Security and identity in Mashup applications

The most interesting mashup apps will be creations powered with our personal and business information. So far, there haven't been a single-sign-on model supporting the mashup programming model. Most mashups we've seen so far don't require (or support) logins that allow it to collect information from your private repositories of information. While initiatives like OpenID have the potential to resolve some of these issues, there is a lot of work to be done before the average user will trust a mashup with access to their private information. In coming posts, I'll dive into the Open ID initiative to find out its potential to fill this important technology gap that fundamentally limits the real value that mashups have the potential to provide.

© Copyright 2007, Tomas Elfving