Replay protection for OpenID 1.x relying parties
If you’re writing an OpenID Provider, you should have a strong appreciation for the security of your customers’ identities that you will be protecting. One aspect of that protection is…
OpenID association poisoning
As part of the OpenID protocol a relying party often establishes shared secrets (called ‘associations’) with identity providers that are used to verify identity assertions. It occurred to me that…
Fixing the OpenID login user experience
The user experience of OpenID at Relying Party web sites is so important to get right. OpenID is right for your web site’s visitors – no doubt in my mind…
DotNetOpenId v3.0 Beta 1 released
Tonight DotNetOpenId, soon to be renamed DotNetOpenAuth, released beta 1 of the major v3.0 release. You can download the bits from Ohloh. Although downloads should remember that as a beta…
DotNetOpenId is looking for a new home
DotNetOpenId started on Google Code. But we’re outgrowing it. We’d like to move to a shared hosting server where we can have automated tests, nightly builds, and a better web…
DotNetOpenId v3.0 to feature built-in OAuth support
The next major release of DotNetOpenId, slated for a release in or around March 2009, will add OAuth support to the mix. If you don’t know what OAuth is, it…
Why using RPXNow is a bad idea
Janrain has been a great influence in the OpenID community and I thank them for all their efforts. They are, nevertheless, a company that must generate profits, and their recent…
Remotely enable RDP
Have you ever been away from your work PC, tried to Remote Desktop (RDP/mstsc) into it, only to realize that you’ve forgotten to enable RDP before you left work? Ever…
OpenID on Classic ASP
Several people have asked for an OpenID library for Classic ASP. Yes, it’s several years deprecated, but there are still some major and smaller sites using it. Classic ASP allows…
DotNetOAuth source code to be released eminently
Microsoft attorneys have signed off on the open source release of the DotNetOAuth source code that I’ve been building in my spare time. It should show up in the public…