[OpenID] Live Icons for visual recognition of IDP logos

Allen Tom atom at yahoo-inc.com
Thu Apr 2 18:36:57 UTC 2009

Peter Williams wrote:
> There seem 3 main technical choices, for _/mainstream/_ failure 
> engineering addressing OPs (or suspension/cessation of 
> assertion-minting privileges by the OP, under its terms of service).
> RPs normally bind multiple openids to the account
> RPs host a new vanity XRDS, delegating to both the introducing OP and 
> to at least itself (as a fallback  OP)
> RPs offer account recovery/restoration, based on some or other 
> authentication scheme
RPs should allow users to bind multiple identifiers to a user's account, 
and allow users to add and remove them.

For most consumer oriented websites, account recovery via verified email 
address is probably the most realistic option. Many users have problems 
remembering their secret questions, and the secret answers may change 
over time. (Your favorite movie might change) Additionally, many the 
answers to many secret questions might not be all that secret. (when did 
you graduate high school, what's your hometown)


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20090402/4eb1334c/attachment-0002.htm>

More information about the general mailing list