{"id":929,"date":"2008-02-26T12:48:25","date_gmt":"2008-02-26T20:48:25","guid":{"rendered":"\/?p=929"},"modified":"2008-02-26T13:29:11","modified_gmt":"2008-02-26T21:29:11","slug":"not-the-browser","status":"publish","type":"post","link":"https:\/\/www.identityblog.com\/?p=929","title":{"rendered":"Not the browser!"},"content":{"rendered":"<p>Google&#39;s Ben Laurie <a href=\"http:\/\/www.links.org\/?p=299\">bookends our dialog\u00a0<\/a>(work back from <a href=\"\/?p=928\">here<\/a>) with a really clear statement:<\/p>\n<blockquote><p>Kim correctly <a href=\"\/?p=928\">observes that the browser is not the place to be typing your password<\/a>. Indeed. I should have mentioned that.<\/p>\n<p>Clearly any mechanism that can be imitated by a web page is dead in the water. Kim also wants to rule out plugins, I take it, given his earlier reference to toolbar problems. I\u2019m OK with that. We want something that only a highly trusted program can do. That\u2019s been so central to my thinking on this I forgot to mention it. Sorry.<\/p><\/blockquote>\n<p>This sounds really positive.\u00a0 Now, just so I don&#39;t end up with a different security product from every big web site, I hope Ben&#39;s work will include integration with the CardSpace framework.\u00a0 I&#39;m certainly open to discussions about ways we might evolve CardSpace to facilitate this.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>We want something that only a highly trusted program can do&#8230;<\/p>\n","protected":false},"author":68,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":[],"categories":[8,23,44,5,4],"tags":[],"_links":{"self":[{"href":"https:\/\/www.identityblog.com\/index.php?rest_route=\/wp\/v2\/posts\/929"}],"collection":[{"href":"https:\/\/www.identityblog.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.identityblog.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.identityblog.com\/index.php?rest_route=\/wp\/v2\/users\/68"}],"replies":[{"embeddable":true,"href":"https:\/\/www.identityblog.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=929"}],"version-history":[{"count":0,"href":"https:\/\/www.identityblog.com\/index.php?rest_route=\/wp\/v2\/posts\/929\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.identityblog.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=929"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.identityblog.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=929"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.identityblog.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=929"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}