OS/2 ReleaseNotes

• 
• 
• 
• 
• 

"Imagine a web where you never have to log in again. Oh sure, we've had browsers attempting to solve the problem by remembering passwords. Keychains to collect all your passwords in one place. There's a better way now. A way without having to write down passwords and without having to change them every few months."

"OpenID uses a URL as your identity. The URL defines you. Whenever a site needs to authenticate you are who you say you are, it goes to the URL for that information. Instead of a login and password, you get one button that effectively says 'Let me in'. "

Quoted from: http://www.webmonkey.com/tutorial/OpenID_for_Dummies

In this article I will show you how to set up an OpenID from VeriSign. Plus, VeriSign added a lot of additional features that now make setting up an OpenID worth the effort. Their One-Click sign-in for non-OpenID sites bridges the gap between the two, since a lot of sites do not have OpenID enabled. Additionally, VeriSign is known around the world in trusted communications and commerce.

VeriSign's version of OpenID gives you easy one click sign-in at OpenID enabled site's. VeriSign use's a Firefox plugin for easy integration and use of your new OpenID. Here is a list of features:

• OpenID issued by VeriSign
• Easy integration with Firefox
• One-Click sign-in for Non-OpenID sites
• 2GB of online storage, or "File Vault"
• Browser certificate
• Optional Identity Portal

With the One-Click sign-in, you no longer have to remember your usernames and passwords to sign in to your favorite Web sites. One-Click securely stores your usernames and passwords in one place so you can quickly and easily sign in from anywhere. This is the main feature from VeriSign that sold me on trying out their OpenID solution. As much as I like the concept of OpenID, there has to be a way to sign into regular sites.

VeriSign also gives you 2GB of online storage, or "File Vault" as they call it. They also issue you a browser certificate that only allows your computer the access your personal information. So, if someone does steal your password they can not use it without the certificate. If you use public computers, then enabling the browser certificate is not the right choice for you. VeriSign, also has a optional profile page if you wish to publish information about your self.

Below is a Quote from their website:

"VeriSign's Personal Identity Portal (PIP) is an identity hub that allows you to manage all aspects of your identity online. The PIP uses OpenID to allow secure interactions online The PIP provides many choices of authentication types. To best protect your vital information, the PIP supports the highest grade of SSL encryption available today, as well as strong second factor tokens and SMS one time passwords. It should be your choice how you interact online and VeriSign understands this. The PIP lets you control with whom and how much you share information and should be your identity agent on the web."

First let's get an OpenID at VeriSign https://pip.verisignlabs.com/. The Personal Identity Portal (PIP) page will be display and then find the 'Get Started Now' icon, click on that to create an account with VeriSign. After you create your account you should see a page like the one below. Find the link "Get SeatBelt for Firefox", this will help you install the Firefox plugin for your new OpenID.

With this Firefox plugin VeriSign gets around one of the shortcomings of OpenID, the length of the Url that is your OpenID. Also, it will sign you into your PIP account and pre-populate the login box for you. This web browser integration makes life one step simpler and is a time saver too.

Now lets talk about the One-Click Sign-In for non-OpenID sites. One-Click Sign-In allows you to quickly sign in to your online accounts from any computer by automatically entering your usernames and passwords at Web sites such as Google, MySpace and Flickr.

Your usernames and passwords are kept private. VeriSign does not have access to your usernames, passwords or accounts at the Web sites you set up with One-Click Sign-In. In addition, no information is saved on your computer and no software installation is required.

One-Click Sign-In encrypts your usernames and passwords with a key that only you know. You will be asked for this key each time you access your One-Click Sign-In information.

Click on the link "Get started with One-Click Sign In", you will need to create a key that secures the usernames and passwords that you supply. On the next page click on 'Add a website' and you should see a page like the image above.

After you set up all of your accounts, just drag the bookmark link to your browser for a one-click sign in.

VeriSign offers 2GB of online storage or "File Vault" as they call it. You can upload almost any type of electronic file to the File Vault, the maximum size for any single file is 15MB. I have experienced a major lost of data and also lived through Hurricane Katrina. Online backup is just one more tool that protects the memories of your life. Trust me, it is possible to lose everything in your life over night and I recommend some kind of off site backup for your data.

Is OpenID and VeriSign's PIP ready for prime time? I believe it is, all the extra features provided by VeriSign bridges the gap between OpenID and traditional authentication. And after some testing I like the VeriSign browser certificate, at first I was not sure about locking down access to only my personal computers. However, it has not been much of a restriction yet. Even if you are not using OpenID I would still recommend using the One-Click login and free browser certificate from VeriSign!