http://www.identityblog.com/?p=691 Digital Identity And Our Future Tue, 07 Sep 2010 07:24:43 +0000 http://wordpress.org/?v=2.5.1 http://www.identityblog.com/?p=691#comment-2715 Praveen Alavilli Wed, 21 Feb 2007 11:51:49 +0000 http://www.identityblog.com/?p=691#comment-2715 Unfortunately in OpenID any IDP (OP) can track the user's movements in cyberspace unlike in Cardspace where the RP can opt to not identify itself to the IDP. (Kim, please correct me if I am wrong - can the user opt to not provide the RP info to his IDP ? ) Even with OpenID2.0 the user can opt to hide his true identity at the RP and ask for an anonymous id to be returned to the RP. But still the OP knows where the user is going. This problem is nothing specific to AOL - please forget the unfortunately done past mistakes. This is where we are eagerly waiting to see how the Cardspace can help OpenID in these security and privacy aspects. Unfortunately in OpenID any IDP (OP) can track the user’s movements in cyberspace unlike in Cardspace where the RP can opt to not identify itself to the IDP. (Kim, please correct me if I am wrong - can the user opt to not provide the RP info to his IDP ? )
Even with OpenID2.0 the user can opt to hide his true identity at the RP and ask for an anonymous id to be returned to the RP. But still the OP knows where the user is going. This problem is nothing specific to AOL - please forget the unfortunately done past mistakes.
This is where we are eagerly waiting to see how the Cardspace can help OpenID in these security and privacy aspects.

]]> http://www.identityblog.com/?p=691#comment-2714 Eric Norman Wed, 21 Feb 2007 00:34:40 +0000 http://www.identityblog.com/?p=691#comment-2714 Wouldn't it be a violation of law 3 to encourage all those folks to use their AOL OpenID? AOL would be able to track their movements in cyberspace, wouldn't they? Wouldn’t it be a violation of law 3 to encourage all those folks to use their AOL OpenID? AOL would be able to track their movements in cyberspace, wouldn’t they?

]]>