Network World
Thursday, November 26, 2009
DNSstuff.com
Get information about your IP
IP Information
50+ On-demand DNS and network tools
NetworkWorld.com > Security >

RSA - Microsoft pledges support for OpenID

By Robert McMillan, IDG News Service, 02/06/07

Microsoft has thrown its weight behind OpenID, an emerging Web authentication standard.

Chinese eBay rival branches out with branded mobile phone
11/26/09
China's biggest online auction and retail Web site plans to stamp its brand on a new mobile phone, the first time it's name will be put on a device, according to a source with knowledge of the situation.

Taiwanese researchers show several flexible e-reader screens
11/26/09
Taiwan's Industrial Technology Research Institute (ITRI) showed off a number of flexible display screen technologies in Taipei on Thursday as part of a show promoting e-readers and e-paper.

Wipro sets up global services delivery from China
11/26/09
Indian outsourcer Wipro has set up a global services delivery center in Chengdu in southwest China, targeting customers in the U.S., Europe, and other markets outside the country.

See our continuing coverage of the RSA show.

Upgrading to VMware vSphere with vWire: Download now

The announcement was made Tuesday at the RSA Conference in San Francisco during a joint keynote by Microsoft Chairman Bill Gates and Chief Research and Strategy Officer Craig Mundie that was long on vision and short on specifics.

Microsoft pledged to work to integrate OpenID with its CardSpace identity management software, which is now available in conjunction with Windows Vista. "The marriage of CardSpace and OpenID 2.0 is actually a giant step forward," Mundie said.

By integrating these two technologies, Microsoft expects to "eliminate the issue of the man-in-the-middle-attack," Mundie said. In these attacks, which are increasingly being used by phishers, a thief steals sensitive information by setting up a fake Web site that passes information back and forth between the victim and the legitimate Web site.

OpenID is an emerging open source standard that simplifies the task of logging on to many different Web sites.

Gates and Mundie spent much of their keynote discussing how their company plans to simplify security and make the process of managing digital identities easier.

IT professionals could achieve both ends by getting rid of log-on passwords and replacing them with strong, certificate-based authentication techniques like smart cards, Gates said. "Passwords are not only weak. Passwords have a huge problem. If you get more and more of them, the worse it is," he said.

"We see smart cards ... [and] certificates in general as the way these things should go. You'll be presenting certificates as opposed to weak passwords," he said.

Microsoft hopes to drive the adoption of smart cards, with the launch of its Identity Lifecycle Manager 2007, introduced at RSA. Expected to ship on May 1, this software integrates technology from Microsoft's 2005 acquisition of Alacris with the company's Identity Integration Server. The software will make it easier for users to integrate strong authentication technologies like smart cards into Microsoft networks.


The IDG News Service is a Network World affiliate.

RSA - Microsoft pledges support for OpenID By Micronet on February 6, 2007, 4:34 pm Reply | Read entire comment One attendee said the Mundie and Gates Keynote at RSA '07 was "content-free" - Isn't that what you get when you think of Microsoft and security? See article.

All comments (1)

Note: Register to have your user name appear; otherwise your comment will show up as "Anonymous."

*Anonymous comments will only appear once they are approved by the moderator.

Copyright 2008 Network World Inc.