Network Security & Hardware - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


OpenID Offers Open-Source Code Bounty



 By: Ryan Naraine
2006-07-28
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Network Security & Hardware story.


Rate This Article:
Poor Best
A dozen software vendors are backing a $50,000 bounty program aimed at jumpstarting widespread adoption of the OpenID online identity mechanism.

Looking to jumpstart widespread adoption of the OpenID online identity system, a dozen software vendors are backing a $50,000 bounty program to open-source developers.

The OpenID Code Bounty, which is supported by a slew of companies including VeriSign and Six Apart, offers $5,000 directly to 10 open-source projects that successfully implement OpenID 2.0 support.

Others backing the program include JanRain, Four Kitchen Studios, Cordance, OoTao, Zooomr, ClaimID, NetMesh, Sxip and Opinity.

OpenID, which was first championed by Six Aparts LiveJournal blogging software, is a simple identification mechanism that allows Web surfers to use a single log-in anywhere on the Internet.

Gates pushes ID management for secure computing. Click here to read more.

Resource Library:
It is styled as a lightweight, decentralized authentication mechanism that allows a bloggers online identity to be given by a URL thats verified by any server running the protocol.

OpenID is used primarily to authenticate users on blogs and other social networking sites and is not meant to be used on sensitive accounts like banking and e-commerce purchases.

To qualify for the bounty, an open-source program must implement OpenID 2.0 support as a relying party or identity provider and be compliant with an OpenID compliance testing tool that is scheduled for release in August 2006.

Once implemented, the organizers say it must be no more difficult than changing one configuration setting for an administrator to enable OpenID support.

The rules call for OpenID implementation to be distributed as part of the projects core distribution and for the OpenID logo to appear on the log-in form.

For advice on how to secure your network and applications, as well as the latest security news, visit Ziff Davis Internets Security IT Hub.

To participate in the bounty, an open-source project must be distributed under an OSI-approved license and must have at least 200,000 Internet users and 5,000 monthly downloads.

Projects that already meet the requirements include WordPress, Drupal, phpBB, Plone, MediaWiki, Joomla, Slash and Mailman.

The protocol has already been implemented in LiveJournal and sites that use its code base (GreatestJournal, InsaneJournal, and DeadJournal), Movable Type and TypeKey.

VeriSign has implemented OpenID in its PIP (Personal Identity Provider), which is designed to provide a "home base" for users who want use OpenID applications.

For sensitive authentication, VeriSign has released VIP (VeriSign Identity Protection) to allow customers to use a single authentication credential across Web sites that support VIP.

Microsoft is also slated to deliver a federated ID initiative called InfoCard to serve as a trust-based, multifactor authentication system.

Check out eWEEK.coms for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzers Weblog.



  Reader Comments: OpenID Offers Open-Source Code Bounty
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Network Security & Hardware Articles          >>> More By Ryan Naraine
 


