- Get a grip or you don't get the job
- Desktops of the future here today
- Researcher hides IE attack on Web
- Cisco third quarter 2008 channel stuffing
- Sci-Fi's goofiest gadgets and technology
Rss FeedRss Feed
Flash vs Silverlight for king of Web multimedia. Listen now!
Tech vendors are like high school. Listen now!
Before now, midsize customers settled for either an expensive and complex array or low cost solution that lacked functionality. Now experience virtual storage with enterprise class functionality at an affordable price.
Get the latest on storage technologies that allow IT professionals to better cope with new IT demands. Learn how storage technologies can help you successfully tackle e-Discover, regulatory compliance, green data center initiatives and the data explosion. Get all the details now.
HP's Network Lifestyle Management can help you automate network processes and improve NOC efficiency. This webinar is part three of a four part series on Business Services Management (BSM) evolution to help you better align IT with business objectives. Register for this event scheduled for Wednesday, January 30, 2008 at 11:00 a.m. PDT/2:00 p.m. EDT to learn more. Register for this live webcast now.
So the line of defence remains is "PIN NUMBER" Wowww what a strong security ? HSBC , invest some money...- Anonymous
Comprehensive Network & Voice Management Visit CA Network & Voice Management Resource Center and get insights into industry best practices, information that helps you to address your challenges.
Voice over IP (VoIP) has much to offer in cost savings but some customers have concerns about VoIP call quality compared to the quality of traditional voice services. This white paper will help you learn how to take the right steps so that voice quality is assured.
Managing your network is serious business. This paper discusses the benefits of integrating configuration change-awareness into your network fault management solution
How many accounts do you have on the Internet? If you have as many as I do you'll probably have some tool for managing all of your logins. I use Siber Systems' RoboForm but it has one problem - it is PC-based which means that if you have multiple machines on your desk or you work from multiple locations you have a portability problem to solve. Siber Systems has addressed this problem with RoboForm2Go, which makes their system portable using either regular or U3 USB drives. Even so, that presupposes that you always have your nerd stick with you and that if you do, you can plug it in.
A very different approach is offered by OpenID, a decentralized open, lightweight standard for online service authentication that is supported by multiple providers. The technology underlying OpenID is open source and supported by the nonprofit OpenID Foundation.
The way that OpenID works is very clever: I won’t bore you with the somewhat convoluted mechanism other than to say that it relies on a site that knows you to provide validation to a site that doesn’t know you as to your identity by passing you through to the validating site which returns your credentials – if you are interested in more detail I recommend the Wikipedia entry, which explains the method quite clearly.
The Wikipedia article also covers the criticisms of the system, which are mainly concerned with issues of vulnerabilities that the system may have (these have yet to be substantiated).
Many of the major Internet players have bought into OpenID including Google, Yahoo, AOL, and VeriSign and it is claimed that there are now over 10,000 sites that support OpenID.
If you are developing or have an operational Web Application that uses authentication, this is a standard you should seriously consider adopting.
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com The Industry Standard IDG List Services |
 |
Copyright © 1994-2008 Network World, Inc. All rights reserved. |
Re: Standard?By Mark Gibbs on April 9, 2008, 2:53 pmUsing a strict definition of standard to be a specification ratified by a body with legal authority then much of what are considered standards in the IT world would...
Reply | Read entire comment
OpenID will start to change authentication in many waysBy tstewart2k on April 9, 2008, 2:17 pmOpenID is just starting to make an impact. It opens the path to allow both protected resources (web properties, enterprise, etc) and users to determine level of...
Reply | Read entire comment
Security & known issues?By Anonymous on April 9, 2008, 1:07 pmAny known issues using OpenID? When it should not be used?
Reply | Read entire comment
Standard?By Anonymous on April 9, 2008, 2:09 amWhile I'm fond of federated identity, and I think SAML and OpenID are great, this is no standard, and it went through no standards body. Ease of use is probably...
Reply | Read entire comment
View all comments