— The RISC OS Authentication Service —
Frequently Asked Questions (OpenID)
| Not logged in | Log in |
| Home |
| Register |
| FAQ |
| Terms of Use |
| Contact |
| Frequently Asked Questions | ||||||
| Purpose | Security | Privacy | Spam-prevention | Accounts | Kerberos | OpenID |
OpenID
What is OpenID?
OpenID is a decentralised authentication protocol for accessing web sites. You authenticate directly with an ‘identity provider’ (such as this service); other sites ask the identity provider whether you have done this.
What are the benefits of OpenID?
Only your identity provider need handle your authentication credentials, and because you authenticate against one site rather than many, it becomes more practicable to use credentials other than passwords. Your identity provider and the web site you wish to use need not be previously known to each other.
What are the drawbacks of OpenID?
It is potentially vulnerable to phishing, and it relies heavily on the integrity of the Domain Name System.
What is OpenID delegation?
A method by which you can use any URL that you control as an OpenID identifier without yourself having to run an OpenID server.
What are the benefits of OpenID delegation?
If this service were to abruptly cease operating then you would be able to re-delegate your OpenID URI to another identity provider without informing any of the websites with which you are registered.
Delegation also allows you to use a URL of your choice as your OpenID (provided that you are able to obtain control of that URL) rather than be restricted to the one provided at riscid.org.
What are the drawbacks of OpenID delegation?
It involves slightly more work by you, and if you lose control of the URL from which you have delegated then there is nothing you or we can do to reclaim your identity.
How do I implement OpenID for my web site?
If you are a RISC OS-related site then we may be able to provide limited technical assistance. Otherwise, a good source of information is openid.net.