Proposal: An anti-phishing compromise
Paul Madsen
paulmadsen at rogers.com
Thu Feb 1 22:42:25 UTC 2007
sorry, trying to straddle worlds/terminology
OpenID SAML
RP == SP (Service Provider)
OP == IDP (Identity Provider)
Josh Hoyt wrote:
> On 2/1/07, Paul Madsen <paulmadsen at rogers.com> wrote:
>> Hi Josh, do I understand correctly that the motivation for your proposal
>> is not 'fix' the phish problem, but to simply hilite it so that RPs will
>> begin to put pressure on their OPs to move to something beyond
>> passwords?
>>
>> If this is the case, perhaps allowing an SP to add it to its request for
>> authentication would give a direct (and loggable) mechanism by which
>> the RP can provide feedback to the OP product managers?
>
> What's an SP as opposed to an RP?
>
> Josh
>
>
--
Paul Madsen e:paulmadsen @ ntt-at.com
NTT p:613-482-0432
m:613-302-1428
aim:PaulMdsn5
web:connectid.blogspot.com
More information about the specs
mailing list