Friday, July 25, 2008

OpenID, it took people 15+years?

The premise of having an ID file which allowed one access to a Lotus Notes and Domino application has been a mainstay from Release 1.
Of course over time the encryption key got better, went through a few government regulation changes but the ID is still with us and going strong.

Now the new age Web 2.0 people have decided they don't like logging in to 10 different sites, there should be a better single sign on way.

SSO is important, funny how the "legacy" SSO is just not good enough though, or perhaps LDAP is not as useful as once thought.

Do you physically need an ID file? Well Lenovo and IBM thought so with their biometric readers and obviously Lotus did. SecurID or some other digital ID format as well.

So once again the world has finally caught up to Lotus. So far ahead of everyone else, really they were and still are in some cases if you were in the Lotusphere side room where the new projects were shown.

Universal ID, for the US is basically your social security number but no one would use that on the internet.

I have an openID, came via Yahoo or some other site recently.

Really this is about one giant LDAP but in a more granular approach I think. I wish my Directory mentor would discuss this, Dr. Goodman you out there?

2 comments:

  1. Open ID can, in theory, assure that once someone signs on to a site that the same person signs on again with the same openid. That's a very very very long way from anything resembling security.

    OpenIDs are too easy to get -- meaning you can't just accept any data associated with them that you don't verify. You can only say "yep, same open ID as last time" but you can't tell at all who they are based on what the ID says.

    ReplyDelete
  2. I agre entirely, but why is that any different than if I log in as my wife on a pc using her notes id?

    My intention was that peopel see the premise but respect the security behind it. OPenID I don't doubt is limited right now in security.
    Not that I think Microsoft's MSN/hotmail/Live Id is any better.

    The post was to show that once again Lotus was ahead of the pack.

    ReplyDelete