Feed Sign in with OpenID OpenID

Simon Willison’s Weblog

prooveme.com. An OpenID provider that uses SSL client certificates (which you install in your browser) for authentication.

Posted 22nd February 2007 at 12:01 pm

Tagged , , ,

2 comments

  1. That's an interesting approach, but I think people regularly want to log in to the same site as different accounts without switching users or profiles. (Mine and my wife's gmail comes to mind.)

    Perhaps if profiles weren't such a pain in the ass to manage, that'd be different.

    And "yes, you're always logged in" is a pain on any public computer.

    Still... OpenID avoids multiple auth sources, and that minimizes the certificate distribution problem.

    Jeremy Dunck - 23rd February 2007 14:27 - #

  2. Turning on the selection of certificates isn't that difficult to manage in Firefox. And maybe we can make extensions for people who do share computers.

    We are considering other options as well. Such as allowing multiple profiles attached to a single certificate (ideal maybe for family computers).

    But what we really like about certificated OpenID is the control that the user can have by distributing subsidiary certificates to agents. This is our vision.

    Nic Ferrier - 23rd February 2007 17:31 - #

Sign in with OpenID

Auto-HTML: Line breaks are preserved; URLs will be converted in to links.

Manual XHTML: Enter your own, valid XHTML. Allowed tags are a, p, blockquote, ul, ol, li, dl, dt, dd, em, strong, dfn, code, q, samp, kbd, var, cite, abbr, acronym, sub, sup, br, pre

A django site