[OpenID] Verisign Announces Free OpenID Digital Lockbox
SitG Admin
sysadmin at shadowsinthegarden.com
Sat Feb 21 22:32:36 UTC 2009
>Using one OP as an authenticator for another OP is really only a
>variant of what MyOpenID does today (where SSL client certs or
>cardspace assertions) can be used to user auth to the OP. Rather
>than a cascade of cardspace assertion -> openid assertion ...I
>simply advocated using a cascade of openid assertion -> openid
>assertion.
SSL certs can be cached, though (and only checked for revocation
*occasionally*), whereas OpenID exchanges cannot. How far can the
cascades go? How long will the user be waiting, sitting patiently at
their computer, waiting for an attempted login to go through?
-Shade
More information about the general
mailing list