![Page 1: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/1.jpg)
François Marier – @fmarier
P a s s w o r d s s u c kbut centralized proprietary services are not the answer
![Page 2: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/2.jpg)
member number
4061
![Page 3: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/3.jpg)
![Page 4: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/4.jpg)
501c3
![Page 5: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/5.jpg)
keeping the webopen & innovative
mission
![Page 6: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/6.jpg)
free softwareprivacy
users in control
principles
![Page 7: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/7.jpg)
threat: passwords
![Page 8: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/8.jpg)
threat: passwordspassword alternatives
![Page 9: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/9.jpg)
why?
![Page 10: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/10.jpg)
passwordsare hard toremember
![Page 11: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/11.jpg)
![Page 12: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/12.jpg)
re-use
![Page 13: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/13.jpg)
![Page 14: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/14.jpg)
![Page 15: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/15.jpg)
![Page 16: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/16.jpg)
![Page 17: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/17.jpg)
![Page 18: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/18.jpg)
![Page 19: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/19.jpg)
![Page 20: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/20.jpg)
![Page 21: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/21.jpg)
not just anothertechnical problem
![Page 22: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/22.jpg)
![Page 23: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/23.jpg)
![Page 24: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/24.jpg)
![Page 25: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/25.jpg)
wanted:better login solution forfree software developers
![Page 26: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/26.jpg)
![Page 27: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/27.jpg)
decentralized
![Page 28: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/28.jpg)
myid.com/u/francois
![Page 29: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/29.jpg)
![Page 30: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/30.jpg)
![Page 31: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/31.jpg)
![Page 32: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/32.jpg)
![Page 33: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/33.jpg)
privacy®
![Page 34: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/34.jpg)
using the web should notrequire a Facebook account
![Page 35: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/35.jpg)
![Page 36: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/36.jpg)
decentralized
![Page 37: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/37.jpg)
privacy-sensitivedecentralized
![Page 38: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/38.jpg)
privacy-sensitive
simple
decentralized
![Page 39: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/39.jpg)
privacy-sensitive
simplefree software
decentralized
![Page 40: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/40.jpg)
in your browser
![Page 41: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/41.jpg)
how does it work?
![Page 43: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/43.jpg)
<digital signatures 101>
![Page 44: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/44.jpg)
private public
![Page 45: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/45.jpg)
public
![Page 46: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/46.jpg)
My name isFrançois Marierand my email istoo long to fiton one line.
![Page 47: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/47.jpg)
My name isFrançois Marierand my email istoo long to fiton one line.private
![Page 48: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/48.jpg)
My name isFrançois Marierand my email istoo long to fiton one line. public
![Page 49: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/49.jpg)
sign verify
![Page 50: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/50.jpg)
</digital signatures 101>
![Page 52: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/52.jpg)
getting a proof of email ownership
![Page 53: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/53.jpg)
authenticate?
![Page 54: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/54.jpg)
authenticate?
public key
![Page 55: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/55.jpg)
authenticate?
public key
signed public key
![Page 56: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/56.jpg)
you have a signed statement from yourprovider that you own your email address
![Page 57: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/57.jpg)
![Page 58: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/58.jpg)
![Page 59: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/59.jpg)
![Page 60: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/60.jpg)
![Page 61: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/61.jpg)
![Page 62: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/62.jpg)
![Page 63: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/63.jpg)
![Page 64: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/64.jpg)
logging into a 3rd party site
![Page 65: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/65.jpg)
assertion
Valid for: 2 minutes
mediagoblin.org
![Page 66: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/66.jpg)
check audience
assertion
Valid for: 2 minutes
mediagoblin.org
![Page 67: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/67.jpg)
check audiencecheck expiry
assertion
Valid for: 2 minutes
mediagoblin.org
![Page 68: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/68.jpg)
check audiencecheck expirycheck signature
assertion
Valid for: 2 minutes
mediagoblin.org
![Page 69: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/69.jpg)
assertion
public key
Valid for: 2 minutes
mediagoblin.org
![Page 70: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/70.jpg)
assertion
Valid for: 2 minutes
mediagoblin.org
![Page 71: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/71.jpg)
assertion
session cookie
![Page 72: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/72.jpg)
Persona is federated &protects your privacy
![Page 73: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/73.jpg)
achievingthe vision
![Page 74: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/74.jpg)
