EASI ID (pt 1.5)
Posted by BPuhl on March 26, 2009
Question for you
You’re Jon Smith, and you signed up for the TAA.COM (Totally Awesome App) application when you worked at Contoso, it was free and let you store all of your client data. You signed up with the user name, JSmith@contoso.com. Good thing too, because when you quit working at Contoso years ago, you took your clients with you. Over the years, you either have never updated your login ID, or maybe the application won’t let you.
Now TAA.COM decides to break into the SaaS market by offering their totally awesome app to business customers, and Contoso signs up. Who gets to have the JSmith@contoso.com user name, you (by virtue of being first), or Jerry Smith, the current JSmith@contoso.com who was hired after you left?
Even though Contoso has federated, single sign-on authentication – does it matter?
I guess another way to put this, is does an individual own the usage rights to their email address forever, or does the company own their namespace and all resources (ie. names) within it? Worse case, what happens if Jerry signs in and see’s Jon’s information?