If you could build it so Mozilla, Evolution, KMail, and all sorts of other applications can load the block or blocks (just an HTTP GET), decrypt (via the OpenSSL libraries), and parse (XML), you're done. When you make a change, you push the new versions back to the server.

    The weak link, as usual, is the strength of the passwords.
  • Jabber (Score:3, Informative)

    by infiniti99 ( 219973 ) <justin@affinix.com> on Thursday September 19, 2002 @06:55PM (#4293796) Homepage
    To an extent, Jabber already supports "roaming profiles" with your IM, through the use of a server-side contact list, and even any transports you might be using (AIM, ICQ, etc), along with their login info. This is more of a single-signon type thing, but it is along the same lines as a roaming profile.

    But this could be taken much farther. The current protocol already offers arbitrary data storage on the server, and it could be beefed up if necessary (that's the wonderful part about an extensible protocol).

    So then in your web browser (or in some global location on your OS), you could enter:

    myusername@my-own-domain-nyah.com

    and a password, and the browser could retrieve the necessary bookmarks and other data. And all of your data is safe at your-own-domain-nyah.com, instead of Microsoft HQ.

    That pretty much covers all the bases. Time to hack this out.

    -Justin
  • The PDA and the modern cell phones are designed to "sync" your data with your computer.
    If we'd lived in an open standards world there'd be half a dozen plug ins for sending the data to and from your cell phone and/or PDA every time you sync up.
    If managers didn't get paranoid becouse of a tech story on CNN (If your not able to check up on the story report every rummor... this is for tech and medical news alike.. swap storys with your doctor with the PS that passes for news)

    Just sync your PDA and cell phone with your computer and you'll have nothing more than multi-redundent copys of the same data with no need to worry.

    I like this anyway. I keep all my important files on my PDA and computer even if my PDA can't use em just to have a redundent copy.
    (and then back up)

    Muahahaha...
  • Universal desktop (Score:3, Interesting)

    by PhotoGuy ( 189467 ) on Thursday September 19, 2002 @07:04PM (#4293842) Homepage
    Exciting concept, the universal desktop. Sun had something called the WebTop they were pitching at one point (iPlanet, I think), which *looked* pretty exciting. Supposedly all Sun employees could just go to any SSL enabled browser, use their little handheld key generator thingy, authenticate themselves, and have access to a full virtual desktop with all the apps they could need, their intranet access, and so on and so forth.

    Sounded good. I tried a demo of iPlanet a year or so ago, I couldn't get it working; *way* to complicated and fragmented. And I haven't heard much of Sun employees using it.

    I have dreamed of a portable virtual desktop for years. Unfortunately, it doesn't exist yet; but for each specific application, there are some solutions (and some general solutinos). The best I have come up with is the following arrangement:

    • Use IMAP for mail. This lets you get at the same set of folders, no matter where you are. If you're on a different laptop, desktop, or PDA, banging in the server name and username/password is pretty quick, for getting at your email stored centrally.

    • For web browsing, you really don't need to do much specially, since it's fairly stateless to start with. I have on my own personal web server, a list of links of stuff I use frequently, which is a good common jumping off point that I can access from anywhere, authenticated via SSL. There may be automated tools for this type of thing, I don't know.

    • For general central application access, use VNC [att.com] VNC for remote desktop access; there are clients available for a wide variety of platforms, and source available. Sort of portable PC-Anywhere; not quite as efficient, but pretty good.


    A little rough around the edges, but 90% of what I do (and probably 98% of what typical users do) revolves around email, the web, and a couple of specific applications, it goes a long way towards the ultimate solution, which hopefully will be available some day.

    The true solution to this is a unversal open *protocol* for applications. IMAP lets universal email be *very* portable. There is no equivalent for calendaring. This is no equivalent for TODO lists. There is no equivalent for most other important applications. If there were, then mutliple vendors could implement it on different platforms, giving true portability.

    Until this happens, there will be fragmented proprietary solutions, which by definition, will not be the universal solution. Sigh.

  • Why don't we pay say $50 to FSF for them to host my data forever? For that money they would store my bookmarks, my address list, etc etc etc, and I would get it from their servers once or twice a day.

    That way we could sponsor them, which is good, and I also think we could all trust them.

    Mats
  • Every device should store all user data (like you mentioned) in XML. Have a standard for the way things are written in the XML, and then every device has controls for what parts of the XML can be released (credit card number when you say so) and what can not (pin numbers, private bookmarks, whatever).

