[OpenID] owning one's own identity
Steven Livingstone-Perez
weblivz at hotmail.com
Thu Sep 10 00:19:37 UTC 2009
In general, I think each RP should be able to decide who it wishes to allow. I don't think there is a point and click solution ... without verified attributes as part of an OpenID then it doesn't mean much in general in any case. If i sign up to a US OP and say "ABC" it doesn't make it any more/less true that if i did the same on a UK OP.
These are very US centric examples - are they valid concerns? Are they any different from real world identity (my bank has moved countries about 3 times in the last 5 years)?
From: Johannes Ernst
Sent: Thursday, September 10, 2009 1:07 AM
To: general List
Subject: Re: [OpenID] owning one's own identity
Opening up the list of accepted IdPs has some weird consequences when interacting with the government (as opposed to others)
E.g.:
What about an IdP in Russia or China? Would the US government accept identities asserted by an entity outside of the country? What about Iran? Before the revolution? And then what?
What about a multi-national headquartered, in, say, New York? That serves some of its identities from a data center in Mexico? If it now moved headquarters to Bermuda, what then? What if it was acquired by a Chinese company with strong ties to the Chinese government?
Full post:
http://netmesh.info/jernst/big_picture/openid-and-government
--------------------------------------------------------------------------------
_______________________________________________
general mailing list
general at lists.openid.net
http://lists.openid.net/mailman/listinfo/openid-general
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20090910/39aa8dce/attachment.htm>
More information about the general
mailing list