[OpenID] OpenID and phishing (was Announcing OpenIDAuthentication 2.0 - Implementor's Draft 11)

Scott Kveton scott at janrain.com
Fri Jan 19 18:02:28 UTC 2007


>> do you have any
>> suggestions on how to combat phishing for OpenID's?
> 
> a) Push browser authors to add unphishable auth!

This is starting to happen (with Mozilla anyways).  Anybody know the IE
developers?

> I intend to write some more on mitigation soon.

Great ... Please link to the post here ... Would love to hear your thoughts
on this.

- Scott




More information about the general mailing list