    Keep it simple, keep it text (XML) and that's that. The problem is that every company wants to be the only company who works with their own stuff. Look at the hoars at Sony that butcher FireWire and their MemoryShaft^H^H^H^H^HStick. Look at MS and their protocals (MS-TCPIP, MSXML, MSHTML, MSJava!).

    The answer is simple. Text. XML. The problem is the corporate hoars behind the product.

  • Hell I'm just waiting for someone to (re)invent a centralized bookmarks/cookies database for web browsing. I use Konq, Mozilla, and Lynx across two Linux machines, and Chimera, OmniWeb, and Lynx on a Mac OS X machine. I want them to share cookies, bookmarks, and wherever possible, auto form fill-ins, cookie blocking preferences, etc. Right now, I have one be the "master" browser (konq) and a bunch of homemade scripts duplicate the data on demand. How awful! What if I'm on Chimera and I want to add a bookmark?

    I remember Netscape's roaming profiles but who knows where that is now. And I hear a future version of Mac OS X is going to use LDAP heavily throughout (dropping NetInfo), but that's uncertain. I think OmniWeb on OS X lets you use an arbitrary URL for your bookmarks file (but I haven't tried it, and it's probably read-only).

    Maybe now that the browser wars seem to be starting up again, someone will think this through. I definitely DON'T want it on somebody else's machine, I just want to click a "share with other browsers" button somewhere on my own machine(s), and I want it to work across architectures and browsers.

  • ...but iSync [apple.com] offers the convergence, allowing syncing of contacts and calendar information between a Sony Erickson phone, Palm, and iPod (which can hold contacts) in conjunction with Mac OS X Jaguar's iCal and Address Book.

    (dot)Mac is merely an Internet-based services package. It's useful, but not wholly collaborative.

    I'm sure that Windows developers can generate something for themselves, but I bet the Linux/OSS group can figure out a similar tool faster since Mac OS X is just a BSD variant.

    I don't think I like the idea of storing my personal data on networks that Apple or Microsoft create, but iSync wouldn't be a problem with me since the data remains local to my devices.
  • Netscape used to have something on their website, where you could store your bookmarks and address book, and then import them into any Netscape running on any other computer. It was totally cross-platform and everything. I used it to sync my address books between my Linux and Windows machines- way easier and more reliable than exporting/importing database files. Microsoft also had this for Outlook users.

    All this is good, but what would be most useful is a cross-platorrm, cross-browser, cross-everything standard for bookmarks and address books.
  • I have struggled with this same problem in the past. Especially when I had a desktop computer at work. All my data was split between several places, and multiple computers at each place.

    Getting a laptop helped with having my files available wherever I am. But, I still use multiple systems, so keeping all my data on my laptop wasn't good enough. The best solution for me was to keep everything in a network accessible location.

    For some, a My Yahoo! account might be good enough. Online e-mail, address book, notes, pictures, bookmarks, all www accessible. But, only somewhat configurable, advertising based, and limited to what they implement.

    I have instead centralized my data on my Linux server, which is remotely accessible via my DSL connection.

    Some simple PHP scripts, and a MySQL back end make a great searchable bookmark storage. A WWW frontend to a calendaring system also stored in MySQL. WWW/PHP accessible e-mail accounts (with Spam Assassin filtering out the garbage, and the ability to create many e-mail addresses - one for each service I sign up for, so I can determine who gives my address to spammers), To-Do list in PHP/MySQL. Files could be centrally accessible via Samba or HTTP.

    Add a firewall to control access, and VPN if you're really ambitious,and it works like a charm.

    The only time I don't have my data is when I have no net access (which is becoming increasingly rare). For those occasions, I need to improve my data synch-ing processes for my Zaurus.
  • Shameless Plug (Score:3, Interesting)

    by mcrbids ( 148650 ) on Thursday September 19, 2002 @11:04PM (#4295023) Journal
    If you look at our website [effortlessis.com] you'll find a web-based Contact Manager software accessable from (virtually) all the devices you mentioned above.

    It's tested with Konqueror, IE, and Mozilla, and is known to work with a number of Palm-based devices, including the Handspring Treo cellular phone. /Shameless Plug
  • The way things seem to be working out is that you end up being able to synchronize pairs of devices (not all pairs, but at least a spanning tree). That way, you don't need a centralized server. You configure what goes where for each pair. Some of those synchronizations happen automatically when devices are within range of each other (phone to PDA), others happen over the Internet.

