[OpenID] The problem(s) with OpenID
SitG Admin
sysadmin at shadowsinthegarden.com
Wed May 28 20:46:56 UTC 2008
At 10:32 AM +0200 5/28/08, Snorri wrote:
>We should write a FAQ question/answer with all these "problems" most of whom
>have already been solved... I mean directly on openid.net/criticism
Seconded . . . I'll also copy from a reply I sent to Johannes Ernst
last month on "What can your OpenID Foundation do for you?":
3) Figure out the long-term advantages OpenID has, and promote those
too. For example; single-sign-on is a short-term advantage (over the
current method) that everyone can get on board with, but
"decentralized identity management system" lacks the immediate and
apparent relevancy. Find good creative writers to submit
proof-of-concept scenarios so the average user can understand and be
appropriately horrified BEFORE they actually suffer the consequences.
Have other articles on the same page that describe how OpenID
mitigates those outcomes.
3a) Even cater to the less valid scenarios, such as those previously
described by some of OpenID's detractors; "Putting all of your logins
in one spot gives the government a prime target to go after
everyone's web-activity history." can be met with "OpenID lets you
use a different Provider, even one that will not keep any records." -
for every blogger who not-quite-understands OpenID this way, and
visibly complains, there will be several more users who have the same
"understanding" but instead silently dismiss it and move on. These
detractors have shown us some common impressions of OpenID; actively
addressing those concerns would further the understanding of
countless other users, as well.
-Shade
More information about the general
mailing list