It isn't decentralized (you have admitted this yourself!).
So what degree of decentralization is necessary for non-brokenness in
your philosophy? Is ICANN allowable?
Again, just remember your own words:
"Objection: The implementation relies on a single domain."
This is how you are doing things RIGHT NOW.
THAT is what makes XAuth broken.
So you're saying Peter's suggestion is exactly as broken?
Read carefully: this is how YOU are doing things.
Peter's replies have already covered everything else I might have
said, with notable thoroughness and elegance at that, so I will bow
out for now, with one exception: I will try to assemble a Venn
diagram depicting the XAuth concepts and where you/me/Peter reside
along them.
-Shade
_______________________________________________
specs mailing list
[email protected]
http://lists.openid.net/mailman/listinfo/openid-specs
