[OpenID] FW: general Digest, Vol 26, Issue 57
Andrew Arnott
andrewarnott at gmail.com
Tue Oct 21 21:33:47 UTC 2008
Well, actually even with a single OpenID account and login, you can still
prevent sites from collaborating and figuring out where you've been by
comparing identifiers. That's one of the scenarios that directed identity
in OpenID 2.0 enables. The OP just has to issue pairwise unique
identifiers. No OP to date does this that I know of, but it's entirely
possible and not difficult either.
On Tue, Oct 21, 2008 at 2:27 PM, SitG Admin <sysadmin at shadowsinthegarden.com
> wrote:
> OpenID does not mandate that sites you log into automatically know anything
>> at all about you except an identifier by which it can recognize you at your
>> next visit.
>>
>
> Additionally, only *that* site needs to recognize you on your next visit:
>
> With none of that mandated, OpenID still gives you the ability to log in
>> with just a single username and password across the web.
>>
>
> And let's say you're willing to give up this convenience: NOTHING is
> preventing you from having more than one ID! You can easily use one OpenID
> per site, preventing those sites from connecting your ID at one site with
> your ID at another site just by comparing notes.
>
> -Shade
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20081021/6991b78a/attachment-0002.htm>
More information about the general
mailing list