OpenID security
Joaquin Miller
joaquin at netmesh.us
Tue Oct 24 17:49:28 UTC 2006
Hans wrote:
>A while back I drafted some security profiles [1] that deals with
>[multiple levels of security]. The enforcement is difficult to
>mandate on the OpenID protocol level, but could be handled by IDP
>and RP applications.
>
>I realize these profiles are not complete, but I think they
>are a reasonable starting point for our discussion.
At the time I applauded Hans for introducing these (so long ago I
can't remember when). I do hope we can get some discussion this
time. I've held my tongue, because there are better folks on this
list to discuss this. You all remember what Church Lady said.
Cordially, Joaquin
[1]
http://openid.net/specs/openid-authentication-2_0-security-profiles-01.html
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20061024/624c4137/attachment-0002.htm>
More information about the general
mailing list