WebApp Sec mailing list archives

Re: OpenID and the web

From: "Babu.N" <babun () intoto com>
Date: Thu, 27 Mar 2008 10:38:21 +0530


Yes, it is difficult to configure it for supporting sites.

But it does save us from registering at multiple webistes &remembering the passwords of each of them.



- Babu

At 06:53 AM 3/26/2008, Eric Marden wrote:

Personally, I don't see the use. Its just as much trouble to configure
it for the supporting sites, as it is sign up for that site in the
first place. Most of the people that support it now, I already have
'regular' accounts for, and no compelling reason to switch it -
especially if I'm in a hurry (which like most of us, is all the time).

And while support surges - I don't see adoption picking up the same
way. Only my geek friends know about it, and even less of those people
even use it.

Unlike passport and other big splashes in this space, at least its
more of an open system. Passport (which was first code named
hailstorm) never really made it past Microsoft's gates, and eventually

just morphed into MS's Live ID today... in other words, theirsingle- sign-on solution for their own network of web stops). Butlike another

poster indicated it was a lot of press with out a long lasting impact.

Maybe Open ID is different, but I haven't been impressed yet.


Eric Marden
xentek: enlightened internet solutions
http://xentek.net/

On Mar 23, 2008, at 8:15 AM, Steven Rakick wrote:

Hello list,

I'm curious what the group thinks about the recent
surge in support for OpenID across the web and the
impact it will have.

1) Beemba - http://www.beemba.com
2) ClaimID - http://www.claimid.com
3) MyOpenID - http://www.myopenid.com

These sites are gaining in popularity quickly and with
the announcements of support from big players Yahoo,
Microsoft and Google, combined with smaller web2.0
celeb-run sites like Digg, OpenID appears to what will
eventually be the norm.

Thoughts?

I've also noticed that many of these sites are
bundling Information Card support (CardSpace on
Windows). Sounds like a good idea as it compliments
OpenID and helps address some weaknesses.

Again, any thoughts?

I'm really just interested in a dialog.

-sr



____________________________________________________________________________________
Be a better friend, newshound, and

know-it-all with Yahoo! Mobile. Try itnow. http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ



-------------------------------------------------------------------------
Sponsored by: Watchfire
Methodologies & Tools for Web Application Security Assessment
With the rapid rise in the number and types of security threats, web
application security assessments should be considered a crucial
phase in the development of any web application. What methodology
should be followed? What tools can accelerate the assessment
process? Download this Whitepaper today!

https://www.watchfire.com/securearea/whitepapers.aspx?id=70170000000940F
-------------------------------------------------------------------------



-------------------------------------------------------------------------

Sponsored by: Watchfire Methodologies & Tools for Web ApplicationSecurity Assessment With the rapid rise in the number and types ofsecurity threats, web application security assessments should beconsidered a crucial phase in the development of any webapplication. What methodology should be followed? What tools canaccelerate the assessment process? Download this Whitepaper today!

https://www.watchfire.com/securearea/whitepapers.aspx?id=70170000000940F
-------------------------------------------------------------------------





********************************************************************************

This email message (including any attachments) is for the sole use of the intended recipient(s)and may contain confidential, proprietary and privileged information. Any unauthorized review,use, disclosure or distribution is prohibited. If you are not the intended recipient,please immediately notify the sender by reply email and destroy all copies of the original message.Thank you.

Intoto Inc.


-------------------------------------------------------------------------

Sponsored by: WatchfireMethodologies & Tools for Web Application Security AssessmentWith the rapid rise in the number and types of security threats, web application security assessments should be considered a crucial phase in the development of any web application. What methodology should be followed? What tools can accelerate the assessment process? Download this Whitepaper today!

https://www.watchfire.com/securearea/whitepapers.aspx?id=70170000000940F
-------------------------------------------------------------------------

Current thread:

OpenID and the web Steven Rakick (Mar 25)
- Re: OpenID and the web David Wall (Mar 25)
  - Message not available
    - Re: OpenID and the web David Wall (Mar 25)
- Re: OpenID and the web Adrian Migraso (Mar 25)
- Re: OpenID and the web Eric Marden (Mar 26)
  - Re: OpenID and the web Babu.N (Mar 26)
    - Re: OpenID and the web Razi Shaban (Mar 27)
    - Re: OpenID and the web Jeff Robertson (Mar 27)
    - RE: OpenID and the web Calderon, Juan Carlos (GE, Corporate, consultant) (Mar 27)
    - Re: OpenID and the web Lucas Oman (Mar 27)
    - Re: OpenID and the web Razi Shaban (Mar 27)
    - Re: OpenID and the web David Wall (Mar 27)
    - Re: OpenID and the web Jeremiah Cornelius (Mar 27)
    - RE: OpenID and the web Chris Grove (Mar 28)
- <Possible follow-ups>
- Re: OpenID and the web Pete Jansson (Mar 27)
  - Re: OpenID and the web baldr (Mar 27)