HealthVault selects two OpenID providers.

Microsoft has finally implemented the OpenID authentication platform allowing for OpenID logins on its HealthVault medical site. Currently, HealthVault will only support authentication from two OpenID providers: TrustBearer and VeriSign. TrustBearer Labs' OpenID service will allow HealthVault users to login securely to their account using multi-factor hardware authentication devices, such as smart cards, biometric readers or security-enhanced mobile phones. The service uses challenge-response authentication to prevent common phishing and man-in-the-middle attacks. VeriSign combines the convenience of OpenID single sign-on with the security of strong authentication via VeriSign Identity Protection (VIP) credentials. Both VeriSign and TrustBearer offer customers the option of using a token to bolster the authentication process.