Trust/threat model for OpenID
Gabe Wachob
gwachob at wachob.com
Fri Jul 28 10:23:58 UTC 2006
Has someone written up a trust/security model for OpenID (ie who
trusts who for what, and what the threats are to the parties
involved?)
I'm not sure what assumptions are being made about the participating
parties so I'm not terribly comfortable assessing its use for a
variety of environments other than things like SSO to livejournal for
posting comments ;-)
TIA
-Gabe
--
Gabe Wachob / gwachob at wachob.com \ http://www.wachob.com
CTO, Amsoft / gabe.wachob at amsoft.net \ http://www.amsoft.net
More information about the yadis
mailing list