[OpenID] Correlating Identifiers
Nate Klingenstein
ndk at internet2.edu
Thu Nov 6 00:14:47 UTC 2008
Allen,
Very interesting -- I didn't know this. I guess that your
applications were already well-experienced with pseudonyms through
your proprietary SSO, so you've had no problems with the opaque
URL's. If only we had trained our apps so well long ago.
Thanks a lot for the details on the history and rationale,
Nate.
On 6 Nov 2008, at 00:06, Allen Tom wrote:
> Prior to launching our OpenID service, Yahoo's policy with our
> proprietary SSO service was to issue RP-specific identifiers to
> prevent RPs from sharing data about the user and correlating user
> behavior across different sites.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20081106/e82778e5/attachment-0002.htm>
More information about the general
mailing list