Mozilla pushes simplified Browser ID login system

Summary: The open-source experiment makes it possible for users to prove ownership of email addresses in a secure manner, without requiring per-site passwords.

By Ryan Naraine for Zero Day | July 18, 2011 -- 06:04 GMT (23:04 PDT)

Follow @ryanaraine

Mozilla's identity team has launched a new decentralized identity system aimed at replacing ad-hoc application-level authentication based on site-specific user-names and passwords.

The open-source experiment, called Browser ID, makes it possible for users to prove ownership of email addresses in a secure manner, without requiring per-site passwords.

A technical explanation is available:

BrowserID uses asymmetric cryptography and digital signatures to allow browsers to create signed assertions about the user's identity, and by identity providers to vouch (via signing of a key-email pair) for a user's identity in a disconnected fashion. BrowserID uses cross document messaging to communicate between documents served from different domains, which makes a usable implementation of BrowserID possible right now without modifications to existing browsers.

This video offers more details:

Topic: Browser

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

3 comments

Log in or register to join the discussion

Questions

1) Any chance that Chrome and IE will pick it up? Without support by major browsers, it's DOA.

2) How well has the security been tested? Have the security professionals vetted it yet? Can it be easily fixed if things are broken? The last thing we need is a security fiasco with this.

3) Are websites embracing it? This is vital. Many, many similar solutions have failed because nobody running a website used them.

It's interesting, but I'm afraid my hopes aren't really that high. Single sign-on has been very popular as a theory, but in practice very few websites have been willing to give up their user name & password systems. This isn't the first time it's been tried - and it probably won't be the last, I'm afraid.

CobraA1

18 July, 2011 07:35

Reply Vote

RE: Mozilla pushes simplified Browser ID login system

How private is this? I mean, if I use one e-mail address for my mainstream shopping sites, and another e-mail address for, say, adult websites, is it possible for the two e-mail addresses to be connected by this? That would be undesirable.

PatHMV

18 July, 2011 14:41

Reply Vote

RE: Mozilla pushes simplified Browser ID login system

@PatHMV They shouldn't be able to see each other, just the email address.

CobraA1
18 July, 2011 21:37

Reply Vote

The best of ZDNet, delivered

White Papers, Webcasts, & Resources

Oracle Database 11g Release 2 vs. IBM DB2 Enterprise 9.7

This study compares two products, employing pre-defined tasks and steps that DBAs perform daily or regularly. Check out the results today!
IBM System Storage LTO Ultrium 6 Tape Drive Performance

This white paper examines the performance benchmarks of the IBM® System Storage® LTO Ultrium 6 Tape Drive which uses technology specifically designed for the midrange open systems environment.
IBM Ready Pack for Cloud: Helping SMBs Manage Growth and Costs

The IBM Ready Pack for Cloud combines high performance computing with virtualization solutions to offer a simple, affordable, comprehensive solution that enables small and midsize businesses (SMBs) to achieve operational efficiencies and faster time to market. Read more now.