[OpenID] Distributed ID Servers
Darryl
psygnisfive at yahoo.com
Thu Dec 21 04:05:09 UTC 2006
Are there any ideas about making the OpenID system
safe from ID server downtime? I'm thinking that if the
ID's themselves were distributed around to various ID
servers, while still associating each ID with an
actual server, when that server goes down, the system
could default to the ID server network to see if the
ID is available elsewhere. All the data could be
hashed like we would normally hash just passwords,
this way noone could see who has access to what.
There might also be a way to keep the primary ID
server's information up-to-date after it goes down
while still letting people authorize new sites during
the down time. When the primary ID server goes down, a
temporary ID server could be chosen and when the
primary is back online, you could inform it of updates
on that temp server, and then, when the primary is
updated, the information propagates. Ofcourse, if the
information on the temp server is not genuine it
wouldn't propagate because the primary would refuse
it.
Just some ideas. I'm sure they couuld be improved upon
or something.
- Darryl McAdams
-------------------------------
o///
Be seeing you...
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
More information about the general
mailing list