[OpenID] FW: general Digest, Vol 26, Issue 57
Andrew Arnott
andrewarnott at gmail.com
Tue Oct 21 22:07:22 UTC 2008
Where is your XRDS file? I'd like to see how this mapping works. I thought
delegation rules were all about "at this OP use this identity". But it
sounds like you've got "at this RP use this identity". How does that work?
On Tue, Oct 21, 2008 at 2:38 PM, Peter Williams <pwilliams at rapattoni.com>wrote:
> And this is the 100% delegation model. I have a XRDS file on the web, a 100
> links to consumer apps, and there are a 100 delegations in the XRDS file. I
> only login to RP by noting the openid to myfile, whereupon delegation rules
> and bilateral discovery maps that to the OP provider the RP site is willing
> to use. If using PAPE extensions in the XRDS, RP might choose between two
> OPs based on auth policy/level advertisement.
>
> This is rather different to the properties provided by directed identity at
> a single OP, note. Any OP of any large size, e.g. one bound by EV rules,
> will be spying on me. It's irrelevant what they say do: they have to retain
> the data, for correlation of who is communicating with whom (a trivially
> easy wiretap order to obtain).
>
> -----Original Message-----
> From: general-bounces at openid.net [mailto:general-bounces at openid.net] On
> Behalf Of SitG Admin
> Sent: Tuesday, October 21, 2008 2:27 PM
>
>
> And let's say you're willing to give up this convenience: NOTHING is
> preventing you from having more than one ID! You can easily use one
> OpenID per site, preventing those sites from connecting your ID at
> one site with your ID at another site just by comparing notes.
>
> -Shade
> _______________________________________________
> general mailing list
> general at openid.net
> http://openid.net/mailman/listinfo/general
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20081021/7a5a63a9/attachment-0002.htm>
More information about the general
mailing list