No subject
Fri Feb 8 18:42:25 UTC 2008
1) ordinary people just don't get the idea that their online identity
(their username) should be represented as a URL
2) ordinary people find the user experience of OpenID tends to be too
clunky at the moment ("I want to log into X but I'm being asked to give
my credentials to Y" kind of issue)
3) some techies (i.e. non-ordinary people :-) ) have perceived security
issues (particularly around phishing) leading to insufficient trust in
OpenID as an identity infrastructure
Note that by "from my perspective" I mean "this is what I'm sensing from
the community I deal with (UK education)". I have no hard evidence to
back these statements up unfortunately.
There is a fourth barrier as well:
4) not enough major RPs
which is probably the most significant, but that kinda falls out of the
other three I suspect?
Andy
--
Head of Development, Eduserv Foundation
http://www.eduserv.org.uk/foundation/
http://efoundations.typepad.com/
andy.powell at eduserv.org.uk
+44 (0)1225 474319=20
> -----Original Message-----
> From: general-bounces at openid.net=20
> [mailto:general-bounces at openid.net] On Behalf Of David Recordon
> Sent: 19 March 2008 00:32
> To: openid-general List
> Subject: [OpenID] Thinking About OpenID.com
>=20
> Earlier today I came across a blog post=20
> (http://www.jason-preston.com/index.php/2008/03/18/why-openid-
> will-never-work/
> ) talking about some of the adoption hurdles around OpenID=20
> for normal people. The largest concern still seems to come=20
> from how OpenID.net presents (or doesn't) itself in terms of=20
> being dead simple to actually get an OpenID. While I don't=20
> agree with every point that Jason makes, I certainly=20
> understand what he is saying especially with how he ended his=20
> response to my comment:
>=20
> > I think it's just that the concept of OpenID is supposed=20
> to be "braindead simple login for disparate web services,"
> > and when you go to the page, what you see is "confusing=20
> multiple login accounts, none of which you can do > anything=20
> with from this page."
>=20
> Thus the thought in my head is one that has come up in the=20
> past, though never anything we've done something about. What=20
> if we actually purchase OpenID.com (like Jason suggested) and=20
> use it to be a dead- simple normal person destination site? =20
> OpenID.net can remain more targeted for developers and we can=20
> stop fighting the battle of trying to make one site useful=20
> for everyone.
>=20
> Does this make sense to others? Would people see this as a=20
> useful way to spend OpenID Foundation resources?
>=20
> Thanks,
> --David
>=20
> _______________________________________________
> general mailing list
> general at openid.net
> http://openid.net/mailman/listinfo/general
>=20
_______________________________________________
general mailing list
general at openid.net
http://openid.net/mailman/listinfo/general
--_18BEF4F2-E2FA-4DD7-BAF1-4DE8E02962BA_
Content-Type: text/html; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<HTML dir=3Dltr><HEAD></HEAD>
<BODY>
<DIV id=3DidOWAReplyText97405 dir=3Dltr>
<BLOCKQUOTE dir=3Dltr style=3D"MARGIN-RIGHT: 0px">
<DIV dir=3Dltr><FONT color=3D#000000><FONT face=3DArial size=3D2>"Its fine =
that the OP helps you store you 6 delegated IDs in the XRD, once the RP is =
pointing to the right file. We just cannot have the user type "rapmls.com" =
into each of 6 services providers at 9am, and again at 11am, 3pm, and 9pm."=
</FONT></DIV></BLOCKQUOTE>
<DIV dir=3Dltr><FONT face=3DArial size=3D2>------</FONT></DIV>
<DIV dir=3Dltr><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV dir=3Dltr><FONT face=3DArial size=3D2>Longer background</FONT></DIV>
<DIV dir=3Dltr><FONT face=3DArial size=3D2></FONT> </DIV></FONT>
<DIV dir=3Dltr><FONT color=3D#000000></FONT><FONT face=3DArial size=3D2>On =
URLs: There is little difference between typing </FONT><A href=3D"mailto:pw=
illiams at rapattoni.com" target=3D_blank><FONT face=3DArial size=3D2>pwilliam=
s at rapattoni.com</FONT></A><FONT face=3DArial size=3D2> and pwilliams.rapatt=
oni.com. Folks can get used to that. They will not get used to the dose of =
URL religion that come with OpenID movement. Nobody cares, or should care. =
(UCI is a hard sell. Busy people dont have time to bother with hard sells.)=
