[OpenID] OpenID; a single choice

Jørn Wildt jw at cbrain.com
Wed Mar 12 15:25:49 UTC 2008 

> There are and will be many sites which will trust only their own or a very
narrow choice of OpenID providers.

 

Which in my opinion is quite fine – it could for instance be a university
website that only allowed access to people with an OpenID issued by that
university.

 

But that’s not the problem with the Yahoo! and other’s buttons – these are
simply logos that wants to promote a specific OP. They don’t restrict you to
that OP – you can still use your OpenID in addition to the button. Nothing
wrong with the OpenID specs and design.

 

It’s just like banner ads promoting specific Ops – and the sad thing is that
the login windows will now get cluttered with these logo-ads, when we could
have sticked to one single OpenID input. But, hmmmm, thinking about it –
OpenID wants you to put the OpenID logo right beside the OpenID input, isn’t
that just as bad :-)

 

But it is probably unavoidable – if Yahoo! and others implement OpenID then
they want to make sure everybody knows it and use them as OPs since it will
drive traffic to their sites. Had it not been logo-buttons then it had been
something else.

 

Regards, Jørn Wildt

 

  _____  

From: general-bounces at openid.net [mailto:general-bounces at openid.net] On
Behalf Of Eddy Nigg (StartCom Ltd.)
Sent: 12. marts 2008 16:06
To: tom
Cc: OpenID List
Subject: Re: [OpenID] OpenID; a single choice

 

tom: 

Is it only me that has an 
issue with this given that before long pages will be covered with many 
logos and that I'll end up having to search for the OpenID logo?
 
I appreciate the "open" aspects of OpenID, but for the user would it not 
be better to have the browser manufacturers agree on a way to store an 
OpenID and auto-direct to my OP rather than giving the user a zillion 
logos on a screen?
  

This has been anticipated and was obvious (even by design). OpenID has
refused to address the issues of a trust point or federated network of
OpenID operators and this is the result. There are and will be many sites
which will trust only their own or a very narrow choice of OpenID providers.

When making these suggestions more then 1 1/2 years ago I was booed
down....something about "taking away the freedom to operate randomly OPs"
was mentioned many times. Well, you can blame these idiots today for
refusing to address this issue, because, yeah...their freedom is going to be
taken away by reality now,  and not by providing and organizing a framework
which would have allow RPs to trust OPs according to agreed rules and
accepted standards. In a federated network of OPs and some established
criteria everybody could trust anybody....

-- 


Regards 


 


Signer: 

Eddy Nigg, StartCom <http://www.startcom.org>  Ltd.


Jabber: 

startcom at startcom.org


Blog: 

Join the <http://blog.startcom.org>  Revolution!


Phone: 

+1.213.341.0390


 

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20080312/1c6a8446/attachment-0002.htm>

More information about the general mailing list