BrowserID: Distributed Identity in the Browser
Upcoming SlideShare
Loading in...5
×
 

BrowserID: Distributed Identity in the Browser

on

  • 2,441 views

BrowserID is a new web login mechanism with strong privacy protection where your browser is the trusted intermediary. Backed by Mozilla, it is based on the simple idea of a user proving that they own ...

BrowserID is a new web login mechanism with strong privacy protection where your browser is the trusted intermediary. Backed by Mozilla, it is based on the simple idea of a user proving that they own an email address, with a generous sprinkling of crypto under the hood. What makes this solution different is that it is designed to be simple (both for users and developers), distributed and privacy-protecting.

Statistics

Views

Total Views
2,441
Views on SlideShare
2,398
Embed Views
43

Actions

Likes
1
Downloads
10
Comments
0

4 Embeds 43

http://a0.twimg.com 22
http://lanyrd.com 16
http://us-w1.rockmelt.com 4
http://coderwall.com 1

Accessibility

Categories

Upload Details

Uploaded via as Adobe PDF

Usage Rights

CC Attribution-ShareAlike LicenseCC Attribution-ShareAlike License

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

BrowserID: Distributed Identity in the Browser BrowserID: Distributed Identity in the Browser Presentation Transcript

  • Francois Marier <francois@catalyst.net.nz>
  • Existing Solutions
  • Client Certificates
  • Outsource Identity
  • Be an OpenID Consumer
  • usability
  • usability reliability
  • usability reliabilitylock-in
  • usability reliabilitylock-in privacy
  • wanted:better web logins with strongprivacy protection
  • “ ”Its about you proving to a websitethat you own an email address.
  • simple
  • simple distributed
  • simple distributed privacy-protecting
  • you have a signed statement fromgmail that you own your email address
  • Is it really that awesome?
  • Is it really that awesome?Not quite, but it it will be!
  • Adding BrowserID to your applicationStep 1: enable BrowserID<script src="https://browserid.org/include.js"></script>
  • Adding BrowserID to your applicationStep 2: get users identitynavigator.id.get(function(assertion) { if (assertion) { // User picked an email address ... } else { // User cancelled ... }});
  • Adding BrowserID to your applicationStep 3: verify users identity$ curl -d"assertion=<ASSERTION>&audience=http://mysite.com""https://browserid.org/verify"
  • Adding BrowserID to your applicationStep 3: verify users identity$ curl -d"assertion=<ASSERTION>&audience=http://mysite.com""https://browserid.org/verify"{ "status": "okay", "email": "person@example.com", "audience": "http://mysite.com", "expires": 1308859352261, "issuer": "browserid.org"}
  • Learn morehttps://browserid.orghttp://lloyd.io/how-browserid-workshttp://mozilla.github.com/browserid-field-guide/http://myfavoritebeer.org fmarier fmarier Copyright © 2012 François Marier Released under the terms of the Creative Commons Attribution Share Alike 3.0 Unported Licence