[OpenID] Real Identity Verification

Eddy Nigg (StartCom Ltd.) eddy_nigg at startcom.org
Tue Nov 4 15:59:49 UTC 2008 

On 11/04/2008 12:24 PM, Steven Livingstone-Perez:
>
> This is interesting Eddy.
>
> I kind of see three ways that this kind of OpenID “verification” can 
> happen.
>
> 1. Reputation
>
> a. In this case, the longer you use your OpenID, the more people will 
> come to know it is associated with you. I’d be interested in how we 
> could explicitly extend this concept to support a distributed 
> reputation system where you can attach OpenID Reputation points which 
> are assigned from other sites. These could even be broken down into 
> types of reputation. The longer and more you use it the more 
> reputation points. Even sending an email that isn’t spam etc via Gmail 
> or Windows Live could “increment” your reputation score (like 
> pagerank, but for OpenID).
>
> 2. Friend Verification
>
> a. Slightly more explicit and extension of the above whereby friends 
> can verify things you write down about yourself so that others can 
> trust them more. John says he works at Google Inc and Brian has 
> verified this etc.
>
> 3. Central Validation
>
> a. Shibboleth model and probably needed for institutions who perhaps 
> verify things such as “Yes, this is definitely Dr. Livingstone” etc.
>
> Does your Web of Trust concept tie in more with number 3 than the 
> others or is if more about associating an OpenID with a cert so that 
> saying something with your OpenID can be strongly verified (e.g. via 
> the associated dig sig?).
>

It's #2 and/or #3. It can be either or both. StartCom is a CA providing 
#3 - the StartSSL WoT a community project verifying identities for now 
(providing part of #2). No attempts have been made yet to validate other 
attributes through the WoT, which in itself is an interesting idea of 
course.


Regards
Signer: 	Eddy Nigg, StartCom Ltd. <http://www.startcom.org>
Jabber: 	startcom at startcom.org <xmpp:startcom at startcom.org>
Blog: 	Join the Revolution! <http://blog.startcom.org>
Phone: 	+1.213.341.0390


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20081104/86c48b01/attachment-0002.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 6724 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20081104/86c48b01/attachment-0002.bin>

More information about the general mailing list