Re: Strong authentication for PayPal versus WebPayments

On 5/12/14 1:46 PM, Anders Rundgren wrote:
> On 2014-05-12 19:11, Kingsley Idehen wrote:
>> On 5/11/14 7:08 AM, Anders Rundgren wrote:
>>> >From my point-of-view there's only problem: I don't understand how this
>>> would be and how it could address the NASCAR login problem:-(
>>>
>>> Anders
>> NASCAR isn't necessarily a problem for end-users. This more of a problem
>> for programmers that have to write code for different authentication
>> protocols. We have to keep these concerns loosely coupled.
>>
> >From my (strong authentication) perspective, WebPayments and WebID are
> trying to build cool stuff on top of a security platform which haven't
> been upgraded since 1995 when it was introduced by Netscape.

PKI existed before Netscape.

X.509 existed before Netscape.

URIs existed before Netscape.

HTTP existed before Netscape.

>
> The competition in the form of Google and PayPal have come up with a nice
> security platform (U2F - Universal Two Factor authentication) but unfortunately
> it squarely matches the WebID and WebPayment use-cases.

They aren't competition. Standards aren't about competition. They are 
are about openness which enables interoperability.
>
> I won't spend more time on this issue, I leave it to the market to decide :-)

Markets are shaped by how vendors manage opportunity costs that arise 
from competition :-)

>
> Anders
>
>
>
>
>


-- 

Regards,

Kingsley Idehen	
Founder & CEO
OpenLink Software
Company Web: http://www.openlinksw.com
Personal Weblog: http://www.openlinksw.com/blog/~kidehen
Twitter Profile: https://twitter.com/kidehen
Google+ Profile: https://plus.google.com/+KingsleyIdehen/about
LinkedIn Profile: http://www.linkedin.com/in/kidehen