This is nothing to worry about. Canada a police state? Canada is perhaps the most free country in the world.
An identity simply provides a mechansim for the government to be relatively sure they are dealing with whom they think they are for online transactions -- much like you have to show some ID in some circumstances.
No one has to use their digital ID if they don't want to engage in online transactions.
For those interested in trying free digital ids, Thawte has a web of trust program for free x.509 certificates. I think they run the program as a loss leader -- they hope people will upgrade to paid-for certs.
I think single-sign-on is more secure than using a keychain because:
- the keychain ends up holding a wack of stuff.
- its easer to attack the keychain physically than a service provided by a trusted third party.
And No-one can keep track of more than a few high-entropy passwords. Most people have much less security by not using single-sign-on because their passwords are all the same or similar.
This is really good news. I am so tired of keeping track of userids and passwords for all the sites I access.
Microsoft is in a tough spot. They innovate like crazy, but the American way is to trash success. Liberty alliance is a passport knockoff created, not for a profit motive for the member firms, but as a step towards hurting microsoft because. That action basically just created a huge split in single-sign-on so neither took off.
Passport was never for profit and is extremely convenient
IMO Mozilla's architecture is bogus. Its build on old-style monolithic C++ code. C++ is notoriously hard to get right and mozilla is buggy because of that. C++ tends to execute slowly despite being so close to the hardware due to huge code size and a heap that ends up fragmented and poor paging.
Java or Microsoft.Net ® would have been far superiour technologies to build mozilla on, and it would be a lot easier to distribute due to the portability of ECMA CLI/Java code.
Slashdot Mirror
This is nothing to worry about. Canada a police state? Canada is perhaps the most free country in the world. An identity simply provides a mechansim for the government to be relatively sure they are dealing with whom they think they are for online transactions -- much like you have to show some ID in some circumstances. No one has to use their digital ID if they don't want to engage in online transactions. For those interested in trying free digital ids, Thawte has a web of trust program for free x.509 certificates. I think they run the program as a loss leader -- they hope people will upgrade to paid-for certs.
I think single-sign-on is more secure than using a keychain because: - the keychain ends up holding a wack of stuff. - its easer to attack the keychain physically than a service provided by a trusted third party. And No-one can keep track of more than a few high-entropy passwords. Most people have much less security by not using single-sign-on because their passwords are all the same or similar.
This is really good news. I am so tired of keeping track of userids and passwords for all the sites I access. Microsoft is in a tough spot. They innovate like crazy, but the American way is to trash success. Liberty alliance is a passport knockoff created, not for a profit motive for the member firms, but as a step towards hurting microsoft because. That action basically just created a huge split in single-sign-on so neither took off. Passport was never for profit and is extremely convenient
IMO Mozilla's architecture is bogus. Its build on old-style monolithic C++ code. C++ is notoriously hard to get right and mozilla is buggy because of that. C++ tends to execute slowly despite being so close to the hardware due to huge code size and a heap that ends up fragmented and poor paging. Java or Microsoft .Net ® would have been far superiour technologies to build mozilla on, and it would be a lot easier to distribute due to the portability of ECMA CLI/Java code.