We need a spectrum
The problem with a recent piece by Stefan Brands is that it misses the whole point about why OpenID is of interest.
The problem with a recent piece by Stefan Brands is that it misses the whole point about why OpenID is of interest.
What matters is the account, not the credential…
The new CardSpace protocol pattern functions like a lock with three tumblers.
Microsoft's Open Specification Promise documentation set has been augmented with new material essential for smooth multi-vendor (or multi-project) interoperability.
Rex says Facebook is a sandbox he's playing in — but it has a long way to go before it can hope to be the world he lives in.
I agree with Mathew that requiring use of SSL and PKI is overkill for the type of blogging and hobbyist use cases he describes. This is fixed in CardSpace 1.1
Redirection protocols provide much greater visibility of the IP onto the RPs than was the case with X.509. While useful in some use cases, other protocol patterns provide less linkage between parties
Irving Reid says the identity provider sees *a lot* of information, but it’s far from “everythingâ€.
Eric Norman argues that the effort required for identity conspirators to collude would act as a deterrent to the formation of such conspiracies.
Jeff calls information cards “holder-of-key style authentication that can be used by itself or in conjunction with password based authentication to dramatically improve the security of the authentication process…: