OpenID online authentication mechanism in version 2.0
The OpenID standard for identifying and authenticating users on the web is now available in version 2.0. The OpenID online authentication mechanism is one of many approaches to achieving user-based identity management on the web. It aims at saving users the effort of having to log in separately with user name and password on every web page requiring registration. OpenID is a decentralised service and allows users to choose their own OpenID providers. This could be a blog system like Google's Blogger, or an official service like Verisign.
Among other things, the new version supports Directed Identity, allowing users to authenticate via their OpenID providers instead of their user IDs on web pages. Expanding the new version of OpenID has also become easier. One example is OpenID Attribute Exchange 1.0, which allows data stored with the OpenID provider to be kept up-to-date on other web pages.
OpenID is already supported by a large number of programs, and various libraries are available for use in custom developments. Plug-ins for the Drupal, Movable Type and Wordpress blog systems are already available. Vendors including Sun and Microsoft already offer OpenID support for their software. AOL and Yahoo were also involved in developing the standard.
Microsoft already launched a similar attempt at identity management with its Passport central sign-up and payment service in 1999. However, that service was subjected to repeated criticism because the necessary confidential customer data was centrally managed by Microsoft.
- OpenID 2.0…Final(ly)!, message on openid.net
(mba)