Upon 2020

Upon2020 (archive)

  • Marc: OpenID should be the brand for the “Open Stack”

    Marc Canter raises what many in the community have been saying for a long time, but what the OpenID Foundation seems to have a hard time wrapping its collective minds around: … OpenID can actually solve … [many] issues – by embracing other complementary technologies (like oAuth, OpenSocial, Portable Contacts, microformats, FOAF and RSS/Atom) to…

  • Making OpenID More Usable: A Better State Diagram of Web Authentication

    Traditionally, a state diagram (aka state-event model) of authentication on the web is very simple. It has only two states: Anonymous and Authenticated. A user’s session moves from Anonymous to Authenticated upon successful presentation of valid credentials (such as a password). It moves back to Anonymous if the user logs out, or after the user’s…

  • Let’s Draw the “Open Stack” as a Proper Stack

    A somewhat problematic picture has been floating around recently depicting the so-called “Open Stack”: There is just one problem with it: the dependencies are all wrong. For example, OpenID does not depend on OAuth; both depend on XRDS-Simple, however. That means the stack isn’t actually a stack and perhaps a lot more confusing than it…

  • Why End-to-End Security is Important

    The Telegraph reports: …hundreds of chip and pin machines in stores and supermarkets across Europe have been tampered with to allow details of shoppers’ credit card accounts to be relayed to overseas fraudsters. These details are then used to make cash withdrawals or siphon off money from card holders’ accounts in what is one of…

  • Yahoo!’s OpenID Usability Research

    Allen Tom of Yahoo! announced that results of their OpenID usability studies are available. It’s great to see them do that — both doing the study, and releasing the results. Google did something similar earlier. Are the results depressing? Personally, I don’t think so: instead, they are a call to action. Let’s get our hands…