[OpenID] OpenID's effect on CAPTCHA
Rabbit
rabbit at cyberpunkrock.com
Thu Mar 26 06:55:30 UTC 2009
This is more of a philosophical musing than a genuine concern but it
occurred to me OpenID might have an impact on how Captcha systems are
implemented. The signup process is typically the gate where we stop
robots. I can almost positively say I've never had to prove my
fleshiness to a login form.
Services rely on OpenID to prove a user is *who* they claim to be.
Should services also rely on OpenID to prove a user is *what* they
claim to be? The cautious would say no but I thought the question was
interesting. Should proving to Google that I am a human be good enough
for an RP to believe it too? Is there an implied transitive property
of trust that comes along with using some services as opposed to others?
Just a thought.
=Rabbit
Cyber Punk Rock !
More information about the general
mailing list