[OpenID] Questions about security? :)
Kleber - Corujito
corujito at gmail.com
Thu Apr 14 20:28:12 UTC 2011
Hi guys,
We are building a new OpenID Provider. It works, but we would appreciate
some security tips. Can you help us? :)
we read AX and SREG specs and we wonder if is there another way to pass user
information from Provider to RP?
We were figuring out if parameters could be passed in a encrypted way.
is there something from openid community that we are missing? I read from
openidconnect.com some time ago that it is considered 'openid 3.0'. Should
we implement it?
Thanks
--
Kleber Manoel Infante (Corujito)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20110414/0333d6f8/attachment.html>
More information about the general
mailing list