[OpenID] Graphical UIs

[Nate Klingenstein]

Breno,

We'd certainly find such support useful, particularly if different/ 
multiple sizes could be supported in such an approach.  I'd also like  
to see provision for a brief textual name.

The same mechanism would seem to work for OP/IdP's as well when  
performing selection at the RP, where we have more of a problem doing  
discovery and branding of login pages located at the RP.   
Unfortunately, a lot of our deployments are of such a scale(500+  
providers) that we wouldn't be able to utilize this, but for the  
smaller deployments or specialized user populations within the big  
deployments, I can see it being very useful.

The phishing concern is legitimate, as a user seeing the logo of a  
legitimate RP posted on their real login page at the right URL would  
probably be more credulous that the phisher was the legitimate RP.   
But I think human-mediated whitelisting is the only reasonable answer  
for this problem until a real scaleable trust/reputation fabric is  
built.

Great idea,
Nate.

On May 14, 2009, at 1:00 PM, Breno de Medeiros wrote:

> Taking the opportunity of the popup UI announcement, I would like to
> open a conversation that is not necessarily OpenID specific, but which
> is certainly directly related to our OpenID UI implementation. So this
> forum is probably as good as any to take it up. I am talking about
> branded graphics representing RPs in the OP authorization page. Or
> even ye olde favicon.ico's.