Comments on: Researching Google’s Moves in OpenID http://marshallk.com/googles-moves-in-openid-no-small-matter Thu, 17 May 2012 07:27:00 +0000 hourly 1 http://wordpress.org/?v=3.2.1 By: Pete http://marshallk.com/googles-moves-in-openid-no-small-matter/comment-page-1#comment-115750 Pete Mon, 13 Jul 2009 17:06:38 +0000 http://marshallk.com/?p=577#comment-115750 As a lawyer who helps people recover from identity theft, Google offering OpenID provider functionality raises privacy, identity theft, and legal concerns. In the event that the OpenID username and password database's security is compromised, a staggering amount of personal, private, and confidential information could end up in the wrong hands. OpenID is great for social bookmarking and posting; however, I would not recommend its use for banking, financial, medical or business use. I hope this helps, because this topic certainly deserves further investigation. As a lawyer who helps people recover from identity theft, Google offering OpenID provider functionality raises privacy, identity theft, and legal concerns. In the event that the OpenID username and password database’s security is compromised, a staggering amount of personal, private, and confidential information could end up in the wrong hands. OpenID is great for social bookmarking and posting; however, I would not recommend its use for banking, financial, medical or business use. I hope this helps, because this topic certainly deserves further investigation.

]]> By: Timothy Post http://marshallk.com/googles-moves-in-openid-no-small-matter/comment-page-1#comment-114286 Timothy Post Thu, 09 Jul 2009 12:22:29 +0000 http://marshallk.com/?p=577#comment-114286 The missing piece in the OpenID puzzle is for users to have the ability to validate, through DNS validation, a SUB-DOMAIN. There's two benefits to OpenID. The first, and most widely known, is the ability to have a single universal username for all your web logins. While this use of OpenID is fine it is not really that unique nor exciting. The second benefit is the ability to use your OpenID validated domain as a central social hub for all your web activity. The current group of providers makes people use a sub-domain linked to their own domains (e.g. marshall.myopenid.com. This requirement effectively locks you into that OpenID providers and makes it very difficult to migrate. The reason I am hopeful about Google Apps being an OpenID provider is that it already let's users set-up custom sub-domains by creating a new CNAME in your DNS settings. If google let's users do the same with their OpenID domains then this is indeed a game changer. I would recommend that Google take it one step further and let users create two sub-domains associated with their validated OpenID accounts- one for logins (login.marshallk.com) and another as their social hubs, lifestream.marshallk.com. If we really want to push the envelope then we should also suggest that Google link one's OpenID account with one's Google Profile account. Great to see Google push the OpenID community forward since it's been stuck for a while now. The missing piece in the OpenID puzzle is for users to have the ability to validate, through DNS validation, a SUB-DOMAIN.

There’s two benefits to OpenID. The first, and most widely known, is the ability to have a single universal username for all your web logins. While this use of OpenID is fine it is not really that unique nor exciting.

The second benefit is the ability to use your OpenID validated domain as a central social hub for all your web activity. The current group of providers makes people use a sub-domain linked to their own domains (e.g. marshall.myopenid.com. This requirement effectively locks you into that OpenID providers and makes it very difficult to migrate.

The reason I am hopeful about Google Apps being an OpenID provider is that it already let’s users set-up custom sub-domains by creating a new CNAME in your DNS settings.

If google let’s users do the same with their OpenID domains then this is indeed a game changer.

I would recommend that Google take it one step further and let users create two sub-domains associated with their validated OpenID accounts- one for logins (login.marshallk.com) and another as their social hubs, lifestream.marshallk.com.

If we really want to push the envelope then we should also suggest that Google link one’s OpenID account with one’s Google Profile account.

Great to see Google push the OpenID community forward since it’s been stuck for a while now.

]]>