    That, rather than the Soviet-style centralized identity management that Microsoft and Sun envision, is likely to be how identity information gets passed around: from a variety of source on a variety of devices.

  • by tthomas48 ( 180798 ) on Thursday September 19, 2002 @11:20PM (#4295097)
    The easiest way to do this is to run a website on your how server. Slap on SSL and you're pretty much good to go. I have:

    Centralized Webmail

    Centralized Calendaring that I can share with my wife and theater company

    Steaming Music that is granted by music profile, so I only share my music with people whom I would normally loan CDs to.

    Centralized bookmarks with a convienant javascript link in my toolbar to add sites at home and at work.

    The question is why did I have to develop this myself. I think this is the future. Why not take the idea of one of those router/webserver/firewalls a step further and make an all in one information box. You plug it into the network. You patch it. Why doesn't this exist?
  • I heard it got dropped [slashdot.org]
  • by Animats ( 122034 ) on Thursday September 19, 2002 @11:34PM (#4295161) Homepage
    Even without the privacy implications, there's the problem of applications making incompatible changes to shared data. Mozilla and Netscape can't even share preferences properly. And look at the mess called the Windows Registry.

    Database people do this sort of thing all the time, by making the data superior to the application and forcing apps to work through a very rigid interface. The way to do this is probably to store the preferences in a relational database. Those things are well understood, scale up, and can be replicated. Apps would get to the database via SQL, as usual. It's not the latest buzzword-compliant technology, but it's well-understood.

  • In college I used to keep a Zip disk with me that had a mail client that left the mail on the POP server (Eudora) - you could also use IMAP for that. It also had a browser and a regularly updated set of bookmarks.

    As others have pointed out, USB pocket drives are also a solution.

    If nothing else, a 1.4 meg floppy is pretty universally accepted and can easily store more bookmarks than any normal person has.

    These solutions are a little more difficult to work with than simply logging onto a server, but do allow for more security. Netscape, at least, allows you to find a profile on start-up.

    The only question is if all version of Netscape will read different profiles (will the Mac version read one written in Windows)
  • XNS (Score:3, Informative)

    by JohnsonWax ( 195390 ) on Thursday September 19, 2002 @11:54PM (#4295222)
    I'm surprised that /. isn't all over this...

    Check out http://www.xns.org

    "XNS is an open, XML-based protocol for identifying and linking any resource participating in any kind of digital transaction. You'll find the complete technical specifications on this site.

    XNS provides a flexible, interoperable method for establishing and maintaining persistent digital identities and relationships between these identities. The protocol provides services for registering and resolving identity addresses, defining and managing XML identity documents, conducting and protecting identity transactions, and linking and synchronizing identity attributes."

    Basically, store what you want, where you want, in an open format. As a public trust organization, they don't store your identity, they only proxy it. Store it with MS, with Apple, with your work, at home.
  • Leave it to nerds to bicker over a problem that country music has already solved. The song you want is called "God is my Palm Pilot".

    Can't recall who sang it though. Let me check with my personal organizer, and I'll get back to you.
  • I appreciate your desire for being able to centralize all your data, but I'm afraid in the real world, it doesn't work like we might like.

    So, in my attempts to centralize all my data, I used Netscape 4.5+'s Roaming profiles, along with a website that provided roaming-profile service for free (hey, it's only a few kb for each user, why not a free service?)

    So, this worked fine from my home system... It would save the settings, and I'd just have to type in my password when I opened Netscape for the first time.

    So, then I try it from work... It's a bit of a hassle because I have to got to the commandline, then launch netscape with a commandline option, then type in all the account settings (server, path, type, username, password) each time I was going to use a browser... You never know when you're going to want to bookmark something.

    So, then I check my e-mail! Of course my service was pop3, so it would only exist on the machine where I had downloaded it, so there were serious problems there. Even with the option to keep the message on the server, there was a serious ammount of inconsistency...

    Additionally, because of the firewall settings, I had to use a different SMTP server when I was at work, than I used at home. So, the roaming profile didn't work too well if I wanted to reply at work, but I could at least read it in my spare time, and reply when I got home right?

    So I found an IMAP e-mail service, and began using that. It was much less reliable, had a smaller quota, etc. Did I mention that IMAP was blocked by our firewall? So no roaming e-mail for me.

