OpenID


Also found in: Dictionary, Thesaurus, Medical, Legal, Financial, Wikipedia.

OpenID

An identity system for the Web that lets people use a single username and password to log in and authenticate themselves to OpenID-compliant websites. OpenID is a free system that is distributed across the Internet and maintained by numerous organizations, including major sites such as AOL and Yahoo.

OpenID is also supported in the emerging identity metasystem and can be one of many ID card choices displayed in the card selector's window (see identity metasystem).

Whom Do You Trust?
A major feature of OpenID is that users can decide which OpenID identity provider they trust the most to authenticate them. In fact, users can also become their own identity provider.

The Relying Party Queries the Identity Provider
A website that accepts OpenID is known as a "relying party," because it relies on an OpenID identity provider (IdP) for authentication. The OpenID username, called an "OpenID identifier," can be the URL of the provider with username appended, or it can be an XRI i-name if the relying party accepts it. I-names are human-friendly names, such as "=john.doe," that are linked to the OpenID provider, just like domain names are resolved by the DNS system into actual IP addresses on the Internet (see i-name).

When a user logs into an OpenID website, the script in the Web page redirects the browser to the identity provider. Using a password or other method, the identity provider attempts to authenticate the user and informs the website of its success or failure. For more information, visit www.openid.net. See single sign-on and identity metasystem.


An OpenID Authentication
This is a simplified example of the OpenID authentication sequence. What is not shown is that right after a user logs in, the relying party and identity provider typically share secret keys so that subsequent transactions are more secure.







Hacker-Proof OpenID
Instead of using a password that can be stolen, the myVidoop OpenID system (www.myvidoop.com) uses a different one each time. When creating a myVidoop account, users choose topics, and for authentication, myVidoop displays those topics in random order. In this example, if the topics were computers, money and cars, the password would be X-H-K for this session only. The next time, images and order will change.
References in periodicals archive ?
com reportedly enables users to easily get an OpenID, as well as an address that can follow them for life, regardless which e-mail provider, web provider or OpenID provider they choose.
The solution supports SAML for strong authentication and SAML and OpenID for Web Single Sign On, as well as eSignature for workflow and long-time archiving of signed documents.
In addition to its support for NSTIC, CA Technologies supports a number of identity-related standards bodies and security organizations with the goal of building reliable, shareable, trusted identities, including the OpenID Foundation, Open Identity Exchange (OIX), and the Kantara Initiative.
The TPM can provision a cryptographic key that is unique to that device and can be used as a second authentication factor bound to the user s OpenID credential.
OpenID authentication eliminates the need for multiple usernames across different websites.
OpenID is rapidly gaining adoption on the web, with over one billion OpenID enabled user accounts and over 50,000 websites accepting OpenID for logins.
NetSuite's recent support for OpenID has allowed us to craft a compelling cloud-to-cloud solution that we're excited to bring to the market," said Celigo CEO, Jan Arendtsz.
0), Liberty Web Services, OpenID and WS- specifications.
Adrian Lane, Securosis CTO, and Nat Sakimura, Chairman OpenID Foundation, Win "Nimby Award" for Best Conference Commentary
NetSuite incorporates Google OpenID's trusted authentication system, and NetSuite administrators can control OpenID access via role-based permissions.
During its Monday workshop, the OpenID Foundation introduced its latest open source protocol, a message bus called Backplane designed to provide a secure framework to let applications on a Web page share information.
A number of use cases involving Liberty Web Services (ID-WSF), CardSpace, OpenID, SAML 2.