[OpenID] Anti-OpenID Campaign in Germany
Nic James Ferrier
nferrier at tapsellferrier.co.uk
Wed Apr 25 09:32:53 UTC 2007
Dick Hardt <dick at sxip.com> writes:
> OpenID as it stands now is a little leaky about where you are going
> to your OP (IP address of server fetching YADIS document), and given
> that most people won't be able to run their own, there is some
> legitimacy to the issue -- but I would argue that your ISP has a
> pretty good idea of where you are going as well if they wanted to.
> The user should select an OP that they trust to not abuse this
> information.
Absolutely. It's a trust issue. OpenID is key infrastructure.
FWIW I've been having conversations with investors who are interested
in OpenID and they share some of the viewpoints about the
leveragability of OP knowledge.
--
Nic Ferrier
http://www.tapsellferrier.co.uk
More information about the general
mailing list