Thursday, January 10, 2008

OpenID, security and privacy

OpenID and to gain major support

Momentum appears to be building behind the related notions that users should have a single set of login credentials to sign into most—perhaps even all—of the web sites that they frequent and that they should be able to easily move their personal data between different social networking services. These ideas have gained so much traction recently that groups like and OpenID have made many pundits' lists of "what will be hot in 2008." But while reports this week show that OpenID and are gaining support from giants like Google, Facebook, IBM, and Verisign, a number of lingering questions about security and privacy remain.

Wouldn't a single set of login credentials be a huge honking security vulnerability?

1 comment:

Aswath said...

Even though the first thing people talk about OpenID is single sign-on, one can have multiple OpenIDs. The real benefit and the main point of OpenID is the service provider and the ID provider can be different entity. For more please see