<div>It's not a centralized component[1].</div><div><br></div><div>I'm disappointed in Eran's post and wrote a response yesterday:</div><div><br></div><a href="http://www.abstractioneer.org/2010/06/xauth-is-lot-like-democracy.html">http://www.abstractioneer.org/2010/06/xauth-is-lot-like-democracy.html</a><br>
<br><div>Unfortunately, FUD sells and Eran's post is being retweeted and cited pretty widely. If you're going to agree with his objections, please read the rebuttals as well, and explain why you think they're not sufficient.</div>
<div><br></div><div>-John</div><div><br></div><div>[1] There is nuance here which I'm ignoring in order to get a clear message across. The initial implementation has a single centralized piece, a DNS entry, but no centralized services or data storage at all. The end game is a fully decentralized system, but you need a path to get there. Go read the details at <a href="http://www.abstractioneer.org/2010/06/xauth-is-lot-like-democracy.html">http://www.abstractioneer.org/2010/06/xauth-is-lot-like-democracy.html</a> or at <a href="http://googlecode.blogspot.com/2010/04/using-xauth-to-simplify-social-web.html">http://googlecode.blogspot.com/2010/04/using-xauth-to-simplify-social-web.html</a>.</div>
<meta charset="utf-8"><div><br><div class="gmail_quote">On Mon, Jun 7, 2010 at 7:40 AM, SitG Admin <span dir="ltr"><<a href="mailto:sysadmin@shadowsinthegarden.com">sysadmin@shadowsinthegarden.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<div><div class="im">
<div>><a href="http://hueniverse.com/2010/06/xauth-a-terrible-horrible-no-good-very-bad-idea/" target="_blank"><span></span>http://hueniverse.com/2010/06/xauth-a-terrible-horrible-no-good-very<span></span>-bad-idea/</a></div>
<div><br></div>
</div><div>Well, his points against it are quite valid. Having a centralized
component to a decentralized architecture, especially one that all
parties must *rely* upon, would violate the essential spirit of the
idea.</div>
<div><br></div>
<div>(That said, if any of them *want* to do it, they may do so
unofficially, with neither the involvement nor sanction of the
community. Then, when the inevitable user backlash arrives - or, as
you put it, "the shit hits the fan" - they alone suffer the
reputation hit and loss to market share, compounded by having done so
against the recommendations of the majority of the OpenID movement
itself.)</div>
<div><br></div>
<div>I realize that you're in favor of the centralized component, but
please do try to understand why this philosophy is diametrically
opposed by OpenID.</div>
<div><br></div>
<div>-Shade</div>
</div>
<br>_______________________________________________<br>
general mailing list<br>
<a href="mailto:general@lists.openid.net">general@lists.openid.net</a><br>
<a href="http://lists.openid.net/mailman/listinfo/openid-general" target="_blank">http://lists.openid.net/mailman/listinfo/openid-general</a><br>
<br></blockquote></div><br></div>