[OpenID] OpenID Providers Invited to Join in an NSTIC Pilot Proposal
SitG Admin
sysadmin at shadowsinthegarden.com
Thu Feb 16 02:21:11 UTC 2012
Please note: I think this is a stupid idea. I'm only interjecting it
because it's possible that the people who are smarter than me will
say "Actually, . . . "
>Before NSTIC came about it was clear to many people that having
>multiple protocols and identity providers servicing smaller niches
>is not an ideal situation.
Decentralized also means scattered. A thousand smaller providers
don't provide anywhere near the same level of assurance as a single
strong (mil-spec) provider. But this problem seems familiar, somehow;
didn't PGP try to solve a similar dilemma with its Web of Trust?
I don't see how OpenID (or small providers thereof) could adapt the
same solution, especially since we're speaking of companies (not
individuals) and peer audits (which would still require some sort of
standards anyway).
-Shade
7C25 712A 4866 14B9 B08D
FACD BB29 3326 3924 3E22
More information about the general
mailing list