OpenID is coming
You probably haven’t heard about OpenID yet, well if you are one of the few readers of this blog I can almost gaurantee that you haven’t. OpenID is, quite simply put, the end to usernames and passwords. Think about it, how many different sites do you frequent where you have to login with a username and password? How great would it be to be free from all that mess?
This has been done in the past, Microsoft tried with their “Passport” system (now called LiveID), but it was dependent upon Microsoft. There has been a move to get SAML into the mainstream, but that has all but failed as well due to vendor issues (although Google is using it for Google Apps).
All of these various systems basically work the same. Let’s say you want to sign in to some website to access some online service , maybe Last.fm (which I love!). Well, Last.fm needs to know that you are who you are so that it can provide you with its services. Currently they maintain their own username and password database for authentication. If they were to implement LiveID or SAML or OpenID then you would simply provide your username and password for one of those services and after some behind the scenes magic, Last.fm would authenticate you and allow you to log in.
The primary difference between OpenID and the other attempts at SSO for the web is that with OpenID you get to pick who does the authentication. With Microsoft’s Live ID, Microsoft provides the authentication. With SAML, it is some 3rd party identity provider. With OpenID it can be you (well, your website at least) or any number of OpenID providers. The point being that it is free, open, distributed authentication; which is cool!
