As I learn …

This site is about all things product (management), sharing things as I learn

,

Mozilla is trying to make our (sign-in) life easier

How convenient would it be if you did not have to have different login details for a range of sites? And if you could store your user data more securely? Mozilla has started to look into this and has just launched BrowserID, an experimental tool that stores your identity information inside your browser.

Mozilla claims that with BrowserID there will be a better and easier way for users to sign in. A user can prove their ownership of an email address with fewer confirmation messages and without site-specific passwords. This experiment forms part of a wider exercise by Mozilla which concentrates on exploring and changing the way user identity works on the web.

These are some of the key aspects of this new way of signing in, as proposed by Mozilla:

  1. Single verification – With BrowserID users will only have to verify their email address once before they can use BrowserID to sign into any website supporting BrowserID with two clicks.
  2. Email address confirmation – If the user is logged into BrowserID, all email addresses associated with the respective account are displayed automatically. The user then has to to select one, or use the default selection, and click the Sign In button in the window afterwards. A password does not need to be entered anymore.
  3. Secure The Verified Email Protocol that the BrowserID uses is entirely based on a user’s email address (as opposed to the OpenID which is typically based on a user ID or user-specific URL). The idea behind using verified emails is that it should be easier and more secure for the user to control. Sites get proof of ownership using public key cryptography.
  4. Cross-browser – Not unimportantly, BrowserID will work on all modern web (including Internet Explorer) and mobile browsers.
  5. Decentralised – Anyone with an email address can sign in with BrowserID.
Main learning point: I know it’s early days but wouldn’t it be amazing if there would an easier way to sign-in on sites and be less worried about your personal details being stolen (think for example about the Sony Playstation hack earlier this year). Mozilla will be the first to stress that its BrowserID is an experiment, which it will iterate as more people start testing it. I do feel, however, that Mozilla’s vision is a great one and I really hope that they succeed in creating a robust, secure but very easy way of using online credentials.

Related links for further learning:

http://identity.mozilla.com/post/7616727542/introducing-browserid-a-better-way-to-sign-in

http://www.technologyreview.com/web/38092/?mod=chfeatured

http://www.ghacks.net/2011/07/15/mozilla-browserid-sign-in-system/

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Blog at WordPress.com.

%d bloggers like this: