[OpenID] OpenID & Estonia.
Nick Owen
nowen at wikidsystems.com
Tue Jun 5 14:26:01 UTC 2007
> One thing I think anyone working on any sort of 'eID' should keep in
> mind is that there is no reason it has to be a government issued ID. And
> I'll also claim that for ID on the world-wide internet, that having
> several widely used non-governmental organizations with strong ID
> guarantees will be a necessity.
>
> I think any of us involved in developing server software for two-factor
> authenticated openID's should make an effort to ensure that there is at
> least one option for some third party to get the hardware tokens that
> are being used, and initialize them with their own keys or secrets.
If anyone is interested in integrating the open source version of our
two-factor system to an OpenID server, please let me know. I had hoped
to have resources to do a proof-of-concept, but no such luck at this
time. We can help, though.
As a bonus, the mutual authentication capabilities of our PC clients
should counteract phishing issues by validating the OP's cert and
launching the browser to the correct OP URL. Code samples are available
in Java, PHP, Ruby, ASP, and Python, It shouldn't be hard, we're just in
the middle of a release and have a lot going on.
Nick
--
Nick Owen
WiKID Systems, Inc.
404.962.8983
http://www.wikidsystems.com
Commercial/Open Source Two-Factor Authentication
irc.freenode.net: #wikid
More information about the general
mailing list