[OpenID] Anybody here from MySpace?
Nat Sakimura
n-sakimura at nri.co.jp
Wed Jul 30 10:09:04 UTC 2008
Yes. and for "OASIS' important work" ... of course! :p
And, you are right. OASIS process will take a long time.
We need such a solution to OpenID much earlier than that.
Since PAPE work is settling down (hopefully), now I am almost ready to
start drafting Reputation Service WG charter.
=nat
On Tue, 29 Jul 2008 12:36:48 +0900, Nate Klingenstein <ndk at internet2.edu>
wrote:
> Nat,
>
> I would agree that some architectural work would help to make OpenID
> sufficiently secure for higher-valued transactions. However, while the
> flows could be better secured, and Cardspace is a huge help for phishing
> protection, a lot of what I would consider additional "security" is an
> ability for providers to recognize and trust each other. That mostly
> involves third-party reputation and vetting services.
>
> OASIS is doing important work here, as you know of course, but it will
> be gradual and still require integration with OpenID. I'd certainly be
> interested in helping out if there were such a working group formed and
> the IPR process solidified.
>
> Take care,
> Nate.
>
> On 29 Jul 2008, at 03:06, Nat Sakimura wrote:
>
>
> Is there a security committe or something like that in the community?
>
--
=nat
More information about the general
mailing list