![Page 75: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/75.jpg)
email providers
browser vendors
![Page 76: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/76.jpg)
email providers
![Page 79: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/79.jpg)
fallback identity provider
![Page 80: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/80.jpg)
![Page 81: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/81.jpg)
![Page 82: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/82.jpg)
![Page 83: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/83.jpg)
persona.org account
![Page 84: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/84.jpg)
support for all email providers
![Page 85: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/85.jpg)
browser vendors
![Page 86: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/86.jpg)
navigator.id.*
![Page 87: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/87.jpg)
![Page 88: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/88.jpg)
![Page 89: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/89.jpg)
![Page 90: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/90.jpg)
js
![Page 91: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/91.jpg)
support for allmodern browsers
>= 8
![Page 92: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/92.jpg)
support for allmodern browsers
>= 8
![Page 93: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/93.jpg)
support for freebrowsers too
![Page 94: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/94.jpg)
email providers
browser vendors
![Page 95: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/95.jpg)
using it on your site
![Page 96: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/96.jpg)
![Page 97: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/97.jpg)
<script src=”https://login.persona.org/include.js”></script></body></html>
![Page 98: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/98.jpg)
navigator.id.watch({ loggedInEmail: “[email protected]”, onlogin: function (assertion) { $.post('/login', {assertion: assertion}, function (data) { // do something } ); }, onlogout: function () { window.location = '/logout'; }});
![Page 99: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/99.jpg)
navigator.id.watch({ loggedInUser: “[email protected]”, onlogin: function (assertion) { $.post('/login', {assertion: assertion}, function (data) { // do something } ); }, onlogout: function () { window.location = '/logout'; }});
![Page 100: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/100.jpg)
navigator.id.watch({ loggedInUser: null, onlogin: function (assertion) { $.post('/login', {assertion: assertion}, function (data) { // do something } ); }, onlogout: function () { window.location = '/logout'; }});
![Page 101: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/101.jpg)
navigator.id.watch({ loggedInUser: null, onlogin: function (assertion) { $.post('/login', {assertion: assertion}, function (data) { // do something } ); }, onlogout: function () { window.location = '/logout'; }});
![Page 102: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/102.jpg)
navigator.id.watch({ loggedInUser: null, onlogin: function (assertion) { $.post('/login', {assertion: assertion}, function (data) { window.location = '/'; } ); }, onlogout: function () { window.location = '/logout'; }});
![Page 103: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/103.jpg)
![Page 104: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/104.jpg)
navigator.id.request()
![Page 105: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/105.jpg)
![Page 106: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/106.jpg)
![Page 107: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/107.jpg)
![Page 108: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/108.jpg)
navigator.id.watch({ loggedInUser: null, onlogin: function (assertion) { $.post('/login', {assertion: assertion}, function (data) { window.location = '/'; } ); }, onlogout: function () { window.location = '/logout'; }});
![Page 109: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/109.jpg)
navigator.id.watch({ loggedInUser: null, onlogin: function (assertion) { $.post('/login', {assertion: assertion}, function (data) { window.location = '/home'; } ); }, onlogout: function () { window.location = '/logout'; }});
![Page 110: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/110.jpg)
def verify_assertion(assertion):
page = requests.post( 'https://verifier.login.persona.org/verify', Data={ "assertion": assertion, "audience": 'http://123done.org'})
data = page.json return data.status == 'okay'
![Page 111: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/111.jpg)
def verify_assertion(assertion):
page = requests.post( 'https://verifier.login.persona.org/verify', Data={ "assertion": assertion, "audience": 'http://123done.org'})
data = page.json return data.status == 'okay'
![Page 112: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/112.jpg)
{ status: “okay”,
audience: “http://123done.org”,
expires: 1344849682560,
email: “[email protected]”,
issuer: “login.persona.org”}
![Page 113: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/113.jpg)
{ status: “failed”,
reason: “assertion has expired”}
![Page 114: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/114.jpg)
![Page 115: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/115.jpg)
![Page 116: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/116.jpg)
![Page 117: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/117.jpg)
navigator.id.logout()
![Page 118: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/118.jpg)
navigator.id.watch({ loggedInUser: null, onlogin: function (assertion) { $.post('/login', {assertion: assertion}, function (data) { window.location = '/home'; } ); }, onlogout: function () { window.location = '/logout'; }});
![Page 119: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/119.jpg)
![Page 120: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/120.jpg)
1. load javascript library
![Page 121: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/121.jpg)
1. load javascript library
2. setup login & logout callbacks
![Page 122: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/122.jpg)
1. load javascript library
2. setup login & logout callbacks
3. add login and logout buttons
![Page 123: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/123.jpg)
1. load javascript library
2. setup login & logout callbacks
3. add login and logout buttons
4. verify proof of ownership
![Page 124: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/124.jpg)
you can add Persona toyour site in one afternoon
![Page 125: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/125.jpg)
wanna help ussolve the
password problem?
