So once banks accept OpenID, banks will require that OPs authenticate users using ³strong auth², using mechanisms that are agreed upon by both the the OP and the bank.
Allen On 12/9/09 7:46 PM, "Brandon Ramirez" <[email protected]> wrote: > > > In other words, I personally trust Google not to reset my passwords. My bank, > however, why should they trust Google? Or Joe-Shmo-Provider?
_______________________________________________ security mailing list [email protected] http://lists.openid.net/mailman/listinfo/openid-security
