Some Problems and Possible Solutions in Web Authentication

Dan Connolly, W3C


See Problems with HTTP Authentication Interop by Joe Gregorio, January 10 2006, for an entertaining and detailed account of these problems.

State of the Art

Medium Term Solutions

i.e. in future browser releases

Near Term Solutions

i.e. technology that can be deployed in advance of widespread adoption of new standards

From a Liberty case study at XML 2005, it seems that ID-FF has a similar design to OpenID, but I am much less familiar with it.