Proposal for Recycling Identifiers in OpenID 2.0
Johannes Ernst
jernst+openid.net at netmesh.us
Mon May 14 15:48:49 UTC 2007
These seems to be an assumption on this thread that
- identifiers at the same domain name get recycled often (e.g.
example.com/jim)
- domain names don't get recycled often (e.g example.com itself)
I would suggest that any proposed solution needs to be able to deal
with domain names as well that aren't being renewed, and picked up by
somebody else. Somebody who isn't necessarily continuing any kind of
naming scheme the previous owner had in place, or who is actively
hostile with respect to the previous owner.
There's a whole industry out there recycling domain names -- which
proves that this is an issue.
Johannes Ernst
NetMesh Inc.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: openid-relying-party-authenticated.gif
Type: image/gif
Size: 903 bytes
Desc: not available
URL: <http://lists.openid.net/pipermail/openid-specs/attachments/20070514/3794aa78/attachment-0004.gif>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: lid.gif
Type: image/gif
Size: 973 bytes
Desc: not available
URL: <http://lists.openid.net/pipermail/openid-specs/attachments/20070514/3794aa78/attachment-0005.gif>
-------------- next part --------------
http://netmesh.info/jernst
More information about the specs
mailing list