W3C home > Mailing lists > Public > public-xg-webid@w3.org > February 2011

Re: WebID-ISSUE-19: x509v3 Independence and TLS Extensions [WebID Spec]

From: Nathan <nathan@webr3.org>
Date: Fri, 04 Feb 2011 17:42:06 +0000
Message-ID: <4D4C3A6E.2020504@webr3.org>
To: Peter Williams <home_pw@msn.com>
CC: public-xg-webid@w3.org
Peter Williams wrote:
> 
> There is an issue here.
>  
> The scheme in [1] argues for passwords (unphisable ones) - saying certs and the like are too hard
>  
> The issue is "websso".
>  
> The biggest problem any consumer talks about (anyone ever talk to them?) is that they dont want 50 passwords - which is the situation today.
>  
> Do we accept the "authentication silo" as an issue - albeit a cultural one?
>  
> Even if I had the miracle of MutualAuth, do I really want 50 passwords, on 34 different password regimes, and 14 differnet lifecycles, and 3 different uses of email for recovery?

I won't really know what you want, but when I view twitter i don't want 
to have to enter a password, when I view my bank account I do, and in 
both cases I want webid.

Layering :) one does not preclude the other.
Received on Friday, 4 February 2011 17:43:21 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 6 January 2015 21:06:22 UTC