It's all very fascinating
and the w3org pages in particular - but my word it's jargon heavy. This makes sense for a standard but doesn't make it obvious for the casual browser... can anyone point me at a simple-to-understand guide to the technology?
As far as I (probably incorrectly) understand it, the security key is registered once with some trusted authority (please let it not be Google) and thereafter can be registered with multiple websites; the web sites require both a normal checkin (e.g. password) and the presence of this tag on the accessing machine?
(which raises two immediate questions: what if you lose the tag: are you then unable to access every site you've registered it with? and: what if the trusted authority decides to no longer offer the service?)