[OpenID] OpenID SREG best practice question
Eric Norman
ejnorman at doit.wisc.edu
Thu Nov 13 22:52:25 UTC 2008
On Nov 13, 2008, at 9:53 AM, Nate Klingenstein wrote:
> We're now toying with interfaces that are opt-in/opt-out, and ones
> that can give "levels of service" based on how much information you're
> willing to reveal, e.g. persistent pseudonym = personalized content.
> It gives the user the ability to do consent-based release for many
> services, and for services that are absolutely necessary to providing
> an education for the student, they won't be prompted. We'll see if
> these are more successful.
>
> Something certainly has to be done, though. We don't want the IdP
> administrator to be a gatekeeper for all services. It works very well
> for the major apps with our large user bases, but it's not scaling
> down to the small collaborations. I suspect this is why Eric is so
> keen to have some formal research into the problem.
Oh, I have a hunch that there might be more involved than
size of the user base. For instance, what's at risk might
be a factor. (You might have been trying to say that above).
It's also possible that different circumstances warrant
different methods of communicating with the user.
And yes, scientific research is better than guessing and
even better then "common knowledge".
Eric Norman
More information about the general
mailing list