[security] Username / password etc. is out of scope for OpenID

[Eddy Nigg (StartCom Ltd.)]

Drummond Reed wrote:
>
> However there is already one network of IdPs that is defining their
> own operational requirements for OpenID: the XDI.org-Accredited
> I-Broker network (http://www.inames.net/register.html) that are using
> the XDI.org I-Service Specification for OpenID
> (http://iss.xdi.org/moin.cgi/OpenIdAuthnService).
>
Well, after reading various documentations it seems to me, that xdi.org
is very interesting, but everything else than free and open.  So this
was certainly to be expected, but my idea of an "OpenID Foundation"
would be somewhat different. Less of a business model and more of a
"Foundation" type...Also considering the opposition to SSL secured IDP
sites, than xdi.org is certainly out of reach for most of these
semi-professional providers, which most likely will exist in the interim...
>
> I stress “could” because no one has proven yet that this model will
> extend to identity services. However it certainly fits the model
> you’re describing.
>
Yes, I think so...
>
>  
>
> =Drummond
>
>  
>

-- 
Regards
 
Signer:      Eddy Nigg, StartCom Ltd.
Phone:       +1.213.341.0390
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-security/attachments/20061026/88ebbbea/attachment-0002.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: eddy_nigg.vcf
Type: text/x-vcard
Size: 636 bytes
Desc: not available
URL: <http://lists.openid.net/pipermail/openid-security/attachments/20061026/88ebbbea/attachment-0002.vcf>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 7282 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.openid.net/pipermail/openid-security/attachments/20061026/88ebbbea/attachment-0002.bin>