[OpenID] [oauth] Re: Replacing email verification with RSS 'push' feeds and OAuth

Eddy Nigg (StartCom Ltd.) eddy_nigg at startcom.org
Wed Apr 8 00:41:04 UTC 2009


On 04/08/2009 02:57 AM, Breno de Medeiros:
> 1. The community should define standard expectations about making
> assertions about email addresses, and there should be mechanisms for
> OPs to claim to satisfy such standard.
>    

+1

> 2. RPs should use a whitelist of OPs that they trust based on email
> verification. This does not need to be excessively cumbersome: a
> self-regulating reputation-based approach can work, provided people
> can agree on what are the expectations for trust.

Exactly!


Regards
Signer: 	Eddy Nigg, StartCom Ltd. <http://www.startcom.org>
Jabber: 	startcom at startcom.org <xmpp:startcom at startcom.org>
Blog: 	Join the Revolution! <http://blog.startcom.org>
Phone: 	+1.213.341.0390


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20090408/da7c94f7/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 6724 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20090408/da7c94f7/attachment-0002.bin>


More information about the general mailing list