This is a good thing. The more people looking at the security of CardSpace the better. The end result will be a more secure solution...
Students at the Ruhr University of Bochum, Germany, say they have found a way to steal security tokens in Microsoft's new CardSpace authentication framework. Attackers can apparently get access to protected, encrypted user data – such as passwords, credit card numbers, and delivery addresses – when they are transmitted.
CardSpace, InfoCard, Microsoft, MSFT, identity management