Slashdot Mirror

← Back to Stories (view on slashdot.org)

The Case for OpenID

Posted by Zonk on from the halt-and-identify-yourself dept.

An anonymous reader writes "VeriSign and NetMesh are making the case for OpenID, the grass-roots, decentralized digital identity system already supported by LiveJournal, Six Apart, Technorati, VeriSign and many startups, reportedly growing 5% every single week. They say OpenID 'is fundamentally different from other identity technologies' because it is a 'fully decentralized system' and has a 'much lighter cost structure' than any alternative, like Microsoft Passport, CardSpace or Liberty Alliance. Time to remove username and password from your site and add OpenID libraries instead, so visitors can authenticate with their blog URL?" From the article: "If tomorrow, for example, you decide you don't like the Diffie-Hellman cryptographic key exchange at the root of OpenID authentication, you can develop your own way of authenticating, and deploy it within the OpenID framework. If you have an idea for a new identity-related service that nobody else ever thought of, you can deploy it into the OpenID framework as soon as your code is ready. This radical decentralization on all levels of the stack, both technically and organizationally, is a very strong catalyst for attracting innovators and their innovations. This makes OpenID a superior choice for identity-related innovation."

13 of 229 comments (clear)

  1. You smell! by LiquidCoooled · · Score: 1, Funny

    The article is right, I don't like the Diffie-Hellman cryptographic key exchange, it smells.
    I propose the slashdot implimentation of the cryptographic key exchange involve should double rot-13.

    --
    liqbase :: faster than paper
    1. Re:You smell! by spellraiser · · Score: 1, Funny

      Are you crazy?

      Double rot-13 is vulnerable to a man-in-the-middle attack. Triple rot-13 is the way to go.

      --
      I hear there's rumors on the Slashdots
    2. Re:You smell! by eis271828 · · Score: 2, Funny

      I'm sorry, I couldn't read your post. Would you mind decrypting it? This truly is a remarkable method.

    3. Re:You smell! by jZnat · · Score: 2, Funny
      As with all things, this can be solved with a small Perl script:

      perl -pe 'y/[A-Za-z]/[A-Za-z]/'
      --
      'Yes, firefox is indeed greater than women. Can women block pops up for you? No. Can Firefox show you naked women? Yes.'
  2. 5% weekly growth by Mr.+Underbridge · · Score: 5, Funny

    reportedly growing 5% every single week.

    Translation: last week the install base consisted of his algebra class. This week he installed it on his mom's computer. Next week he's going to grandma's house and he'll install it there too.

  3. WOW by giorgiofr · · Score: 2, Funny

    Now if they only leverage their know-how and implement top-of-the-line solutions thanks to their syniergies, they'll be buzzword 1.0 compliant, too! I can't wait!

    --
    Global warming is a cube.
  4. Re:OT complaint about “ID”. by Anonymous Coward · · Score: 1, Funny

    Same reason people type PIN numbers into ATM machines. We simply don't care.

  5. Re:so it will be OpenID to bind them by BoberFett · · Score: 3, Funny

    Multiple passwords? Are you saying I shouldn't use the same password at my bank that I use on bustybabes.com?

  6. Re:Those are correct. by grahams · · Score: 1, Funny

    He said PIN Number (Personal Identification Number Number) and ATM Machine (Automatic Teller Machine Machine).

    Not as good as the Windows WDM Driver Model.

  7. Overly complicated by cortana · · Score: 5, Funny

    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA1

    OpenID seems rather complex. There are already decentralised systems for authenticating a user's identity. But, if it gains momentum I would be happy to use it. One thing I can't work out is how I can create an identity. I have my own domain name and web site; I don't want to rely on Livejournal or another third party to maintain the notion of my identity.
    -----BEGIN PGP SIGNATURE-----
    Version: GnuPG v1.4.5 (GNU/Linux)

    iD8DBQFFdYQlshl/216gEHgRAk00AJwLvCf xLrtlKGDHcrIp7jidODlrTQCgqCPx
    czXJO4lwp5Znr+A7sSr rPJA=
    =MeMH
    -----END PGP SIGNATURE-----

  8. Re:No way! by DuckDuckBOOM! · · Score: 2, Funny
    I'm sure all of them will be extremely enthusiastic about my new uber-cool, super high tech suicide machine.
    As long as it runs on Linux.
    --
    Life is like surrealism: if you have to have it explained to you, you can't afford it.
  9. Actually, no problem! by Anonymous Coward · · Score: 2, Funny

    Do you really want your registration for eBay, Amazon, the communist party website, your Christian youth club forum and this bondage fetish site that you frequent to be tied together?

    Actually, this is probably not a problem! Presumably, if you're into bondage, you don't mind things being tied together...

  10. Re:so it will be OpenID to bind them by orangeyoda · · Score: 2, Funny

    ILUVTITS
    LVTT
    5888