views:

68

answers:

1

Its a simple question.

I am storing openID's into a database so I can log users in very quickly, should I be encrypting them in my database? A better question would be, are they considered 'sensitive' information?

Thanks.

+6  A: 

Contrary to another answer: No. There's no point in doing it.

To get access to an account, one must first authenticate with the OP. There is no method to somehow break into someone's account by simply knowing an identifier (and only that).

The OpenID protocol, by design, allows users to place their identifiers in very obvious places (like their homepage) with little additional risk. If identifiers were meant to be 'sensitive' information, it wouldn't be possible to delegate OpenIDs.

If the fact that your database has been compromised would imply that an attacker has access to all the identities, OpenID would be really, really insecure (and it isn't).

The OpenID identifier is only a url pointing at a provider. From this information, you can't infer anything more than who the user claims to be (and in case of directed identity, not even that).

You could ask yourself: "Should I be encrypting logins?" If your answer is true -- encrypt the identifiers, because they are no different. If it's false, then don't bother.

Mewp
This should be marked as the correct answer. What I said in comments was incorrect, and your last line pretty much sums up the answer better than mine. I still think there may be problems with certain types of claimed identifiers however. I will work on it tonight.
NickLarsen
Urgh. Someone has posted an incorrect answer (no offence, @NickLarsen; i salute your comment above) - and it has been upvoted and accepted. This happens quite often, although rarely in such a clear-cut way. This is not a good thing. What can we do about this? Is there anything we can do about this? Has Stack Overflow jumped the shark?
Tom Anderson
I cannot delete it because it was accepted, but I was able to edit it.
NickLarsen