The support.orcid.org website is on a UserVoice platform that has a different privacy policy from our other sites. You may view the details at http://support.orcid.org/tos
X

I suggest that...

Add md5 hash of email address(es) to public API response

Most users do not want to make their email address public. Providing a md5 hash of the address would be a workaround to allow profile matching based on email address without exposing the email address publicly.

This idea has been used for many years by the gravatar service.

22 votes
Vote
Sign in
Check!
(thinking…)
Reset
or sign in with
  • facebook
  • google
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Martin FennerMartin Fenner shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →
    declined  ·  ORCID (EMEA)AdminORCID (EMEA) (Admin, ORCID) responded  · 

    Thank you for your suggestion.

    After carefully reviewing this idea, we’ve decided not to proceed with it.

    It is considered a security risk if a “forget password” feature displays if an email address is active in a system. By allowing members to search email address hashes across ORCID, we would be imposing this same risk of data mining.

    At this time we will not move forward with this feature due to the ORCID Trust implications.

    Warm regards,

    ORCID Community

    0 comments

    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      Submitting...

      Feedback and Knowledge Base