When I first laid eyes on OpenID, I had a lot of trouble understanding exactly what it was and how it worked. The existing documentation was pretty vague or didn’t explain enough.
The only thing that brought me back to it was its promise of simplicity.
The OpenID website says, “OpenID eliminates the need for multiple usernames across different websites, simplifying your online experience.”
How’s that for vague?
Since then, I’ve researched it a little more, seen the value in it, and added support for it to this website. I thought I’d explain it, hopefully a bit more clearly, and show you why you might consider getting one.
How do I use an OpenID?
Well, put simply, OpenID is a simpler way of navigating the web that eliminates the need for multiple usernames and passwords across different websites. But, more than that, it’s a way to take control of your online identity.
-
Find an OpenID Host – You first have to find an OpenID host. You can find a pretty good list of providers on the OpenID website that includes a few places where you might already have an account.
I host mine with ClaimID but there are tons of choices and you should look around to find the one that works for you.
-
Get your OpenID URL – After you’ve found the host, you’ll sign up for an account with them, and they’ll give you your OpenID URL.
-
Use Your OpenID URL – On sites that support OpenID, like this one, instead of using the regular username/password login you can open an account with your OpenID.
This is where I was originally confused. I thought, “You know, all it would take is for someone to guess my URL and they’d have access to my OpenID account.” Which didn’t make much sense.
So, to save the same confusion for others, here’s how it actually works:
When you punch your OpenID URL into a login form and hit enter, the site that you’re signing into communicates with your OpenID URL and asks it if you have permission to use that ID.
If you haven’t signed in to your OpenID, you’re redirected to your OpenID site and asked to sign in.
Once you’re signed in, you’re signed in for the session – which is to say until you close your browser.
So, the convenience is that you only have to remember one password and you only have to use it once.
The upsides are:
- the ease of use,
- the reduced number of logins you have to remember,
- increased security against phishing attacks
The downside is that there is only one password that has to be compromised in order for someone to get access to all of your logins. Which is a pretty big downside if you’re the type that isn’t careful with your passwords.
If you’re the type of person that does a lot of worrying about security, OpenID probably isn’t ready for you yet.
If, on the other hand, you’re the type of person that has a lot of online logins, and you want an easier way to remember them, get an openID and start keeping your eye out for the openID logo, or try it out on this site today.
