Consolidated Delegate Proposal
Drummond Reed
drummond.reed at cordance.net
Tue Oct 10 18:42:35 UTC 2006
> Martin wrote:
>> I'm surprised that our resident privacy advocates aren't making a
>> bigger
>> deal out of this. (If the privacy advocates have no problem then I'll
>> let this go, since this isn't a use case I feel particularly strongly
>> about myself.)
>
>Dick wrote:
>
>I was supportive of keeping the delegate from the IdP until I
>realized that the delegation was public knowledge and could not be
>hidden from the IdP.
The same argument convinced me, too. If public XRDS documents are what we're
using to provide user control of identifier synonyms and thus provide
identifier portability -- which is the clearest and cleanest approach we've
seen -- then the best thing we can do from a privacy perspective is not
mislead users that they are protecting their privacy by using a "public"
OpenID identifier and a "private" identifier with their IdP.
=Drummond
More information about the specs
mailing list