The New Google Authentication

Remember Microsoft Passport, er now Windows Live ID? Google has just introduced their entry in the space, which is now more of the Identity 2.0 space. For details see thier new Account Authentication Proxy for Web-Based Applications page. And check Garett Rogers post at ZDNet for a concise summary.

It was only earlier this week there were a couple of interesting posts on Web APIs and authentication worth reading: Julien Couvreur's piece on Web API authentication for mashups with follow-up by Dare Obasanjo. As Dare notes, "The devil is in the details when talking about authentication, authorization, and Web APIs." This is indeed one of the biggest obstacles in making mashups a more serious business.

Be sure to read the next Security article: Mashups for Terrorists


Comments (3)

I wonder whether this has anything to do with multiple Google accounts being useable at the same time.

What I mean - I do most of my "public" Googling (Gmail, Google Reader, Calendar) as my real name but enter a particular forum on Google Groups using another user name to protect my privacy. Until this week, whenever I logged in to this group I had my other session as the other user disabled (or when I entered Google Groups while logged in to Reader it used my "public" user, requiring me to sign out and sign in again) but this week I seem to be able to keep both identities logged in to separate applications in from different tabs on Firefox.

[...] Browser Based Authentication or BBAuth: which is as they describe “a generic mechanism that will allow users to grant 3rd party web-based applications access their Yahoo! data…it possible to use Yahoo! as a single sign-on for your site, thus removing a barrier to entry for a whole lot of people (over 200 million to be exact).” Looks like a very useful service, somewhat similar to Google’s authentication service released earlier this year. More from Jeremy Zawodny and Dan Theurer [...]