![Page 126: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/126.jpg)
add Persona toyour project/site
tell us about yourexperience
email one siteasking for it
![Page 127: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/127.jpg)
add Persona toyour project/site
tell us about yourexperience
email one siteasking for it
![Page 128: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/128.jpg)
add Persona toyour project/site
tell us about yourexperience
email one siteasking for it
![Page 129: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/129.jpg)
![Page 130: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/130.jpg)
To learn more about Persona:
https://login.persona.org/http://identity.mozilla.com/
https://developer.mozilla.org/docs/Persona/Why_Personahttps://developer.mozilla.org/docs/Persona/Quick_Setup
https://github.com/mozilla/browserid-cookbookhttps://developer.mozilla.org/docs/Persona/Libraries_and_plugins
http://123done.org/https://wiki.mozilla.org/Identity#Get_Involved
@fmarier http://fmarier.org
![Page 131: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/131.jpg)
Who's using Persona?
![Page 132: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/132.jpg)
identity provider API
https://eyedee.me/.well-known/browserid:
{ "public-key": { "algorithm":"RS", "n":"8606...", "e":"65537" }, "authentication": "/browserid/sign_in.html", "provisioning": "/browserid/provision.html"}
![Page 133: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/133.jpg)
https://eyedee.me/.well-known/browserid:
{ "public-key": { "algorithm":"RS", "n":"8606...", "e":"65537" }, "authentication": "/browserid/sign_in.html", "provisioning": "/browserid/provision.html"}
identity provider API
![Page 134: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/134.jpg)
https://eyedee.me/.well-known/browserid:
{ "public-key": { "algorithm":"RS", "n":"8606...", "e":"65537" }, "authentication": "/browserid/sign_in.html", "provisioning": "/browserid/provision.html"}
identity provider API
![Page 135: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/135.jpg)
https://eyedee.me/.well-known/browserid:
{ "public-key": { "algorithm":"RS", "n":"8606...", "e":"65537" }, "authentication": "/browserid/sign_in.html", "provisioning": "/browserid/provision.html"}
identity provider API
![Page 136: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/136.jpg)
https://eyedee.me/.well-known/browserid:
{ "public-key": { "algorithm":"RS", "n":"8606...", "e":"65537" }, "authentication": "/browserid/sign_in.html", "provisioning": "/browserid/provision.html"}
identity provider API
![Page 137: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/137.jpg)
identity provider API
1. check for your /.well-known/browserid
2. try the provisioning endpoint
3. show the authentication page
4. call the provisioning endpoint again
![Page 138: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/138.jpg)
identity provider API
1. check for your /.well-known/browserid
2. try the provisioning endpoint
3. show the authentication page
4. call the provisioning endpoint again
![Page 139: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/139.jpg)
identity provider API
1. check for your /.well-known/browserid
2. try the provisioning endpoint
3. show the authentication page
4. call the provisioning endpoint again
![Page 140: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/140.jpg)
identity provider API
1. check for your /.well-known/browserid
2. try the provisioning endpoint
3. show the authentication page
4. call the provisioning endpoint again
![Page 141: Passwords suck, but centralized proprietary services are not the answer](https://reader034.vdocuments.us/reader034/viewer/2022052410/554be372b4c90556328b48ca/html5/thumbnails/141.jpg)
© 2013 François Marier <[email protected]>This work is licensed under aCreative Commons Attribution-ShareAlike 3.0 New Zealand License.
Laptop password: https://secure.flickr.com/photos/reidrac/4696900602/
Top 500 passwords: http://xato.net/passwords/more-top-worst-passwords/
Parchment: https://secure.flickr.com/photos/27613359@N03/6750396225/
Elephant in room: https://secure.flickr.com/photos/bitboy/246805948/
Cookie on tray: https://secure.flickr.com/photos/jamisonjudd/4810986199/
Uncle Sam: https://secure.flickr.com/photos/donkeyhotey/5666065982/
US passport: https://secure.flickr.com/photos/damian613/5077609023/
Photo credits: