So on March 18th 2006 I posted More hardy pioneers try out InfoCard<\/a>, showing the first few people to give it all a whirl.<\/p>\n At first I thought my draconian “InfoCard-Only” approach would get\u00a0a lot of\u00a0peoples’ hackles up and only last a few weeks.\u00a0 But\u00a0over time\u00a0more and more people seemed to be subscribing – probably because\u00a0Identityblog was one of the few sites that actually used InfoCards in production.\u00a0 And I never had spam again.<\/p>\n How many people joined using InfoCards?\u00a0 Today I looked at my user list (see the screenshot below with PII fuzzed out).\u00a0\u00a0The answer:\u00a02958 people\u00a0successfully subscribed and passed email verification.\u00a0 There were then over 23,000 successful audited logins.\u00a0\u00a0Not\u00a0very many for a commercial site, but\u00a0not bad for\u00a0a technical blog.<\/p>\n Of course, as we all know, the\u00a0powers at\u00a0the large commercial sites have preferred the Meanwhile,\u00a0I want to get my hands dirty and understand all the implications of the NASCAR-style approach.\u00a0 So recently I subscribed to\u00a0a nifty\u00a0janrain\u00a0<\/a>service that offers a whole array of login methods.\u00a0\u00a0I then\u00a0integrated their stuff into Identityblog.\u00a0 I promise, Scout's Honor,\u00a0not to do man-in-the-middle-attacks or scrape your credentials, even though I probably could if I were so inclined.<\/p>\n From now on, when you need to authenticate at Identityblog, you will see a NASCAR-style login symbol.\u00a0 See, for example, the LOG IN<\/em> option at the top of this page.\u00a0<\/p>\n If you are not logged in and\u00a0you want to leave a comment you will see\u00a0: Click on the string of icons and you get something like this:<\/p>\n \u00a0 Because many people continue to use my site to try out Information Cards, I've supplemented the janrain\u00a0<\/em>widget experience\u00a0with\u00a0the Pamelaware<\/em> Information Card Option (it was pretty easy to\u00a0make them coexist, and it leaves me with at least one\u00a0unphishable alternative).\u00a0 This will also\u00a0benefit people who don't like the idea of linking their identifiers all over the web.\u00a0 I\u00a0expect\u00a0it\u00a0will help researchers and students too.<\/p>\n One warning:\u00a0 Janrain's otherwise\u00a0polished implementation doesn't work properly with Internet Explorer – it leaves\u00a0a spurious “Cross Domain Receiver Page” lurking on your desktop.\u00a0\u00a0[Update<\/strong> – this was apparently my problem: see here<\/a>]\u00a0 Once I figure out how to contact them (not evident), I'll ask janrain if and when they're going to fix this.\u00a0 Anyway,\u00a0the system\u00a0works –\u00a0just a bit messy because you have to manually close the stranded empty page.\u00a0 The problem doesn't appear in Firefox.\u00a0<\/p>\n It has\u00a0already been\u00a0a riot\u00a0looking\u00a0into the new technology and\u00a0working through\u00a0the implications.\u00a0 I'll talk about\u00a0this as we go forward.<\/p>\n \u00a0<\/p>\n","protected":false},"excerpt":{"rendered":" I want to get my hands dirty and understand all the implications of the NASCAR-style approach. It's already been a riot looking into this and working through the implications.<\/p>\n","protected":false},"author":68,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":[],"categories":[2,7,47,56,61,11],"tags":[],"_links":{"self":[{"href":"https:\/\/www.identityblog.com\/index.php?rest_route=\/wp\/v2\/posts\/1175"}],"collection":[{"href":"https:\/\/www.identityblog.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.identityblog.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.identityblog.com\/index.php?rest_route=\/wp\/v2\/users\/68"}],"replies":[{"embeddable":true,"href":"https:\/\/www.identityblog.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1175"}],"version-history":[{"count":0,"href":"https:\/\/www.identityblog.com\/index.php?rest_route=\/wp\/v2\/posts\/1175\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.identityblog.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1175"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.identityblog.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1175"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.identityblog.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1175"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}![\"\"](\"\/wp-content\/images\/2006\/03\/double-users.jpg\")
<\/p>\n![\"\"](\"\/wp-content\/images\/20011\/03\/subscribers_2011.gif\")
<\/p>\n![\"\"](\"\/wp-content\/images\/2011\/03\/nascar_inline.png\")
\u00a0“NASCAR” approach of presenting a bunch of different buttons that redirect the user to,\u00a0uh,\u00a0something-or-other-that-can-be-phished,\u00a0ahem, in spite of\u00a0the privacy and security problems.\u00a0 This part of the conversation will go on for some time, since these problems will become progressively more\u00a0widespread as NASCAR\u00a0gains popularity and\u00a0the criminally\u00a0inclined tune in to its potential as a gold mine…\u00a0But that discussion is for another day.\u00a0<\/p>\n
\n![\"\"](\"\/wp-content\/images\/2011\/03\/nascar_comment.jpg\")
\u00a0<\/p>\n![\"\"](\"\/wp-content\/images\/2011\/03\/nascar.jpg\")
<\/p>\n