SecurityRatty: tag: openid

An insecurity in OpenID, not many dead

2008-08-09 01:33:39 by Richard Clayton in Light Blue Touchpaper

...OpenID website, and that two more OpenID sites were weak as well (by weak we mean that a database lookup could reveal the private key OpenID, for those who are unfamiliar with it, is a scheme for allowing you to prove your identity to site A (viz: provide your user name and password) and then use that identity on site B. Theres a queue of...

Tags: openid, openid codebases, certs, weak certs, weak, openid sites, sun, suns openid website, trusts sun

OpenID family grows How it can transform Identity Federation between enteprises

2008-02-07 14:06:33 by Andras Cser in Security & Risk Management

...OpenID Foundation, we may actually feel that something in federated access management is going to change. It is finally not the case of a vendor proposing a new standard and adding to the cacophony of federation standards but a set of moves towards a simple technology that today can alleviate password management woes at service providers...

Tags: openid, openid foundation, openid camp, accept openid authentication, integration, strong authentication integration, identity federations proliferation, simple technology, technology

Yahoo tests support for OpenID

2008-01-09 00:00:00 by HASH0x8471120 in Network World on Security

Yahoo appears close to implementing OpenID, a Web authentication standard that relieves people of the need to remember multiple passwords to log into different Web sites

Tags: remember multiple passwords, web authentication standard, yahoo appears close, openid, relieves people, web sites, log

Yahoo to support OpenID single sign-on

2008-01-17 00:00:00 by HASH0x8b3d234 in Network World on Security

People with a Yahoo user name and password will be able to use that ID information to access non-Yahoo Web sites that support the OpenID 2.0 digital identity framework, reducing the amount of different logon information people need to create, remember and enter online

Tags: logon information people, people, information, digital identity framework, openid, support, enter online, yahoo user, remember

Major vendors join OpenID board

2008-02-07 00:00:00 by HASH0x8bb13d0 in Network World on Security

IBM, Google, Microsoft, Verisign and Yahoo have joined the corporate board of the OpenID Foundation, giving a boost to the group's efforts to simplify the process of signing into Web sites Fundamental Principles of Network Security Advertisement Protect the organization. Learn the 'Need To Know' aspects of network security. Free paper from APC

Tags: network security, web sites, board, free paper, openid foundation, fundamental principles, advertisement, google, boost

The nitty-gritty of information cards and OpenID interoperability

2008-09-01 00:00:00 by Dave Kearns in Network World on Security

Sometimes an idea occurs simply because it's time for it to occur. It occurs to multiple people in multiple places at, roughly, the same time. Often those ideas, brilliant though they may be in their own right, are simply the extension of the ideas of others - a synthesis of many thoughts to arrive at a new conclusion. That appears to be...

Tags: idea occurs simply, simply, occurs, user-centric, information cards, major user-centric models, multiple, multiple people, time

Notes from IEEE Web 2.0 Security and Privacy Workshop (W2SP2008)

2008-05-27 22:45:00 by Security Retentive in Security Retentive

...OpenID and the idea that email addresses (or things that look like email addresses) are much better identifiers than URLs. He sketched out how to modify OpenID to use email addresses or lookalikes for authentication rather than URLs. Some of his proposals hinge on using DNS lookups for a domain to find the authentication server much like we...

Tags: browser, browser security models, browser project, browser security model, security models, browser security, security, web, security challenges

Portable Identity and the BBC

2008-04-29 14:30:00 by Stuart King in Stuart King's Security and Risk Management Blog

...OpenID before on this blog (see entries from 9 Feb 2008 and 7 Feb 2007 ) and I've been quite enthusiastic about the prospects for this "open, decentralized, free framework for user-centric digital identity." It seems that the BBC have seen the potential and joined the OpenID foundation. Jem Stone , on his blog, makes the bold statement that...

Tags: portable identity, identity, user-centric digital identity, bbc, mobile phone, future plans, future, openid, openid foundation

User Experience in the Identity Community

2008-12-02 06:00:00 by Eric Sachs in Google Online Security Blog

...OpenID, SAML, InfoCards, etc. A major theme within the identity community this year has been about improving the user experience and growing the adoption of these technologies. The OpenID community is making great progress on user experience, with Yahoo, AOL, and Google quickly improving the support they provide (read a summary from Joseph...

Tags: identity community, community, user experience, infocard community, identity standards, internet identity standards, openid community, openid, people

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo