Comments on: A simpler mobile OpenID workflow? http://ianloic.com/2008/01/13/a-simpler-mobile-openid-workflow/ from Ian McKellar Fri, 25 Jul 2008 23:56:36 +0000 http://wordpress.org/?v=2.5 By: Software and Opinions » Blog Archive » OpenID Usability Non-solutions http://ianloic.com/2008/01/13/a-simpler-mobile-openid-workflow/#comment-1270 Software and Opinions » Blog Archive » OpenID Usability Non-solutions Wed, 02 Jul 2008 02:06:10 +0000 http://ianloic.com/2008/01/13/a-simpler-mobile-openid-workflow/#comment-1270 [...] though I’ve had an OpenID identity for as long as anyone, use mine extensively and have even implemented my own provider, I’m not convinced it’s a good idea to only support OpenID [...] […] though I’ve had an OpenID identity for as long as anyone, use mine extensively and have even implemented my own provider, I’m not convinced it’s a good idea to only support OpenID […]

]]> By: Guillaume’s blog » Blog Archive » twauth: mobile authentication with OpenID and Twitter http://ianloic.com/2008/01/13/a-simpler-mobile-openid-workflow/#comment-1253 Guillaume’s blog » Blog Archive » twauth: mobile authentication with OpenID and Twitter Wed, 14 May 2008 04:00:15 +0000 http://ianloic.com/2008/01/13/a-simpler-mobile-openid-workflow/#comment-1253 [...] mobile authentication with OpenID and Twitter I stumbled upon Ian McKellar’s twauth prototype: a Twitter and OpenID based mobile authentication [...] […] mobile authentication with OpenID and Twitter I stumbled upon Ian McKellar’s twauth prototype: a Twitter and OpenID based mobile authentication […]

]]> By: Mike Rowehl: This is Mobility » Blog Archive » Social Sites and Supporting Technology http://ianloic.com/2008/01/13/a-simpler-mobile-openid-workflow/#comment-1197 Mike Rowehl: This is Mobility » Blog Archive » Social Sites and Supporting Technology Wed, 19 Mar 2008 21:04:14 +0000 http://ianloic.com/2008/01/13/a-simpler-mobile-openid-workflow/#comment-1197 [...] Actually, I’m not sure were I’m going with this. It could go anywhere from talking about mobile social building blocks like the stuff MPulse has been working on, or Zygo’s and 3Jam’s take on group messaging, all the way through OpenSocial vs. the mobile web and how we get to start using DiSo ideas like XFN, OpenID, and oAuth, and other microformats in the mobile environment. But then I would have to dig up info about what Johannes Ernst has been up to and how LID has progressed within mobile in particular. But unfortunately I need to get running yet again. Hopefully that’ll stop happening now that I’m not going to be running up and down the peninsula on a daily basis. In the meantime I leave you with this cross-disciplinary thread to pull on if you want: including SMS messaging in the OpenID authentication mechanism to avoid having to enter a password. [...] […] Actually, I’m not sure were I’m going with this. It could go anywhere from talking about mobile social building blocks like the stuff MPulse has been working on, or Zygo’s and 3Jam’s take on group messaging, all the way through OpenSocial vs. the mobile web and how we get to start using DiSo ideas like XFN, OpenID, and oAuth, and other microformats in the mobile environment. But then I would have to dig up info about what Johannes Ernst has been up to and how LID has progressed within mobile in particular. But unfortunately I need to get running yet again. Hopefully that’ll stop happening now that I’m not going to be running up and down the peninsula on a daily basis. In the meantime I leave you with this cross-disciplinary thread to pull on if you want: including SMS messaging in the OpenID authentication mechanism to avoid having to enter a password. […]

]]> By: Sam http://ianloic.com/2008/01/13/a-simpler-mobile-openid-workflow/#comment-1193 Sam Mon, 17 Mar 2008 10:43:17 +0000 http://ianloic.com/2008/01/13/a-simpler-mobile-openid-workflow/#comment-1193 it would b better to certify once logged in at the internet gateway hrough operators.maybe they can use their business card on mobile to get certified. what really will help is to do the authentication at the gateway then at every login. possibiliy maybe just a code. it would b better to certify once logged in at the internet gateway hrough operators.maybe they can use their business card on mobile to get certified.
what really will help is to do the authentication at the gateway then at every login.
possibiliy maybe just a code.

]]> By: lucasjosh.com » Blog Archive » Links for 1/30/08 [my NetNewsWire tabs] http://ianloic.com/2008/01/13/a-simpler-mobile-openid-workflow/#comment-850 lucasjosh.com » Blog Archive » Links for 1/30/08 [my NetNewsWire tabs] Thu, 31 Jan 2008 05:13:41 +0000 http://ianloic.com/2008/01/13/a-simpler-mobile-openid-workflow/#comment-850 [...] Software and Opinions » Blog Archive » A simpler mobile OpenID workflow? [...] […] Software and Opinions » Blog Archive » A simpler mobile OpenID workflow? […]

]]> By: twauth: Twitter als OpenID Provider at notizBlog - a private weblog written by Matthias Pfefferle http://ianloic.com/2008/01/13/a-simpler-mobile-openid-workflow/#comment-697 twauth: Twitter als OpenID Provider at notizBlog - a private weblog written by Matthias Pfefferle Thu, 24 Jan 2008 08:10:35 +0000 http://ianloic.com/2008/01/13/a-simpler-mobile-openid-workflow/#comment-697 [...] Geräte gedachter, OpenID Provider basierend auf Twitter. Ausschlaggebend für den von Ian McKellar entwickelten Dienst, war der von Chris Messina verfasste Blog-Post “The OpenID mobile [...] […] Geräte gedachter, OpenID Provider basierend auf Twitter. Ausschlaggebend für den von Ian McKellar entwickelten Dienst, war der von Chris Messina verfasste Blog-Post “The OpenID mobile […]

]]> By: Craig Childs » A simpler mobile OpenID workflow? http://ianloic.com/2008/01/13/a-simpler-mobile-openid-workflow/#comment-647 Craig Childs » A simpler mobile OpenID workflow? Mon, 21 Jan 2008 03:21:41 +0000 http://ianloic.com/2008/01/13/a-simpler-mobile-openid-workflow/#comment-647 [...] A simpler mobile OpenID workflow?Using twitter for OpenID authentication — danw [...] […] A simpler mobile OpenID workflow?Using twitter for OpenID authentication — danw […]

]]> By: lmjabreu http://ianloic.com/2008/01/13/a-simpler-mobile-openid-workflow/#comment-597 lmjabreu Sat, 19 Jan 2008 02:08:22 +0000 http://ianloic.com/2008/01/13/a-simpler-mobile-openid-workflow/#comment-597 @bob "What is the advantage to a SMS over typing into the browser (as long as you only have do either 1 time)?" Security, those credentials will only be valid for that time you login, and you don't have to memorize anything other than you OpenID Identifier. @bob

“What is the advantage to a SMS over typing into the browser (as long as you only have do either 1 time)?”

Security, those credentials will only be valid for that time you login, and you don’t have to memorize anything other than you OpenID Identifier.

]]> By: bob http://ianloic.com/2008/01/13/a-simpler-mobile-openid-workflow/#comment-596 bob Fri, 18 Jan 2008 23:32:24 +0000 http://ianloic.com/2008/01/13/a-simpler-mobile-openid-workflow/#comment-596 What is the context of this situation: "The main problem I wanted to solve was to allow a user to prove their identity without having to enter a password. Most mobile devices lack physical alphanumeric keyboards, and without that it’s very hard to fill out password fields. My initial approach was to offer an OpenID URL for phone numbers and use an SMS message containing a one-time password to verify that the person attempting to log in had access to that mobile phone." In what way in the user needed to identify themselves? Are you referring to a simple phone lock, or email access, or what? It seems that you are intent on using OpenID and this is probably the right way to go, but why can't you authorize through the phone's browser, similar to using the login on a PC? It should set the cookie token, and authorize that browser to be recognized as your OpenID. Even with some older phones that have nonstandard browsers, any phone that can run Java decently can use the Opera browser for a web-based login. What is the advantage to a SMS over typing into the browser (as long as you only have do either 1 time)? What is the context of this situation:
“The main problem I wanted to solve was to allow a user to prove their identity without having to enter a password. Most mobile devices lack physical alphanumeric keyboards, and without that it’s very hard to fill out password fields.

My initial approach was to offer an OpenID URL for phone numbers and use an SMS message containing a one-time password to verify that the person attempting to log in had access to that mobile phone.”
In what way in the user needed to identify themselves? Are you referring to a simple phone lock, or email access, or what?
It seems that you are intent on using OpenID and this is probably the right way to go, but why can’t you authorize through the phone’s browser, similar to using the login on a PC? It should set the cookie token, and authorize that browser to be recognized as your OpenID.
Even with some older phones that have nonstandard browsers, any phone that can run Java decently can use the Opera browser for a web-based login. What is the advantage to a SMS over typing into the browser (as long as you only have do either 1 time)?

]]> By: Stephen Paul Weber http://ianloic.com/2008/01/13/a-simpler-mobile-openid-workflow/#comment-579 Stephen Paul Weber Fri, 18 Jan 2008 04:36:08 +0000 http://ianloic.com/2008/01/13/a-simpler-mobile-openid-workflow/#comment-579 I have passwordless at myopenid with an SSL cert I have passwordless at myopenid with an SSL cert

]]>