Welcome | Sign In
TechNewsWorld.com
ID Security

Yahoo Adds Its Muscle to OpenID Single Sign-On Standard

Print Version
E-Mail Article
Reprints
Yahoo Adds Its Muscle to OpenID Single Sign-On Standard

By Chris Maxcer
LinuxInsider
Part of the ECT News Network
01/17/08 3:42 PM PT

"I liken OpenID to RSS -- if you ask a casual user of the Internet what RSS is, they will probably shrug their shoulders," Scott Kveton, chairman of the OpenID Foundation board, told LinuxInsider. "However, RSS is used in many, many popular applications. I think OpenID will take the same path and we'll start to see applications that take advantage of what it means to be an OpenID."


Listen to Your Customers, Grow Your Bottom Line.
Learn how loyal customers can be your best advocates for evangelizing your products and brand, while helping you to dramatically gain new business. Download "Customer Experience Management: Engaging Loyal Customers to Evangelize Your Brand."

Yahoo (Nasdaq: YHOO), with its 248 million active registered users worldwide, has announced that all of them will be able to use their Yahoo IDs as an OpenID to let them eliminate separate IDs and logins at Web sites that support Learn how SugarCRM will improve your business. Free Trial. Click here. the open, decentralized digital identity framework.

"What Yahoo has announced today is the ability for people with accounts on Yahoo and Flickr to use those accounts via OpenID to login to nearly 10,000 different services around the Web," David Recordon, open platforms tech lead of Six Apart and vice chair of the OpenID Foundation, told LinuxInsider.

"This is beneficial as it means that a Yahoo user going to comment on a blog, join a community, or sign up for a new service does not have to create a new username and password, but rather can use their OpenID from Yahoo," he explained.

Yahoo's initial OpenID service will be available in public beta on Jan. 30, and it will enable a seamless and transparent Web experience by letting users use their custom OpenID identifier on my.yahoo.com or to simply type in "www.yahoo.com" or "www.flickr.com" on any site that supports OpenID 2.0. Alternatively, Web sites that accept OpenID 2.0 will be able to add a simple "Sign-in with Your Yahoo ID" button to their login pages that will make it even easier for their users.

Huge Coup for OpenID

"I see Yahoo as being an extremely important catalyst in mainstream adoption of OpenID," Recordon noted. "In a single announcement, they've added nearly a quarter-billion new OpenIDs to the entire ecosystem. In just two weeks, this has already been a great year for OpenID with Yahoo joining AOL, Apple (Nasdaq: AAPL), Google, Microsoft (Nasdaq: MSFT), VeriSign (Nasdaq: VRSN) and others in their support of OpenID."

The Yahoo announcement effectively triples the number of people who are able to use OpenID, and the OpenID movement is clearly hopeful that Yahoo's support will help spur adoption.

One-Way Back Scratching

Yahoo's support, however, only goes one direction. "If Yahoo decides to accept OpenID on their own properties, it would allow the other 150-plus million people with OpenIDs to login and use Yahoo services without having to directly create a new Yahoo identity if they didn't want to," Recordon explained.

So who are those 150 million OpenID users?

"Most of today's users are definitely tech-savvy," Scott Kveton, chairman of the OpenID Foundation board, told LinuxInsider. "I liken OpenID to RSS -- if you ask a casual user of the Internet what RSS is, they will probably shrug their shoulders.

"However, RSS is used in many, many popular applications," he added. "I think OpenID will take the same path and we'll start to see applications that take advantage of what it means to be an OpenID; I've proved I own this specific, unique end-point for myself on the Internet. What I land there -- services or otherwise -- will be what really propel OpenID's growth and adoption."

Yahoo's implementation is based on the OpenID 2.0 specification. Yahoo worked closely with the OpenID Foundation and community to finalize the specification in December 2007. The specification includes new features that improve security and usability of OpenID, making it the most user-friendly single sign-on and online user-authentication standard, Yahoo said. Yahoo's users who log in with their Yahoo ID on OpenID sites will have the added protection of Yahoo's sign-in seal wherever they go on the Web. No e-mail or IM addresses are revealed or disclosed as part of the login process, Yahoo noted, which further helps protect users from phishing or other attacks.

All Eggs in One Basket?

Critics of OpenID contend that users are essentially putting all of their access details in a single basket -- if the basket were ever compromised, so to speak, nefarious individuals could gain access to everything inside the basket.

"The balance between convenience and security is always going to be an issue," Stephen O'Grady, RedMonk industry analyst, told LinuxInsider. "OpenID certainly has its issues, but then so too does the challenge of remembering multiple passwords for different sites and accounts. While in theory it would be more secure to use different, unique, strong passwords for different venues, in practice most people use one simple one throughout."

If users use a single, robust authentication system, it's not only convenient, it may also be stronger than many weak login methods, he noted.

Print Version E-Mail Article Reprints More by Chris Maxcer

Talkback: Be the first to comment on this story.

More by Chris Maxcer

The iPad's Cruel Teaser
March 09, 2010
The iPad ad that debuted on Sunday was remarkable in how many functions it managed to cram into just 30 seconds. Document creation, email, e-books, media viewing -- all that and more was demoed using just two hands and a hip soundtrack. However, the ad left quite a few important questions about the iPad unanswered. 		The iPad Catalyst Will Light a Lot of Fires
March 02, 2010
I think we're going to get a lot of fantastic content options for mobile devices in 2010, even if you don't pony up for an iPad. While the iPad will likely be a raging success, it'll also help generate a market for alternatives. The question is, can we credit -- or blame -- the iPad for generating all this mobile action? Maybe not the iPad alone, but it's certainly the latest catalyst. 		With Smut Ban, App Store Exposes a Jiggly Set of Rules
February 23, 2010
Apple's stance on risque iPhone and iPod touch apps is understandable, but the whole incident does underscore the App Store's frustratingly fickle nature. Apple should either draw up a precise, crystal-clear set of guidelines for app developers or just admit it's completely subjective -- "If we like it, it's in; if we don't, it's rejected." Right now, its policy seems to be somewhere in between.
Don't miss a story -- sign up for our FREE e-mail newsletters and view the latest headlines at a glance.
Tech News Flash [ View Sample ]
E-Commerce Minute [ View Sample ]
ECT News Network Weekly Newsletter [ View Sample ]
Shortcuts
> Get Business and Technology News Alerts
> Most Popular | Spotlight Features | Exclusives
> This Week on ECT News Network | Podcasts
> WiFi Hotspot Locator
> Inside TechNewsWorld
TechNewsWorld
E-Commerce Times
MacNewsWorld
CRM Buyer
LinuxInsider
Today's TechNewsWorld Sponsors
Secure Your Datacenter
Mitigate risk and maximize the benefits of virtualization. Get the free eBook today.
Data Deposit Box Online Storage
Sign up for a 2 week free trial and start earning recurring revenue today.
ECT News Network Information
Reader Services
Corporate
ECT News Network
Terms of Service | Privacy Policy | How To Advertise
Copyright 1998-2010 ECT News Network, Inc. All Rights Reserved.