[OpenID] general Digest, Vol 15, Issue 15
Ben Bangert
ben at groovie.org
Tue Nov 27 21:41:17 UTC 2007
On Nov 27, 2007, at 1:34 PM, Christopher St John wrote:
> Number two does not necessarily follow from number one. I'd like to
> see a
> substantial amount of operational experience with OpenID before I'd
> want
> my bank to use it for high-value transactions. Note that even if a
> standard
> is basically sound, wide deployment into production will reveal common
> implementation and deployment problems.
>
> I know this sounds awful, but traditionally you phase it in
> gradually, getting
> burned and hacked at each phase before you decide all the holes are
> fixed
> and you up the stakes and get burned again, until at some point the
> technology becomes a best practice. That definitely has not
> happened yet
> with OpenID (but it's getting there).
>
> So, +1 on it being crazy for a bank to use OpenID right now.
I'd like to remind people that the original thread isn't necessarily
talking about high value transactions, but merely *any* financial
transaction. Ie, a $4.95/mth subscription, or buying a $50 book.
Though I do realize the example of USAA is a higher value
transaction, I'm more interested in using OpenID with smaller value
transactions that are still of a financial nature.
Perhaps there could be a topic at IIW about using OpenID with online
sites that result in financial transactions? (ie, subscription
services, small payments, etc.)
Cheers,
Ben
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 2472 bytes
Desc: not available
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20071127/2095d54a/attachment-0002.bin>
More information about the general
mailing list