Looks like we have to submit some kind of comment by this Friday. <div><br></div><div>OpenID mentioned as "Phishing Heaven" is not good. </div><div><br></div><div>Don, could you get in touch with them to fix those paragraphs? </div>
<div><br></div><div>I will try to send my personal comments as well. </div><div><br></div><div>Here is the problematic sentence: </div><div><br></div><div><span class="Apple-style-span" style="font-family: 'Gill Sans MT'; font-size: 16px; line-height: 19px; ">As a server-side solution, OpenID and successor technologies have the advantage of only relying on server-side HTTP redirects, and so in general works independent of browsers. Very seriously, OpenID 2.0 Authentication does not require relying parties to validate, and so has been described as <a href="http://www.links.org/?p=187" class="external text" title="http://www.links.org/?p=187" style="background-image: none; background-repeat: initial; background-attachment: initial; -webkit-background-clip: initial; -webkit-background-origin: initial; background-color: initial; color: rgb(51, 102, 187); background-position: initial initial; ">phishing heaven</a>, since it allows any OpenID-enabled site to redirect a user to a fake OpenID provider, that then steals the user's credentials. </span><br>
<br><div class="gmail_quote">On Thu, Oct 14, 2010 at 10:57 AM, Nat Sakimura <span dir="ltr"><<a href="mailto:sakimura@gmail.com">sakimura@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
I just stumbled upon this document "Final Report - Social Web XG Wiki "<br>
<br>
<a href="http://www.w3.org/2005/Incubator/socialweb/wiki/FinalReport#Identity" target="_blank">http://www.w3.org/2005/Incubator/socialweb/wiki/FinalReport#Identity</a><br>
<br>
Perhaps we should locate a volunteer to help them write more<br>
accurately about OpenID?<br>
<font color="#888888"><br>
--<br>
Nat Sakimura (=nat)<br>
<a href="http://www.sakimura.org/en/" target="_blank">http://www.sakimura.org/en/</a><br>
<a href="http://twitter.com/_nat_en" target="_blank">http://twitter.com/_nat_en</a><br>
</font></blockquote></div><br><br clear="all"><br>-- <br>Nat Sakimura (=nat)<br><a href="http://www.sakimura.org/en/">http://www.sakimura.org/en/</a><br><a href="http://twitter.com/_nat_en">http://twitter.com/_nat_en</a><br>
</div>