[OpenID] Combining Google & Yahoo user experience research

Brandon Ramirez brandon.s.ramirez at gmail.com
Mon Oct 20 17:57:40 UTC 2008 

True, I am making assumptions by putting myself in their shoes.  I too  
would like to hear from some of these folks. Each bank re-inventing  
the wheel doesn't seem to make a lot of sense, but neither does a  
federated solution.

Sent from my iPhone

On Oct 20, 2008, at 1:47 PM, "Chris Messina" <chris.messina at gmail.com>  
wrote:

> I'd be interested in hearing from banks on this actually.
>
> I personally don't know what banks or bank folks think, and would be  
> curious to know how they're internally thinking about dealing with  
> these issues.
>
> Chris
>
> On Mon, Oct 20, 2008 at 8:28 AM, Brandon Ramirez <brandon.s.ramirez at gmail.com 
> > wrote:
> Well if the bank can't trust your openid provider (which from their
> perspective is an arbitrary OP), then why should they assume the risk
> of supporting it?  That's nice that you don't care whom they trust,
> but one must consider all stakeholders when deploying technology...
> The bank has to protect itself and frankly *they* don't care who you
> trust.
>
> Sent from my iPhone
>
> On Oct 20, 2008, at 2:44 AM, Martin Atkins <mart at degeneration.co.uk>
> wrote:
>
> > alavillipraveen at aol.com wrote:
> >>  that's because you (a human being) trusted the bank website and
> >> chose to give away your PII. But when the bank gets a request from
> >> an OP that says www.i_am_the_most_secure_openid_provider.com,
> >> saying yes this is Brandon, how can the bank trust it ?
> >
> > Isn't it more important that you (a human being) trust both the bank
> > and the OP? My bank trusting a particular OpenID provider doesn't
> > really help me in any way if I don't trust it myself. To be honest,
> > I don't care what my bank trusts. I care what I trust.
> >
> _______________________________________________
> general mailing list
> general at openid.net
> http://openid.net/mailman/listinfo/general
>
>
>
> -- 
> Chris Messina
> Citizen-Participant &
>  Open Technology Advocate-at-Large
> factoryjoe.com # diso-project.org
> citizenagency.com # vidoop.com
> This email is:   [ ] bloggable    [X] ask first   [ ] private
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20081020/19c71a14/attachment-0002.htm>

More information about the general mailing list