Slashdot Mirror

← Back to Stories (view on slashdot.org)

Gates Says Microsoft Will Support OpenID

Posted by kdawson on from the who-i-am dept.

An anonymous reader writes "In his RSA conference keynote today, Bill Gates announced that Microsoft will support the decentralized OpenID digital identity protocol, in addition to WS-* and CardSpace (transcribed notes, video). From its roots in LID, i-names, and Sxip, the first major deployment in LiveJournal, and now with support from Techorati, Magnolia, Symantec, a suspected mass-deployment by AOL, and a number of startups — using URLs as digital identities has caught hold."

4 of 73 comments (clear)

  1. It's not just MS support by blowdart · · Score: 5, Informative

    It's a two way thing; OpenID will support CardSpace as an identity selector. This is a "good thing", as it will stop the man in the middle attacks OpenID is very prone to. Of course the OpenID identity providers need to add support, like MEX endpoints and WS-Trust, which are all open specs.

    CardSpace itself doesn't care what's on the identity provider side, they just need to talk the right talk.

  2. Re:Bad idea by Fastolfe · · Score: 4, Informative

    OpenID is not intended to establish trust or prevent comment spam. It's just there to guarantee to a participating site that the "identity" URL it's been given is indeed owned by the user (agent) presenting it. It doesn't even guarantee to a visitor that the comment they're reading was actually posted by the person it says it was posted by, because that would require that the visitor trust the participating site.

    All of these FAQs and more are addressed on the OpenID site linked in the article summary.

  3. Wikipedia entry and Identity providers by Lord+Satri · · Score: 3, Informative

    The wikipedia entry is quite informative. With OpenID, unlike XNS.org (for those who remember), you need an 'identity provider': A service provider offering the service of registering OpenID URLs or XRIs and providing OpenID authentication (and possibly other identity services), and here's the official list of identity providers. And while we're at it, the list of services that support OpenID.

    --
    Animoog.org
  4. Re:Embrace, by CoughDropAddict · · Score: 3, Informative

    Unfortunately, OpenID will utterly fail in it's task: it will never be a trustworthy source of identification.

    You seem to be confused about the scope of OpenID. OpenID is not a system for tying user accounts to personal identities. It simply provides secure, distributed user accounts. It's not failing at it's task, it's failing at a task that you seem to want, but OpenID was never designed to solve.