x}r㶲s\@♵M푦dKkŲ,xMT( S$IVreoВ/㩱%\@h4{$ Gtܢd>5"E%U5ExLԸ#|x\'{dY (ƻf{92}Gdh9-rt(3-u@|ݖ|cXul̀A3EuL_CԿ($fʀ [8#/nyy,\t ̿{׳CݸxgE-"GlRۆؼtJaH#j8L=:/G#g+amަlXǚZ*jUE9.TCxxlU=r}˴&.e7[ֺޅRV5MQ;U0> n0tp;܀RrCNeS<> i^_`d}+1UJ Z. dz$_S::Y'v{jtjzQҏZF-_  kɥzl$i̮g fZҘ 'UUXNڭ~S~6.vEv lM,!R42V,^YHwAy|qӾlvoz{MOVI3 h+?f'_V[Ulixmkx0|`kh2`m8;RZ:{$PE$Y)r$:w.!}O}nr2GrI/o"beQ 5`cM|`戒mȌcPu t9C;J}ښNmҔ#RBŒ:ܼNR$9Vˡȟ"Wi8@r-XSl \Mo4x M2Xʅ U >hI,E[!f}N}%I Fc}nywσ543cLё9Նm'RCGstDAG6V^lzK tcj>'ݨäpp|g͇z9Թ0鋥*FԇQ߭CPCGA :v|scмy&na13fC?J{7t( u4/f{@`^@Z8`88ʬE81O!>{0gsD;ݴiǀxt47(.aHd˵FK] cRRP I#r*B l`@n! P,  bR .:ҶBICzn)}T[h+\KBAfkf(2{~4 cfBd '"Xr`Y \+|)l l[6Ţri*|:IkBk<6 0 uu=ֈ4`  [X' MTS0EqlA~n8Iϱ(Y`5ÂҊUsξS k>xGX~G7-M ݜ6l1%B~mLheoc Yu-KN`cܒn866ÞL~BgO虉m>(.5e :ϧHږiMSCBgsݐC/2$\^&AB1 :d>l'9oU dܤlr%eRy`OEҏa==%>^`3{q%%Ag-U檱@4l*Y+fMEIJەi]jk-T8W7Bʶb/Xa`ѩE]QZJKPD@BR)i šiY)^(ytNJIעaRX9m,_&TY9?>2ai;aՒhx K[@ x@6`AD6Ll7K+Wթw글T=":zu@nzcg@~AQ9sGQB-C,8c4)L>EӰ HZUggm1LHx#e8,[b){ Wб3abec;k eC_Hq6Ϯ[-V!҇ LrCmP Ǧ"}ZlBOw]1W=X@C~*%1IO5@&^`Gm d*9Ц-PcY}6bDm"( EZ"Ӟ#&$Cg'ᠢcD8v_(+ G?_vszQm`'|\scI P'ʰm8Zzq&$KD(Mܧh&L3wS3턇4`Hڸ /|P"X 8|Ї> B K'"ZcEs ÖYCÖWیЂ[и|XT=OҶ@-ODBQcG=<6?fCU^f"JPVblxcC+jr\T+ oVX9)3K ).b_ޝo10Ghgp@o([@gf!WAGeTe1_0VW#SP)wFh0uKNjZadzͼz<_&?L!I8D"pLΨM7>j7J8@v }0d٤S(H-qRCY= O7䪢-݀ޭ.F'hF6@=!$voS(f4Ӥ-bhs޽e=O᧘ZӁQ~/6u2|X\.(``#>v-3Ȩi 03j-dqMU*Ղʾ_Yv ^> )#@ ! Jxg8ZCAk2ݩDw][I(Tg7gME]6Ugzn&)jMUӫU=4* cI뛝|5]|j9Q"-_%do퀁ȘY!7Gj2m87~161ʀkhG2gdQrHU u{ e4w4<u^8q?TYe)(@qc@@f6P~ tѝxЊµ7*6P#I?+*~ EGQռi0TBE-) Co6 9^F̣زo7i ޜmcr[ y||X-,sKiʌg _|r]rf)uyā5C/4Cw▴Fqq O)sk[Im+KZԔuXlʪV=T%X봪I> OL3 hQˤ̛ogg]4}3݀,+,<|͙}4CϔɹT.jZl[)Uʹfc"s41^bQ"Y @rrjT + ePDBZNbxtxW !#Mq=?^a?u-492=kZgapvO+ʬ7A48'# w>C81A AD@"'n߱?% [-8F~ݕDw{ݴ#R9Y/5:Gxg ٿv0Vy?0WK+Kxi/R)ص);-~71%|˾FIM $ȅ XNpCfO"l/?H׼mv: 72wDH4rӸо_>^tUcrѾlI^+Q\c'R9!pUӋV:aSڎ6N #z~qaKD8 mÀ@ c^7[לXqzwӱB3ZMUc | A07q4eVﭩ   cJ=!oh{Wѕ{mE$-bT _RJI"Q6#=)#_DZuڽnp;Klo}AǯNd^VZ-[N7S+d$ c?]Я8ʆ'=?UQOj?!/+4|㿜y^$M "Pxc.A)H7ԺJ9"Ss4vD)gTxPxi'sfx!u-(q%՝b§(oBٺCO m-fRs$S)Ҥ`GBgJȄa{e5)a5R!MLCYOC/%$f;Bڕz{ giMN.m2ϼ Kڝ;Hë ̑mWI+4$/EiA0ۧp!,GBlb'%hw&Brc7`|xr'fxxj}qUy^={hWNÊĎ3 = m=vkx%NdQ:ZZ1?nOZ\hta_}`|;=3F'5L{hF v-Q7mxl}HKi8=?P.V-w)k9,9X6r vڕg_Dr!N{H,Ɖ#g61C]rEuM I W{$U t{Do7ۨ{.LeFx>IАߙ=p8!M[wzzMYf]foc_; ?