Security: risk and reward
OpenID is a great example of a technology borne out of the failure of centralized schemes. Simply put, OpenID is a decentralized user-centric identity framework. It replaces dozens of username/password pairs with a single Universal Resource Identifier (URI). Let's say I wanted to have a unique ID that was under my control. I create an ID on an OpenID compliant identity server and add a link to it on my personal Web site, Web page, blog and so on. Thereafter, I use my Web address (say www.antonopoulos.com) as my logon identifier on various sites. Instead of registering a separate ID on each site, I hand them my URI and the Web server I am visiting hands off the authentication to my chosen identity vendor.
[ Read more ]