-
Website
http://www.louisgray.com/live/ -
Original page
http://blog.louisgray.com/2008/12/five-ways-openid-can-be-embraced.html -
Subscribe
All Comments -
Community
-
-
Top Commenters
-
Popular Threads
All Comments
My main thing is that I want to be able to maintain the two identities that I use quite widely (my personalised online brands as it were) but I need openID to give me some sense that I'm guaranteed to be able to access every service I want using them.
I have to agree with the view that it's still simply not enough of a draw for users yet in terms of being a compelling piece of their online world. And there's simply too many wrinkles to iron out for it to become one quickly. Needs one of the market gorillas to start simplifying and applying it widely for it to gain momentum.
Logging in to your OpenID provider at the beginning of a session is actually good practice for at least to reasons. First, you prevent the danger of phishing. No malicious site can redirect you to a fake login screen. Good providers don't allow logins on the landing pages, btw, but use bookmarklets, broweser certificates,... for logins. Second, as you pointed out, users don't see any verification process or logins on the provider's pages. However verification is actually done, usrs just don't notice.
While you are certainly right that email providers becoming OpenID providers will help increase adoption, the regular OpenID as a URL has quite positive side-effects. Depending on the provider much more information can be linked to a URL. For example, consuming sites - those that accept OpenIDs for logins - could retrieve information like your friends, your personal information like address, photo, profile URLs from other websites you're registred with and much more. So OpenID can be much more than single sign-on.