Say for example that if one day you could access all of the internet under 1 login. Open your browser and have your escapist, facebook, battlenet, steam etc. accounts all logged under one single account. If for example you wanted to sign up to another website it would be as simple as locating your account and bam all done for you.
Would you be up for one global account for the internet? How do you feel about it?
Not only that but I have multiple email accounts for accounts on certain websites for a reason. I certainly don't want most of it linked to facebook that's for sure.
Yes, that is putting it simply. Now, single sign on technologies exist and I consider them a good thing, just not on a global level. Want SSO in a small company? Sure, awesome. Want it in a medium sized one - it's all right. In a larger one...problems may creep up. Now go multinational and the security starts getting a major headache. Now apply that to the world. Yeah, no thanks.
Certainly, there are companies pushing SSO - companies like Facebook and Google, but it's far from a global account yet. Don't get me wrong, I found it really convenient that a few times I could use a website just by typing in my Google account and yet they weren't sites I'd consider signing up for in the first place. But while convenient, it carries its risks as well. Just last Sunday, I received this email from Google
[my name],
Someone recently tried to use an application to sign in to your Google Account, [my account]. We prevented the sign-in attempt in case this was a hijacker trying to access your account. Please review the details of the sign-in attempt:
May 20, 2012 6:25pm GMT
IP Address: 59.56.72.240
Location: Fujian, China
If you do not recognize this sign-in attempt, someone else might be trying to access your account. You should sign in to your account and reset your password immediately. Find out how at http://support.google.com/accounts?p=reset_pw
If this was you, and you want to give this application access to your account, complete the troubleshooting steps listed at http://support.google.com/mail?p=client_login
You have received this mandatory email service announcement to update you about important changes to your Google product or account.
Somebody from China tried to sign in to my account. To think ho much crap I have linked to it (well, not intentionally - just the fringe benefits from a Google account) makes me nauseous. And if they weren't from China, but from somewhere closer, maybe Google wouldn't have called it suspicious. Now imagine how complex would it be to maintain the security for the entire world. Right now Google are trying a two step process - you'd need your email and linking the account to your phone. Go global, and how many steps would you put to ensure the safety? Would we need to introduce a full blown three factor authentication (basically, a password, a security card of some sort, or just a phone number, and biometrics) to protect ourselves?
Of course we then hit another problem with computer security - potential attackers have an even more lucrative goal to work towards, so this would attract a higher profile attackers. Moreover, just better security is enough to make them flock and try to bring it down. You're increasing the convenience with a global SSO, but also the risks. And it's a small improvement to convenience compared to the risk and/or maintenance (needed to reduce the risk) involved.
So, no. I wouldn't like a global SSO. Again, Zhukov said it brief and best - a security nightmare.
Well there are several companies hard at work to make it happen and it is a horrifically bad idea, that means that you only log into something once on a compromised system and your entire internet presence is fucked.
Steam, ebay, paypal, online stores, emails, secure work sites, possibly bank account, remote access computers/servers/routers, databanks, MMO accounts, forums, facebook, school, ... not to mention how conveniently you line up all your personal information for anyone to abuse.
Yes in a perfect world where people aren't waiting for any opportunity to stab you in the throat that system would be great, but we aren't ready for it yet.
I'd hate it. I'm not the kind of person to maliciously slam people under the guise of anonymity but at the same time I don't like people sticking their nose into everything that I do. It's part of the reason that I don't use facebook. It's great if you want everyone to know what you're up to, but to log in to something and have people you don't necessarily want to speak to at that moment constantly bugging you to vote up pictures of their dog or something would drive me insane.
It's part of the reason that I don't use facebook. It's great if you want everyone to know what you're up to, but to log in to something and have people you don't necessarily want to speak to at that moment constantly bugging you to vote up pictures of their dog or something would drive me insane.
Which reminded me of the worst thing for a global single sign on system - your mom will know everything you do online. Do we really want to live in a world like that?
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.
