This link has been bookmarked by 23 people . It was first bookmarked on 25 Mar 2007, by Fuzbolero ..
-
04 Jun 07
-
OpenID is a web-based, distributed authentication protocol set to become a standard way of signing in to websites. OpenID enables you to keep control over your own identity by separating identity 'providers' and 'consumers'. You register your 'identity' or 'account' at a single OpenID provider and then you have instant access to a vast array of service providers that are OpenID consumers. However, with great power comes great responsibility. OpenID is highly susceptible to phishing attacks unless proper counter-measures are taken by the providers. We will demonstrate how to do a very simple phishing attack that already works for most OpenID providers. We will also give some possible (non-)solutions to the problem.
-
Identity providers are currently popping up like mushrooms, actually quicker than consumers. Only few of them realise what kind of responsibilities lie on their shoulders. OpenID might just be the dawn on a new web era, in which the scattered identities of web users start to take shape. In this new era an identity provider is a crucial gathering point that should cherish its members like a mother hen. Don't let them go the wrong way. Want the best for them.
-
-
13 May 07
-
01 May 07
-
18 Apr 07
-
13 Apr 07
-
03 Apr 07
Ludovico MagnocavalloOpenID is highly susceptible to phishing attacks unless proper counter-measures are taken by the providers. We will demonstrate how to do a very simple phishing attack that already works for most OpenID providers. We will also give some possible (non-)sol
-
31 Mar 07
-
28 Mar 07
-
26 Mar 07
-
24 Mar 07
Would you like to comment?
Join Diigo for a free account, or sign in if you are already a member.