[OpenID] Verisign Announces Free OpenID Digital Lockbox
Peter Williams
pwilliams at rapattoni.com
Fri Feb 20 20:10:24 UTC 2009
So it's a proprietary initial login to an OP (that happens to do some encrypted file store stuff, possibly leveraging the proprietary token for key management). This seems useful, if yuou think that store holding the same kind of consent/audit/release logs that myopenid keeps around (tracling/tracing your communications with RPs)
Once you have a session, it happens to offer openid assertions to SPs.
The behavior seems similar to the Google BlogSpot service, where you had to first login to BlogSpot using google proprietary means, and only then could you leave an authenticated comment on the blogspot site using some (or other ) OP. In reality Google was tracking your comment using the proprietary means, but one was present in the OP name to comment readers.
From: general-bounces at openid.net [mailto:general-bounces at openid.net] On Behalf Of Andrew Arnott
Sent: Friday, February 20, 2009 11:08 AM
To: Chris Messina
Cc: DiSo Project; OpenID List
Subject: Re: [OpenID] Verisign Announces Free OpenID Digital Lockbox
Sorry... this doesn't seem like OpenID authentication to me. Verisign only lets you log into the vault using your PIP account, which although PIP is an OpenID Provider, means that OpenID has nothing to do with your authentication experience. You can't use any openid to log in -- you just log in with your PIP username and password, and a hardware credential that costs at least $30 to boot.
--
Andrew Arnott
"I [may] not agree with what you have to say, but I'll defend to the death your right to say it." - Voltaire
On Fri, Feb 20, 2009 at 10:57 AM, Chris Messina <chris.messina at gmail.com<mailto:chris.messina at gmail.com>> wrote:
I find this very interesting:
http://infosecurity.us/?p=6437
http://blogs.verisign.com/innovation/2009/02/pip_update_a_free_secure_digit.php
It's how it works over OpenID that is most compelling (though this is really just the OpenID + OAuth hybrid, minus OAuth):
http://infosecurity.us/images/openid_protocol.png
So basically it's like MobileMe attached to your OpenID, with the ability to provide delegated access!
Thoughts?
Chris
--
Chris Messina
Citizen-Participant &
Open Web Advocate-at-Large
factoryjoe.com<http://factoryjoe.com> # diso-project.org<http://diso-project.org>
citizenagency.com<http://citizenagency.com> # vidoop.com<http://vidoop.com>
This email is: [ ] bloggable [X] ask first [ ] private
_______________________________________________
general mailing list
general at openid.net<mailto:general at openid.net>
http://openid.net/mailman/listinfo/general
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20090220/9dd639b9/attachment-0002.htm>
More information about the general
mailing list