</FONT></DIV>
<DIV dir=3Dltr><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV dir=3Dltr><FONT face=3DArial size=3D2>On URL#2: In a portal experience=
, particular one that is a pre-cursor to semweb-based portal designs, we ca=
nnot have a user typing "I am not a number/ but I am a URL" 6 times, becaus=
e the inverted data model induces the operating practice that that there wi=
ll always now be 6 data/tab providers. Dont think about your probable perso=
nal or corporate lives here. In my ultimate-consumer industry with a millio=
n, consumer-grade users, half the users access kiosk PCs, changing PC 4+ ti=
mes a day from a pool of 20 open access (no desktop logon., i.e. no overhea=
d) machines. Cookies are not viable; host-based Security p=
olicy is not viable; nothing "enterprise" is viable (as it costs more than =
a tenth of a cafe latte per day to deliver in an industry that will not pay=
more than 30c a day per user for ALL its IT, enterprise-grade apps). In su=
mmary, Sp-initiated websso (type in your discovery info) is not viable UNLE=
SS PARTIALLY AUTOMATED, when their portal hubs mashup different info source=
s (lockbox access, county parcels records, treasurer taxdata, video/photo s=
ervices, client scheduling, ad service subscriptions, Google Apps gmail, Go=
ogle IM, Google Calendar, Google Sites....)</FONT></DIV>
<DIV dir=3Dltr><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV dir=3Dltr><FONT face=3DArial size=3D2>To address my particular problem=
, all I need is community endorsement of an "RP convention" (tha=
t undermines UCI, somewhat). The portal site (or favorites mgt site) doing =
the handoff to the RP shall be OPTIONALLY able to signal the user's cached-=
URL (one per mashup site) in a STANDARD CONVENTION, to be populated in the =
RP interactive interactive login form.</FONT></DIV>
<DIV dir=3Dltr><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV dir=3Dltr><FONT face=3DArial size=3D2>That is, my favorites mgr stores=
: http://www.plaxo.com/openid?openid=3D</FONT><A href=3D"http://peter.rapat=
toni.com/" target=3D_blank><FONT face=3DArial size=3D2>http://peter.rapatto=
ni.com/</FONT></A><BR></DIV>
<DIV dir=3Dltr><FONT face=3DArial size=3D2>That is, my favorites mgt stores=
: http://www.plaxo.com/openid?openid=3D</FONT><A href=3D"http://rapmls.com/=
" target=3D_blank><FONT face=3DArial size=3D2>http://rapmls.com/</FONT></A>=
<FONT face=3DArial size=3D2>, for directed ID.<BR></FONT></DIV>
<DIV dir=3Dltr><FONT face=3DArial size=3D2>The convention needed ...is the =
opportunity to put the openid=3D querystring on the end, of course</FONT></=
DIV>
<DIV dir=3Dltr><FONT face=3DArial size=3D2></FONT> </DIV>
<BLOCKQUOTE dir=3Dltr style=3D"MARGIN-RIGHT: 0px">
<DIV dir=3Dltr><FONT face=3DArial size=3D2>Its fine that the OP helps you s=
tore you 6 delegated IDs in the XRD, once the RP is pointing to the right f=
ile. We just cannot have the user type "rapmls.com" into each of 6 services=
providers at 9am, and again at 11am, 3pm, and 9pm.</FONT></DIV></BLOCKQUOT=
E>
<DIV dir=3Dltr><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV dir=3Dltr><FONT face=3DArial size=3D2></FONT> </DIV><FONT face=3D=
Arial size=3D2></FONT></DIV>
<DIV dir=3Dltr><FONT face=3DArial size=3D2>On RPs: If Yahoo and AOL are not=
RPs in some or other capacity, they are PART OF THE PROBLEM. </FONT><FONT =
face=3DArial size=3D2>Google Apps is a SAML2 RP service, today, and a Blogg=
er RP for openid (according to David R). </FONT><FONT face=3DArial size=3D2=
>Shame on Yahoo/AOL, if they are not accepting openids, in some or other ap=
plication.</FONT></DIV>
<DIV dir=3Dltr><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV dir=3Dltr><FONT face=3DArial size=3D2> </DIV>
<DIV dir=3Dltr>
<HR tabIndex=3D-1>
</DIV></FONT>
<DIV dir=3Dltr><FONT face=3DArial><FONT size=3D2><B>From:</B> Andy Powell<B=
R><B>Sent:</B> Wed 3/19/2008 4:04 AM<BR><B>To:</B> david at sixapart.com; open=
id-general List<BR><B>Subject:</B> Re: [OpenID] Thinking About OpenID.com<B=
R><BR></FONT></FONT></DIV>
<DIV><PRE style=3D"WORD-WRAP: break-word"><FONT face=3DArial size=3D2>The o=
penid.com domain is an annoyance but not critical IMHO. The
content at openid.net is ok IMHO.
More information about the general
mailing list