With all the online mobile devices it is indeed a very interesting addition.
On thing that I think would make it *a lot more secure* ;-) is using a hash as an ID instead of the actorid. (just like google does) This would require an additional field in the identity system I think
The usecases are nice btw, especially the pooled assignment stuff.
I'll see if I can get it to work on my Nokia N95 and/or iPod Touch.
Yes, the security still needs to be bought in line with the RFCs at a minimum. Interesting idea about the hash ids.
Let us know how you get on with the mobile devices.