    We're just getting started. After using the roaming profile server for a few week, I opened a sub-folder of my bookmarks to discover a bookmark called "Transfer Interupted"... I realized that upon one of the sync attempts, the bookmarks were half-transfered, when the connection dropped. The server and Netscape didn't complain, so that corrupted copy was then synced up, and eventually overwrote all my backup copies (I had apparently been using the corrupt bookmarks for some time).

    Then the next problem came along... Mozilla was not going to include roaming profile support. So even if I had wanted to continue, I couldn't.

    So, my solution was simply to send copies of all my reasonable important data to my home server on a weekly basis (from my workstation at work, from my handheld, etc). When there is a problem, it isn't too much of a hassle to copy it back manually.

    First you need to force each company to use the same format for all the settings that matter. Then you need to make it forward compatible, so things you can't even imagine right now, can be accomodated as needed. Then you need some way to automatically keep all the devices in sync (a server) that everyone will be happy to all use.

    Some times you just have to do these things manually.

    Of course, don't quite understand what you want, or why you want it.
  • If the information would be encrypted on the servers, and only readable by me on my devices (with the right certificate), I could probably use such a service.
  • Well I guess what yer asking for is Easier then World Peace :)
  • Well, at least not anytime soon. Trust me. I'm in the sync business. The solution is to have a multipoint sync feature that allows all your 'devices' to sync to a central point. Where that central point is should not matter. Trust your ISP? Host it there. Trust Yahoo!? Leave it there. Want to stick it on your home network? No problem.

    The next problem is getting the devices to talk with each other in a standard langauge...but that is not going to happen. you have to have an engine that can translate between the different devices. Take recurring appointments. Palm can handle certain features, Lotus Notes others and Outllok still others. What happens when you try and keep them all in sync? You have to allow for all the different capabilities. Not easy.

    Then you have supported platforms. Just how many contact lists do you keep? For me I have the following...Palm, PocketPC, SyncML Phone, Outlook, Yahoo!, Hotmail, Evolution. That's seven different places to keep in sync. Then there are the bookmarks. I use Mozilla, IE, PocketIE, Konqueror and AvanteGo on several machines. I have bookmarks scattered about all of them.

    Then there is filtering. Do you really need all of that information on one device? No. I only want my personal stuff on my home PC but both on my work PC. /b

    PS: When I say device I mean a data point. I.e Outlook is a device Lotus Notes is one, A Palm is one, etc.

    PPS: If someone says just stick it all online and access when you need it; Wake up. When you are 100 miles from the nearest cell tower and you don't have coverage...thats when you want access the data that you have only stored online.
  • by arestivo ( 459117 )

    You can find a list of web based bookmarking systems here [webwizards.net].
  • This is a protocol for storing application configurations centrally. All you need to do is get your cellphone and PDA companies to support it. Hmm yeah. Not sure what the status of the project is at the moment though. Google for it, or read this white paper [cmu.edu].
  • One of the large major issues surrounding such a system would be implementing it in a way where the user can control the flow of data: where it is stored, when a certain piece of data can be sent, and who is allowed to get it.

    First you should solve the problem with Slashdot, which does not allow you to delete your account [slashdot.org] for example - and does not even mention this during the registration process. Next time when you decide to accept a submission related to YRO [slashdot.org], first fix your own violations.

  • by vrmlguy ( 120854 ) <samwyse@nOSPAM.gmail.com> on Friday September 20, 2002 @03:32PM (#4299683) Homepage Journal
    I've already seem dozens of posts from people who apparently completely misunderstood the proposal. This is not yet another place where your personal info will be stored, this is a directory to keep track of where your personal info is stored. It isn't doring data, but pointers to data.

    For instance, lets say that I want your medical records. I would go to the central registry and make a request. The central registry would reply that the information is stored at, say, the Mayo Clinic. I would still have to go there and jump through whatever hoops they present to actually get the data.

    The definite good thing about this is that if you decide that you don't want to use the Mayo Clinic for some reason (poor security policies, impersonal staff, whatever), then you can designate John Hopkins, and future requests will be transparently routed there instead.

    The potentially good thing is that the central redirector could implement its own security policies. For example, medical info requests should only be forwarded if they come from someone with a certificate signed by an appropriate authority (i.e. ama-assn.org and/or amerchiro.org).

    The process would work a lot like DNS. In fact, I don't see any reason why the central server couldn't be distributed in a manner similar to DNS servers.

"The great question... which I have not been able to answer... is, `What does woman want?'" -- Sigmund Freud

Working...