Gates Says Microsoft Will Support OpenID 73
An anonymous reader writes "In his RSA conference keynote today, Bill Gates announced that Microsoft will support the decentralized OpenID digital identity protocol, in addition to WS-* and CardSpace (transcribed notes, video). From its roots in LID, i-names, and Sxip, the first major deployment in LiveJournal, and now with support from Techorati, Magnolia, Symantec, a suspected mass-deployment by AOL, and a number of startups — using URLs as digital identities has caught hold."
It's not just MS support (Score:5, Informative)
It's a two way thing; OpenID will support CardSpace as an identity selector. This is a "good thing", as it will stop the man in the middle attacks OpenID is very prone to. Of course the OpenID identity providers need to add support, like MEX endpoints and WS-Trust, which are all open specs.
CardSpace itself doesn't care what's on the identity provider side, they just need to talk the right talk.
Re:Bad idea (Score:5, Informative)
All of these FAQs and more are addressed on the OpenID site linked in the article summary.
Re:Embrace, (Score:3, Informative)
Re:Embrace, (Score:3, Informative)
People are able to represent themselves with their own identity provider, and that isn't an email address.
I'm wondering what kind of spam you're thinking about?
CardSpace is worth looking at (Score:3, Informative)
It's worth looking into the specifics of CardSpace, which I'm kinda suprised there were no links that talked about that end of the equation.
CardSpace community site [netfx3.com] (Part of
CardSpace community PM [fearthecowboy.com]
Re:Interesting Reading Reguarding Vulnerabilities (Score:3, Informative)
The first phpbb developer mistakenly thought that you didn't need the password to do this, but was contradicted in the second posting of the thread by the other phpbb developer who originally found the error. The rest of the thread is the first developer not understanding what was said.
OpenID has been around long enough that the major kinks have been ironed out. Not to say that bugs can't appear in the future that might compromise an OpenID server, but at the moment, this isn't one of those.
Ross
Wikipedia entry and Identity providers (Score:4, Informative)
Re:as OOXML? (Score:3, Informative)
Re:Embrace, (Score:4, Informative)
You seem to be confused about the scope of OpenID. OpenID is not a system for tying user accounts to personal identities. It simply provides secure, distributed user accounts. It's not failing at it's task, it's failing at a task that you seem to want, but OpenID was never designed to solve.
Re:Wikipedia entry and Identity providers (Score:3, Informative)