[OpenID] New OpenID provider - using inkblot passwords
jernst+openid.net at netmesh.us
Thu Nov 29 22:06:41 PST 2007
Now we know what billg meant in February when he said Microsoft will
support OpenID! Inkblots ...
[Sorry, couldn't resist. It's great to see you guys innovate around
On Nov 29, 2007, at 18:52, Jeremy Elson wrote:
> I’m writing to let you know about our new, experimental OpenID
> Provider at http://www.inkblotpassword.com. Our implementation has
> a twist: we show you a series of inkblot images (similar to a
> Rorschach test) to help you create and, later, remember your password.
> I’m part of a small group at Microsoft Research that does work in
> the security and distributed systems space. A few years ago, one of
> our interns (Adam Stubblefield, now at Johns Hopkins) developed the
> idea of using inkblot images for password prompting. He spent the
> summer doing a user study that showed that inkblots made it much
> easier for users to remember very strong passwords. The goal is to
> reduce the use of weak passwords. You can read about the user study
> atftp://ftp.research.microsoft.com/pub/tr/TR-2004-85.pdf. (There’s
> also a summary of the research at http://research.microsoft.com/displayArticle.aspx?id=417.)
> Last month, we decided to whip up an OpenID implementation of Adam’s
> inkblot generator. Right now it’s pretty bare-bones, but if people
> find it useful, we’d be open to suggestions on what to improve.
> Jeremy Elson
> general mailing list
> general at openid.net
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the general