OpenID Connect: Standards, Usage, and Achievements

openid connect working group n.w
1 / 12
Embed
Share

Learn about OpenID Connect, its widespread usage by companies like Google and Microsoft, its numerous awards, and ongoing work on federation specifications and session management. Discover how this identity standard is shaping the digital world.

  • OpenID Connect
  • Identity Standards
  • Microsoft
  • Federation
  • Authentication
rayaanacharya
ctyn Follow

Uploaded on | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

Download Presentation

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

E N D

Presentation Transcript

  1. OpenID Connect Working Group April 2, 2018 Michael B. Jones Identity Standards Architect Microsoft

  2. Working Together OpenID Connect

  3. Youre Probably Already Using OpenID Connect! If you have an Android phone or log in at AOL, Deutsche Telekom, Google, Microsoft, NEC, NTT, Salesforce, Softbank, Symantec, Verizon, or Yahoo! Japan, you re already using OpenID Connect Many other sites and apps large and small also use OpenID Connect

  4. OpenID Connect

  5. Numerous Awards OpenID Connect won 2012 European Identity Award for Best Innovation/New Standard http://openid.net/2012/04/18/openid-connect- wins-2012-european-identity-and-cloud-award/ OAuth 2.0 won in 2013 JWT/JOSE won in 2014 OpenID Certification program won 2018 Identity Innovation Award

  6. Topics Federation Specification Session Management / Logout Second Errata Set Current Related Work OpenID Connect Certification

  7. Federation Specification Roland Hedberg created OpenID Connect Federation specification http://openid.net/specs/openid-connect- federation-1_0.html Enables establishment and maintenance of multi-party federations using OpenID Connect Defines hierarchical JSON-based metadata structures for federation participants Prototype implementations being tested

  8. Session Management / Logout Three approaches being pursued by the working group: Session Management http://openid.net/specs/openid-connect-session-1_0.html Uses HTML5 postMessage to communicate state change messages between OP and RP iframes Front-Channel Logout http://openid.net/specs/openid-connect-frontchannel-1_0.html Uses HTTP GET to load image or iframe, triggering logout Similar to options in SAML, WS-Federation Back-Channel Logout http://openid.net/specs/openid-connect-backchannel-1_0.html Server-to-communication not using the browser Can be used by native applications, which have no active browser All support multiple logged in sessions from OP at RP Unfortunately, no one approach best for all use cases Is it time to move to Final Specifications?

  9. Second Errata Set Errata process corrects typos, etc. discovered Makes no normative changes Edits under way for second errata set See http://openid.net/specs/openid-connect- core-1_0-23.html for current Core errata draft Waiting for OAuth AS metadata spec draft-ietf- oauth-discovery to finish So we can register OpenID Discovery metadata values Spec just progressed to the RFC Editor I plan to do the remaining edits during IIW

  10. Current Related Work International Government Profile (iGov) Working Group Developing OpenID Connect profile for government & high-value commercial applications Enhanced Authentication Profile (EAP) Working Group Enables Token Bound ID Tokens Enables integration with FIDO and other phishing- resistant authentication solutions

  11. OpenID Certification OpenID Certification enables OpenID Connect implementations to be certified as meeting requirements of defined conformance profiles Now OP and RP certification profiles for: Basic OP and Basic RP Implicit OP and Implicit RP Hybrid OP and Hybrid RP OP Publishing and RP Using Configuration Information Dynamic OP and Dynamic RP See http://openid.net/certification/ and http://openid.net/certification/faq/ And accompanying certification presentation!

  12. Open Conversation How are you using OpenID Connect? What would you like the working group to know and do?

Related


Unveiling the Power of OpenID Connect

Unveiling the Power of OpenID Connect

marlie
OpenID Connect Working Group

OpenID Connect Working Group

jaydon
Future Connect 2023 Summary Document Overview

Future Connect 2023 Summary Document Overview

ernie
OpenID Connect Working Group Update & Progress Report

OpenID Connect Working Group Update & Progress Report

madiha
OpenID Connect: A Comprehensive Overview

OpenID Connect: A Comprehensive Overview

caiden
Insights from OpenID Connect Success

Insights from OpenID Connect Success

aragon
Academic Program Review Exit Meeting Presentation Template

Academic Program Review Exit Meeting Presentation Template

zora
SSO Solution Using OAuth and OpenID Connect for Defense Logistics Agency

SSO Solution Using OAuth and OpenID Connect for Defense Logistics Agency

brynleigh
Comprehensive Guide to Using FIDO for Enhanced Identity Management

Comprehensive Guide to Using FIDO for Enhanced Identity Management

maximilian
Elevate Your Audi Comprehensive APR Tuning Services for Superior Performance and Precision

Elevate Your Audi Comprehensive APR Tuning Services for Superior Performance and Precision

Franklin1
HRMIS APR Evaluation Status Summary as of 23.06.2022

HRMIS APR Evaluation Status Summary as of 23.06.2022

angus
OpenID Federation for Trust Establishment

OpenID Federation for Trust Establishment

willem
Step-by-Step Guide for Connect & Canvas Student Registration

Step-by-Step Guide for Connect & Canvas Student Registration

makynzieb
Connect Alabama: Helping Hands in Addressing Behavioral Health Crisis

Connect Alabama: Helping Hands in Addressing Behavioral Health Crisis

sedgwick_d
Streamlining Payroll Submissions with i-Connect

Streamlining Payroll Submissions with i-Connect

kens_31
Synergy of OpenID and FIDO for Secure Identity Authentication

Synergy of OpenID and FIDO for Secure Identity Authentication

amil_516
Interest Rates and APR: A Comprehensive Guide

Interest Rates and APR: A Comprehensive Guide

stalnaker_j
2024 Academic Program Review

2024 Academic Program Review

desa_3
Enabling Large-Scale Multi-Party Federations with OpenID Connect

Enabling Large-Scale Multi-Party Federations with OpenID Connect

mboss
Secure RESTful Interface Profile Phase 1 Briefing

Secure RESTful Interface Profile Phase 1 Briefing

ahar
The OIDC-Agent Architecture

The OIDC-Agent Architecture

dwi_rin
Enhancing Science with OIDC-Agent: A Revolutionary Approach

Enhancing Science with OIDC-Agent: A Revolutionary Approach

bgeo

More Related Content