Category Archives: OpenID

Comscore cookie study

Interesting study from Comscore about the behavior of users with regards to managing cookies on their computers. The data is presented in a somewhat convoluted manner, so let me highlight the key points:

  1. On average a user clear cookies about 2.5 times a month on one computer.
  2. While 69% of the users don’t clear cookies at all, 31% of the users clear cookies at least once every month on a computer.
  3. 7% of the users are frequent cookie cutters, meaning that they clear cookies more than 4 time each month.
  4. Looks like users clear cookies indiscriminately, without regard to the source of the cookie as the data is pretty similar for first party and third party cookies.

Overall, this data sounds about right as it jives well with data I got from a buddy of mine at Yahoo!. Some of the business implications of the data above are:

  1. Cookie based tracking of the number of unique visitors is unreliable
  2. Browser side cache for web pages can be unreliable as my guess is that when users clear their cookies, they also clear all the cached files (anybody has specific data here?) as they are considered same sort of private data…This means that a web site relying on browser side caching for scalability and performance of web site might be in for a surprise.
  3. Cookie based tracking services like MyBlogLog etc. perhaps need a better way to track users? May be using browser plug-ins?

What do you think?

Digg to support OpenID

Things are just going crazy for OpenID…Digg just announced that it is planning to support OpenID. While its not that big a deal in raw numbers (see our coverage of AOL announcement, which is far bigger in terms of sheer numbers), it is a pretty big deal in terms of buzz and the demographic group it effects and therefore could have a pretty significant effect of the adoption of OpenID.

It looks like the OpenID solution is snowballing…I don’t want to sound a pessimistic note but I just hope the community figures out the solution to the phishing issues (see our analysis here) before too late.

See more coverage GigaOM, TechCrunch, RWW

AOL creates 63 million new OpenIDs

Over the weekend, I saw the announcement from AOL, to support OpenID for all of their 63 million AOL/AIM Ids (for those looking for a quick introduction to OpenID, click here). The details of the announcement are as follows (from panzerJohn blog):

  • Every AOL/AIM user now has at least one OpenID URI, http://openid.aol.com/screenname.
  • This experimental OpenID 1.1 Provider service is available now and we are conducting compatibility tests.
  • Our blogging platform has enabled basic OpenID 1.1 in beta, so every beta blog URI is also a basic OpenID identifier. (No Yadis yet.)
  • We don’t yet accept OpenID identities within our products as a relying party, but we’re actively working on it. That roll-out is likely to be gradual.
  • We are tracking the OpenID 2.0 standardization effort and plan to support it after it becomes final.

AOL tries to make AOL/AIM user names sticky

This is an interesting gambit for AOL, who has been shifting from a subscription model to a rich media content/ad based business model, by leverage their access to the Time Warner content library. Opening up AOL/AIM user names via OpenID adds another dimension to this strategy. With OpenID integration, AOL hopes to find more uses for AOL/AIM usernames and to drive more sticky and consistent traffic to AOL. How does it affect AOL/AIM users? With the OpenID integration, an AOL user will be able to login to a service provider that accepts OpenID, using their AOL/AIM username/password, without needing to create a new service specific username/password. This is a great way for AOL to try and retain its once formidable and still significant user base by providing an OpenID based solution to the knotty problem of web signal sign-on.

Further momentum for OpenID

For the OpenID community, this is a significant number of users that can force more vendors to accept OpenID as a sign-on mechanism. One issue to keep on eye on is that this announcement could cause premature mass adoption for OpenID, before it is fully baked. This could potentially expose OpenID to user backlash based on its well documented security issues (see our analysis of the OpenID security issues here). Still, AOL opening up OpenID to its 63 million users is a great validation for OpenID solution. On the heels of the Microsoft announcement, this announcement builds further momentum for OpenID solution as the answer to the web single sign-on problems.

Solution in Site?

With the recent news about OpenID and the movement by giants like Microsoft and AOL, the solution to web single sign-on problem might finally be in sight. Let’s hope we continue along with this torrid pace towards a web where users don’t have to create and remember separate IDs for each service they use.

Also available on Read/Write Web.