The Digital Amusement Network

Our imagination becomes your reality.

What this is all about | Site features | Past ideas | Who's currently involved

DA contains factual, fictional, and theoretical content. It's all about creating good ideas and building upon them. DA proposes an idea, members and users alike build upon them, and someone steals the idea. You could be that someone. That's the point, do something useful with a good idea.

The first new feature to the interactive section. Be forewarned, you may not catch the suttle assault of humor right away...
DA INSIDE
Forums
FAQ
Crackhead
Rant
Interactive
Random
What?
GET OUTSIDE
What's going on?
Distractions
Friends of DA




DA NEWS
 WED 11-27-2002 3PM
I'm in a bit of a jam and I need your help.
DIGITAL
Virtual identity in a real and virtual world
 By Tadau
Would you feel special if you were the one and only "1337 h4x0r"? Maybe you could use your alias to sign documents legally? In a this new virtual world called the internet, it seems like the smart thing to have - a binding, unique, alias.



The person wishing to use their unique alias in a real world environment can authenticate at an authorized user interface device (UID). The registered server then validates the unique alias with the central database. From the UID, the person then can access various services they've subcribed to that the UID supports.
How does it work?

Unique aliases, or virtual identities, would be a very beneficial tool to those that use it. The purpose of a unique virtual identity would be defeated if you had claimed a unique alias on one server, but on another server somebody else had already claimed that alias. What we will do then is use something similar to a DNS registrar - a central database of unique aliases. To take advantage of you having your own unique alias, you would have registered the unique alias with the central alias database. Unique aliases are case insensitive. The site/server/application/etc you are communicating with queries the alias database upon your logging in to a user interface device. You provide a key/password, authenticate as your alias, and voila - unique identity anywhere.

In order for this to work, the alias database must be in a central location, always be available, be secure and provide secure data transmission, and provide a means of authentication for not only the user, but for the server sending the query. End users do not directly authenticate to this mysterious "server in the sky" - to gain access to the alias database, you must have registered with the central location which hosts the alias database as a server wishing to authenticate users. To be fair to the host of the database, the host database should be able to charge a very reasonable fee for this access. I'm talking as low as a cents to a few bucks a month, if even that. The potential for an alias database is very high so there should be enough people jumping on the bandwagon right away helping to cover costs associated with hardware, maintenance, bandwidth, and other expenses.


DNS registrar type control

If there has been one thing learned from Network Solutions/Verisign (the controllers of the .com domain) is that a central database can easily become a victim of greed, thus creating a monopoly over the database. Since the unique aliases can become legally binding, it may be feasible for the government to control the central location and regulate a potential monopoly rather than allow one corporation controlling it. Either way, the database must remain open and secure, and absolutely not allowed in any form to be given or sold to a third party.

There are abuse issues that will need to be dealt with. Ensuring a unique alias is not hijacked, a similar method to SSL/HTTPS is used. When you go to a secure website (take a deep breath) there is a certificate of authority which uses a method of encryption and registration to communicate and validate the sites' information as a secure transmission from you to them, and them to you. In case of central database unavailability, the server/application may allow local logins for special circumstances, but not without making it very apparent that connectivity to the database has been lost. There may be an array of central database servers similar to the array of DNS root servers, where all central database servers mirror each others database; each server sequentially prioritized so the first server is almost always authoritive for alias queries.

Don't forget. First come, first served, first owned. Do you want to be known as Mr. Microsoft, moneyman, or FuCkWaD_the_TiSsUeMaKeR? You may.


Versatility

When a server becomes a registered server, it becomes a trusted source - meaning you expect to send the registered server your information in exchange for the security of having a unique alias. The unique alias is not just limited to the web, it can be used in real world environments.

Here's where Microsoft's new handwriting recognition technology comes into play. Signing your name under your unique alias? Convert your scribble to legible ASCII text. Don't want to use a weak password for your unique alias? How about a key, like a credit card swipe. In case of world adoption of unique aliases, unicode will become a player meaning a LOT more text characters to recognize. Ouch!

Unique aliases also hold potential to create a new market for services. These services would change how business and certain communications are handled, somewhat like how email has become a primary communication medium.


Useful purposes

Suppose a service comes along, boasting virtual credit card storage. Instead of having to carry all of your credit cards around, you carry your one keycard containing access to your unique alias. Then, say you are at a restaurant. Make your payment by using this storage service and accessing your unique alias through them, then choose what credit card you wish to use for the situation, and go. Done. Doesn't that sound tasty?

A unique alias can be construed as a vanity plate social security number. To the stiff minded, this whole idea sounds silly. However, the unique alias being a virtual SSN is not that far from the truth. The difference is that you control how your unique alias is used. The concept is intended for being completely digital, so don't expect to find a "unique alias" line on the next paper form you fill out.

Start the trend: "what's your U-A?" Maybe another service allows a buddy-list of sorts in which you can communicate with other people's aliases using yet another service for sending and receiving information. On that particular service, there is a definitive source and destination of communication with transmissions between aliases. An implicit deny all communications unless individually specified would always be in effect. No need for this type of service to become another marketer/spam paradise.

Integrating this kind of communication into cellular phone or portable devices could be useful. Again, deny all communications unless specified. i.e. that doesn't mean being sneaky and creating "do you want to do this" popup boxes.

Another use may be IRC chatrooms that allow only unique aliases. The list goes on.


Didn't Microsoft already try to do this

"Alex, what is Passport, for 300". No. Again, we have a monopolistic control of a central database, and theirs isn't even secure. There are some additional problems. The biggest problem being the source or registered server may keep demographic data on the usage of your UA (unique alias). So what can you do about it? Nothing. Do you think your social security number doesn't get tracked whenever possible? Really, it's tough luck and something you will have to deal with. Having an implicit deny all communications and keeping your UA secure whenever possible will assist in protecting you from the marketing nazis. But just as everything else, whatever you do will become a statistic. Have a sucks donut.

Another company trying to do the same is Oracle. Oracle is a huge database company, with CEO Larry Ellison second in available funds only to Bill Gates. Recently, Oracle was in talks with the United States government to use a new ID system, whereas instead of state IDs or drivers licenses, there is one ID for all states. That proposition failed, which we should all probably be happy for. What we don't need for this situation is a for-profit opportunity having almost total control of our most critical information. The services can be for-profit, the machine in the sky that runs it can not.


Let's be social

It's doubtful that anyone would verbally refer to alias names. UA's are great for online identity. Internet celebrities may be born. Already, there are big names out there recognized far and wide, be it hackers, website operators, clan members, etc. To hold that identity solely is to be born and live digitally.



References:
DNS - Domain Name System and how it works
Network Solutions/Verisign - domain registrar
SSL/HTTPS - Secure Socket Layers, Hyper Text Transport Protocol (secure)
Microsoft - WinXP Handheld Tablet PC with handwriting recognition
Oracle - huge database corporation



INTERACTIVE FEEDBACK
Spawn an idea based on this one | Rate this idea | Submit links, references, and related material | Idea comments

<-- previous idea (The rebirth of the arcade) next idea (State of Affairs) -->
 
  realtime worthiness
   Users rating

Rating submission and graph statistics (you vote here!)
Refresh for updated graph
Total current votes:

Remember, vote again as often as you want, and keep up with the Flack to make your decision!

colaborated bred ideas
 Spawned material

None yet - spawn an idea!


sources beyond the original
 Links / Related material

Nothing submitted yet - add related material here!


talk the talk
 Comments

No comments yet - spurt your worth!



d i g i t a l   a m u s e m e n t   2 0 0 2