[OpenID] Distributed ID Servers
Avery Glasser
aglasser at vxvsolutions.com
Thu Dec 21 04:33:30 UTC 2006
Darryl,
The answer is that the OpenID provider should use standard mechanisms like database and server clustering, combined with reverse proxies to keep the platform up and running in the case of component failure.
- Avery
>Are there any ideas about making the OpenID system
>safe from ID server downtime? I'm thinking that if the
>ID's themselves were distributed around to various ID
>servers, while still associating each ID with an
>actual server, when that server goes down, the system
>could default to the ID server network to see if the
>ID is available elsewhere. All the data could be
>hashed like we would normally hash just passwords,
>this way noone could see who has access to what.
>
>There might also be a way to keep the primary ID
>server's information up-to-date after it goes down
>while still letting people authorize new sites during
>the down time. When the primary ID server goes down, a
>temporary ID server could be chosen and when the
>primary is back online, you could inform it of updates
>on that temp server, and then, when the primary is
>updated, the information propagates. Ofcourse, if the
>information on the temp server is not genuine it
>wouldn't propagate because the primary would refuse
>it.
>
>Just some ideas. I'm sure they couuld be improved upon
>or something.
>
>- Darryl McAdams
>
>-------------------------------
>
>o///
>Be seeing you...
>
>__________________________________________________
>Do You Yahoo!?
>Tired of spam? Yahoo! Mail has the best spam protection around
>http://mail.yahoo.com
>_______________________________________________
>general mailing list
>general at openid.net
>http://openid.net/mailman/listinfo/general
--
==============================
Avery Glasser
VxV Solutions, Inc.
+ 1.415.992.7264 - office
+ 1.415.290.1400 - mobile
+ 1.415.651.9218 - fax
329 Bryant Street, Suite 2D
San Francisco, CA 94107
==============================
This e-mail (including any attachments), is confidential and intended only for the use of the addressee(s). It may contain information covered by legal, professional or other privilege. If you are not an addressee, please inform the sender immediately and destroy this e-mail. Do not copy, forward, use or disclose this e-mail. Thank you.
More information about the general
mailing list