Johannes Ernst's Blog

About

Biographical information is here.

Leave me a message.

Categories

All(691)

Most recent posts
How Not To Make Friends With Important Analyst Firms (Nov 14, 2008) Making OpenID More Usable: A Better State Diagram of Web Authentication (Nov 09, 2008) Let's Draw the "Open Stack" as a Proper Stack (Nov 05, 2008) Why End-to-End Security is Important (Oct 13, 2008) Yahoo!'s OpenID Usability Research (Oct 10, 2008) Doing a Google Image Search on Myself -- Oh No (Oct 10, 2008)

Google's Research on Federated Login

Sep 25, 2008
[permanent link]

Eric Sachs, Product Manager for Security at Google, has published an excellent document detailing the results of a Google-internal usability study on federated login. It is written largely from a protocol-neutral perspective, but has immediate applicability to OpenID.

He pays particular attention to how not to confuse users who already have an account at a site and are not technically inclined.

One aspect he doesn't address is whether users got confused by the redirect dance between RP and IdP. But this is the most detailed, most thoughtful description of the real-world usability issues of OpenID and friends that I have seen so far. Way to go, Eric!

[permanent link] Add to [del.icio.us]

This work is licensed under a Creative Commons License. However, NetMesh, Situational, LID, Light-Weight Identity, and InfoGrid are trademarks or registered trademarks of R-Objects Inc., doing business as NetMesh Inc. and no rights to trademarks are granted. For the purposes of attribution, the author is "Johannes Ernst" and attribution shall provide a (clickable, where possible) URL to this site.