On 1/23/07, Bob Wyman <bob at wyman.us> wrote: > BTW: OpenID provides a means for OP and RP to establish a secure > association. Why doesn't it do the same for OP and Client? There is nothing in the protocol that prevents any software from making associations with the OP using the same mechanism that RPs use. Josh