Users on Public Computers
Dick Hardt
dick at sxip.com
Tue Nov 7 16:14:21 UTC 2006
On 6-Nov-06, at 4:41 PM, Joshua Viney wrote:
>
> One solution to consider would be a global sign-out feature on
> relying party sites that signs users out of their IdP as well.
-1
global sign-out has many issues -- with SXIP 1.0 we had it, and it
was actually irritating, you want to logout of site, not out of all
sites, and having two logout like buttons with similar functionality
is confusing ... I can go into more details, but have written about
it in the past
> Another solution would be to make very specific recommendations
> about messaging users who may be using public computers.
+1
Using your IdP from a public computer has many risks, and the IdP
should take extra precaution in how it works with users on public
computers.
-- Dick
More information about the user-experience
mailing list