--8t砖CR#K1M$$Z^VP"*s攤˞ȔWN /Hƣb[Pdƛ%q-+Α=#tzoo>ȥ&q="~o'kw.z@z@w~YnIu9S<]M--^Ss>^_e5@OKtG]_ Q{O{쭑i\dbQWفg2~15'Ldј@.,vd鼳62> ACXؙqbLdJ;oݭn \ B;BJ [42]CnMk-Ǵ§ ,'i?qVԱQ*_2$;lߖŗc3Ocp௵U%%ŗ`X.LV&o ZГqk+\<ъOm1j-}OF|{[a32"͙Z?DI-][bNO_Kw KG8Vc"PQjGWKzgQR?ZgYE8Tt_&+5q Y' IUI?xEI]V{ܒJxdRi"16acHHl/bYMM ?s j-v1J|R8IQy#P3bPP1T="LyWN3TT9rJKvSjy:˂< ,^{b=#0dLEj'te 0 #WLRFr[HoZ 1 Wtq<>˲gNex F ƅ JƘtkHM}!iR)=j|T:`A02s@a39#&"`qw,keb;xЙr1$^oi?i&ϊb30]G̹+ѱfPQY_ˮGbr,DӼْX ʬ%$Q3 ƹ~!0\",k3a0D+5z j|p)tF`{#p41GoȪ~w_ڋK۪_E9񨾾oqeЊ|uaYɀ{|4=0nKS&p]}rEcc8c^Lge"V8΅{(94i;H7xR(?hUeq(ZAkbl;ҁY;q~ܒ:ir ?{B'߄E> c /rth&7\9P[$8'@`m¬܏@BS#r'_ LIxc#ݔi3`xk+փފ> 3A@:-uĐz۞'-cWd"$@>_޺i~Fzh/ew[=d!/9kS Cۑ70L}AG7|~h8Ͼ.z ȅr$a]11X$ֽ'!&_Gh[:LZS4c~[ֺ*tcDT/3OaH9P-S^bX"haR1XQ? ~1&gV3Ÿ#X!8<0PLj\V;>%5%L۰lELN1A"O۾blUo%P`qT83nj=J<|.WH/^RtQ:. o%H)iPhP؟?pm2%\Ibqd}~V[ h`̃2uEܹez?>sOe~rkt6͇33Xg;.l9t:U@Lg>򳉡ts9r|$;ΥIDZ||N]ƒ $BѽӜh1@0=c?ݩi2}xИ1RU+J)L Uꪂ 2l=VR<>A~guEo HD+^@;:uGJSk۷Th\]]|&gk g׭}<^%9i]tooė;u|ڽ|־l]]/JG_ }mP0mw %ebzʜT ť,% E*w"Ӿȇ3s/W?oοaw2d;Y v? t`w>;d'e/?As?##|ˌKˌBfȟ.ȗn|ʠ+Q:~z0^{0^@ 9# a|2 )7{A7MF7@7\$)cF5pvJEs_O2TyU[˳Cϐge3vna{r!Wgˀ^ KL+ƥw*WY[xM}-kkF1n6d b 5Ru(X2M*8+(V>&cˬ$=)>7懤Jx]B&;JػR˯,lcENj9&yQgΒ'8VidN@BX|.|eFt781 }^fҖ1.? fV d{ Uts v=^x&`?&S-ph;:ُG{w8 <0/qކrH'+?u>wxP9xZLԸʢGpkQV =<5b37>RqFPc^u^ ebpb|V+Oj*85ߜ:RNw }QV&ƀ;'}p)NBhعkj@z<}K~o8Lt ;J墦 V˕R;~O;F$(0#&T$`rX|((R|F!e~mث,HskFG'&>,lj"1 ͛Y.Eu// {_C1Cf@)%6b/`{8z5ŷo?0}:Vɤ[Tl!&nwuʿ.+cw&#ӄwYADct Ʊ XGP{7ӦR|K,-&7:]|#MD|&߲*uO T/Axlen+A|sӸ 2Fd jJrX\N/fɱF.yC/ub)WOC1{Qp&tdK`Op,ӅVwcWśI ƍϫ50L)$ fLe>̄On3 &X(^,&m &YAr2&F"g}#HFĊ(1gve6M6 o@Br˯WO>' G'Jgd }qfk6d1޺F)\DEK5 X 9c3o>֌ٳ^RxDz!_F|(pIi)KLNu 61-dt{z$=z ԄQr|?K*_yl xdDXR/!I]5 {`8O 0, 6 僇rClX+.Ġ/>''4wB-xXugm~Ncӄ0ẗ }+,RDvZ+F2}jQwب}rWXsaƄ)Նqxi'PUeC'zI5ʅ{ԟ#10|WٗF{3n=GIDπnuMjβْ4cz%0)%u+ 9م7T7vAgL=[Y,&/ă_| 3. lsDSςe֌zLT zʲ$៶Xq+Nv֒gֶ CBض|"eI.~i& M*(UXw|6(68|%K' ϻHj(t߅ϩnSC A{gۆ*ع91L1p$qzhۧ5Z@<K2OC3BS /RNy( *>`H6A17Q$T{ |iZQZteRb0yN&c~0FĶ2]|R4͜UpNRvc ΋;53_-rΦ(@PX 9-Bex Ϸ;<v7 sCk_<ҵe>v ǯ-(' vJ^Qt tlmb @Oל N4 턷Q85`y+@04zW 21S`;hu 1uB (c4o@L?Q1?{c]'nFQƦi#Q`W:*7nMywTFosQ`W_<tcb3ۙBYa1 g'[yӯy~{C#> ;y 2i^;FfB~eaGZϼ:;ʆo/tQF$V#01/y암vlHK9m=GPX1'NR(t;>f # iGۂv<ӍŕcƂIEr gdcϺ.VsByej ٞջHR#z.YA C1Xqk @3 mr?u,r?],L Ci>c1}p1LBL6 IQlv.2XdS>C'@jF7\f d9Z\K>مu&;k9ώK~>t \99.s@|/I›}XI|aAt@')Wnr+ Sqk?_V˛wByֽKgNw$7mv<~vi a%2(W<gߴGkO, -ݸ'ӟ?\w?^6I2f+ AHcfC >ֳL~}'Wi%f[;6aNw6~̈́M>&Şve}d(