LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Limits of SSO

Limits of SSO

Posted Feb 3, 2011 18:07 UTC (Thu) by rsidd (subscriber, #2582)
Parent article: The end of OpenID?

it would be horrifying to be greeted by your bank's log-in screen asking for your Facebook ID.

Not any worse, in my opinion, than a bank asking for OpenID.

I'd rather have a distinct login and password for each bank account, thanks. And hope the bank has half a clue about security.

(Log in to post comments)

Limits of SSO

Posted Feb 3, 2011 22:55 UTC (Thu) by nybble41 (subscriber, #55106) [Link]

If the bank implements OpenID properly you can still have one OpenID for each account, with distinct passwords, personal security certificates, hardware keys, or whatever else you care to use for authentication. Nothing in the OpenID spec forces you to use a single identity everywhere, or to rely on a particular provider. OpenIDs can easily be both more secure and more convenient than most bank sign-in processes I've encountered.

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds