[OpenID] TransparencyCamp and OpenID (U)
Ewout ter Haar
ewoutterhaar at gmail.com
Thu Mar 12 19:18:14 UTC 2009
On Thu, Mar 12, 2009 at 1:46 PM, Ben Laurie <benl at google.com> wrote:
> On Thu, Mar 12, 2009 at 4:13 PM, Chris Messina <chris.messina at gmail.com> wrote:
>> ...the rub being that SAML is already widely deployed (from what I
>> hear) but 1) few use it 2) integration costs are too high and 3)
>> managing SAML from a government-to-citizen perspective seems fraught
>> with huge costs and unnecessary burdens on both sides of the aisle.
>>
>> It sounds like your ideal is "pragmatic SAML" but that seems a
>> contradiction in terms. No?
> And for "managing SAML from a government-to-citizen perspective seems
> fraught with huge costs and unnecessary burdens on both sides of the
> aisle." - managing SAML is only as hard as you make it. If all you
> want something along the lines of an ID - like OpenID provides - then
> its pretty trivial.
I always liked the "openid is just as secure as email verified
identity" line. Use just as much security as you need. I think nobody
is saying your taxes should be filed with your OpenID identity. But
don't let that stop you using it when you can.
My impression is that OpenID is much more apropriate for many of the
use cases in (european?) higher education where Shibboleth is being
deployed. All of this complicated (both for the user and the
implementor) infrastructure just to protect some copyrighted
recourses?
Ewout ter Haar
--
http://stoa.usp.br/ewout
More information about the general
mailing list