Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft Joins the OpenID Foundation

Posted by CmdrTaco on from the embrace-and-extend dept.

wertigon writes "Windows Live ID just became yet another OpenID-provider. While the cynical me wonders how long it'll be before Microsoft transforms OpenID to something proprietary, they have undoubtedly put even more weight behind the OpenID initiative. So, how long before I can use my OpenID to post on Slashdot?" Patches are always welcome, wertigon ;)

4 of 142 comments (clear)

  1. Color Me Confused by eldavojohn · · Score: 5, Informative

    Microsoft Joins the OpenID Foundation

    What a joke.

    Windows Live ID just became yet another OpenID-provider.

    True.

    they have undoubtedly put even more weight behind the OpenID initiative.

    False.

    So, how long before I can use my OpenID to post on Slashdot?

    Oh poor poor wertigon. You won't even be able to log into MS Live with it. I can go to wordpress, verisign, aol and all that jazz and login with my OpenID. I can go to sites listed as OpenID and login when I've never even been there before. Yet, when I go to the page that Microsoft lists for Live, I can't. Why is this? Because they're only providing IDs, not accepting other OpenIDs.

    You will soon be able to use your Windows Live ID account to sign in to any OpenID Web site!

    That's it. That's all you get. No future plans are listed to accept OpenID accounts either.

    OpenID's mission is to have one single login for every single website out there. So far, it was doing great. Now, I want to check my hotmail with my (pre-existing) OpenID. No luck. Unless you start at Windows Live and move to the rest of the OpenID sites, you are no closer to achieving OpenID's goal and vision. This is a ridiculous mangling of a great idea.

    When Microsoft fully supports it--when they both accept and provide IDs--that's when I'll agree with this headline. Microsoft should be implementing a way to associate your Live ID with your OpenID and use your OpenID to login to Live. But they aren't & I doubt they ever will.

    --
    My work here is dung.
    1. Re:Color Me Confused by Anonymous Coward · · Score: 5, Informative

      A lot of OpenID participants are provider only. Microsoft isn't helping the problem, but they aren't worse than a lot of other companies in this regard.

    2. Re:Color Me Confused by Anonymous Coward · · Score: 5, Informative

      There's no accredation. Login occurs by redirecting you back to your provider. You log in, or the provider establishes you're already logged in by means of cookies. Then your provider redirects you back, saying "yep, he's the holder of that openID".

      At no point does the accepting site get your user name and password. You can verify this by looking at your address bar. If you're still at the accepting site and they ask you for your user name and password, they're either doing it wrong or you're being phished.

  2. Re:Tinfoil Hat by DragonWriter · · Score: 5, Informative

    In what ways does the OpenID system promote user anonymity?

    It promotes anonymity by allowing services to operate that require associating the initiator of one action with the initiator of a prior action, without requiring the "meatspace" identity of either. That is, it provides a reasonable means for a subscription-based service to verify "the person accessing this resource is the one that established this account" without ever identifying who the person is that established the account.

    Since many services rely on providing that kind of relation between the person establishing an account a person requesting a resource, it promotes anonymity to provide a means that allows those services to fill that need while users remain anonymous.