Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

It actually is decentralized, in the sense that anyone can implement a BrowserID provider.


Anyone can, but from the looks of it, a site chooses to trust one at a time.


There are two separate things here. Using the terminology from http://lloyd.io/how-browserid-works , you have:

1. Primary Identity Authority. This is a host (i.e. the one in your email address) that supports BrowserId. This is fully decentralized.

2. Implementation Provider/Secondary Identity Authority. For now the site has to choose one to trust, but once your browser has support it becomes the IP, and when your host becames a PIA there's no need for an SIA.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: