For anyone interested, I've put out a 2nd draft of my OP-MultiAuth idea. I think the first draft was pretty confusing, so hopefully this clarifies things a bit more.
Wiki Page: http://wiki.openid.net/OP-MultiAuth Actual Draft: http://wiki.openid.net/f/openid-provider-multiauth-extension-1_0-2.html In a nutshell, the idea here is to protect end-users against a "rogue OP" by providing a mechanism for a Claimed Identifier to mandate that an RP get valid auth assertions from two or more different OP's before giving access to RP-protected resources. Thanks! David
_______________________________________________ specs mailing list specs@openid.net http://openid.net/mailman/listinfo/specs