@protonprivacy Any plans to tackle identity? For SSO purposes I’m stuck with say, google but would love to move over to proton.
deleted by creator
@helenslunch Nobody uses a good privacy/security focused IdP because one doesn’t exist for consumer / smb besides a small handful (many which you noted).
deleted by creator
@theomegabit @protonprivacy Adding @protonmail to get their attention.
You mean like something to compete with services like DeleteMe, Incogni and Aura?
I’d be down for that, I’d like it to be included with proton family, that would give me a good reason to bite the bullet and pay the extra money for it.
I think that @theomegabit@infosec.exchange is asking for Proton to become an OAuth/OIDC provider. This would allow you to sign into any service, app, platform, etc. that supports it using your Proton account. Some common providers that are widely supported are Google, Apple, Github, Facebook, and Microsoft.
It is generally considered more secure than using “regular credentials” like username/email and password when using several services. There are a few downsides to this though. One of those downsides is that your OAuth/OIDC provider will have record of all your accounts used through OAuth/OIDC. For example, @theomegabit@infosec.exchange would like to avoid Google knowing about the various services used.