[OpenID] Supporting OpenID
Nate Klingenstein
ndk at internet2.edu
Fri Apr 11 20:35:51 UTC 2008
Paul,
I can appreciate the pseudonyms and the use of directed identity, but
how does this enhance the privacy of users, if it's really just an
appended string? Isn't it trivially more difficult to correlate by
simply truncating the URL? Maybe I'm misinterpreting something, but
if an RP turned rogue, I don't think that #abc123 would be much to
overcome.
Thanks,
Nate.
> 1) the opaque characters you are seeing in the Yahoo OpenIDs support
> enhanced privacy (by inhibiting correlation), its a feature called
> 'directed identity'
>>
>> Yahoo! (and Flickr) - we've got it working, it would have been a
>> snap
>> except that Yahoo! is appending an alpha numeric string to the end of
>> the identity URL. We cannot find documentation detailing the purpose
>> of that string.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20080411/8f51bba8/attachment-0002.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 2417 bytes
Desc: not available
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20080411/8f51bba8/attachment-0002.bin>
More information about the general
mailing list