BrowserID: Distributed Identity in the Browser
-
Upload
francois-marier -
Category
Technology
-
view
2.194 -
download
1
description
Transcript of BrowserID: Distributed Identity in the Browser
Francois Marier <[email protected]>
Existing Solutions
Client Certificates
Outsource Identity
Be an OpenID Consumer
usability
usability reliability
usability reliability
lock-in
usability reliability
lock-in privacy
wanted:
better web loginswith strong
privacy protection
”“It's about you proving to a websitethat you own an email address.
simple
simple distributed
simple distributed
privacy-protecting
you have a signed statement fromgmail that you own your email address
Is it really that awesome?
Is it really that awesome?
Not quite, but it it will be!
Adding BrowserID to your application
Step 1: enable BrowserID
<script src="https://browserid.org/include.js"></script>
Adding BrowserID to your application
Step 2: get user's identitynavigator.id.get(function(assertion) {
if (assertion) { // User picked an email address ... } else { // User cancelled ... }
});
Adding BrowserID to your application
Step 3: verify user's identity$ curl -d "assertion=<ASSERTION>&audience=http://mysite.com" "https://browserid.org/verify"
Adding BrowserID to your application
Step 3: verify user's identity$ curl -d "assertion=<ASSERTION>&audience=http://mysite.com" "https://browserid.org/verify"
{ "status": "okay", "email": "[email protected]", "audience": "http://mysite.com", "expires": 1308859352261, "issuer": "browserid.org"}
Learn more
https://browserid.org
http://lloyd.io/how-browserid-works
http://mozilla.github.com/browserid-field-guide/
http://myfavoritebeer.org
Copyright © 2012 François MarierReleased under the terms of the Creative CommonsAttribution Share Alike 3.0 Unported Licence
fmarier fmarier