[OpenID] Fixing usability: can OPs indicate their claimed_id's are PPID's?

[SitG Admin]

>>  And that other RP's won't have SSL, so they *really* won't want 
>>that data flying across the channel for malicious parties to pick 
>>up.
>So what happens at sites that don't support HTTPS, but ask users for 
>their email addresses?

Assuming the OP cares enough to protect their users' (contact) 
information, which should first be seen by not sending the users' 
data UNsolicited, it might provide proxy E-mail addresses through its 
own domain when it detects that the RP is not using SSL.

-Shade