Comment 1 for bug 905730

Here are some notes from an earlier email thread:

One of goals of OpenID was to let you log into sites you don't want to give your email address to. BrowserID throws this out the window, using your email address as an authentication token. This of course also ties all your accounts to your current email provider unless you bother to run your own personal domain. Apparently BrowserID is not yet federated, and the nice UI experience degrades if your email provider does not implement the email verification protocol.