Abstract image of a woman sitting on books and studying on a laptop

Spec Update - OpenID Retail Summit at PayPal

Download as PPTX, PDF
Ashish Jain, profile picture
Ashish Jain

The document provides an update on ongoing work to extend the OpenID specifications to support new use cases like mobile phones and social login functionality. It discusses the OpenID Artifact Binding working group's progress in developing specifications based on OAuth 2.0, JSON Web Tokens, and other standards. The working group aims to complete draft specifications by May 2011 to allow for testing and further refinement.

TechnologyBusiness
1 of 13
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
OpenID Specification Work UpdateOpenID Retail Summit – March 8, 2011Mike Jones – Microsoft
Spec Work OngoingExisting OpenID 2.0 specifications in use nowAlready work fine for many use casesActive working occurring to extend specifications for new use casesMobile phones and other limited platforms“Facebook Connect” style functionality for easy registrationEasier deployment than OpenID 2.0
Working GroupSpec work occurring in “Artifact Binding” working groupIncorporates submissions to former “Connect” working groupMerger sometimes called “OpenID ABC”Almost certainly not final branding!OpenID specs developed via an open processAll free to participate
WG ParticipantsKey working group participants:Nat Sakimura – Nippon Research Institute – JapanJohn Bradley – Independent – ChileBreno de Medeiros – Google – USPaul Tarjan – Facebook – USAxel Nennker – Deutsche Telekom – GermanyKick Willemse – Independent – NetherlandsTony Nadalin – Microsoft – USMike Jones – Microsoft – USBy no means an exhaustive list!
New Spec Building BlocksBuild on OAuth 2.0Use JavaScript Object Notation (JSON)JSON Web Token (JWT) claims representationGoal: Easy implementation on all modern web platforms
Spec StructureOpenID AB spec contains in two partsCore – abstract specificationBinding – OAuth 2 based bindingJSON Web Token (JWT) spec with signingNext version will add encryptionOther specs like UMA are looking to adopt itDiscovery a separate specWill refer to OAuth 2.0 specs once finished
Spec ProgressCurrent statusCore – 70% doneBindings – 75% done (pending OAuth 2.0 completion)Discovery – 80% (working from SWD)JWT – 90% done for tokens and signatureEncryption remains to be specifiedOAuth 2.0 – 95%Target: Complete drafts by Internet Identity Workshop (IIW) in May
Implementation StatusOpenID ABCDemo version of core and artifact binding available in PHP (BitBucket)Code needs updates for current JWT and yesterday’s spec resultsJSON Web Token (JWT)Implementations for Java, PHP, Python, Ruby, .NET
ABC CapabilitiesArtifact BindingUserInfo EndpointSimple RPsHigher LoASession ManagementUnregistered ClientsOAuth 2 IntegrationUse of JWTsSingle Logout
Open Spec IssuesKinds of identifiers are supportedHarmonization with OAuth 2Permissioning distributed attribute providersClaims specification and integrationTrust metadata formats and transports
IdentifiersNeed to define the supported formats and normalization rulesE-mail Addresshttp/https URLPhone Number?
Use of SummitsMay IIW : Review drafts, make remaining decisionsMunich:  Brief participants on progress, specs - gather inputTokyo:  Test implementations; learn from implementation and deployment experiencesColorado:  Interop work – potentially in cooperation with OSISLondon:  Brief participants on progress, specs - gather inputNov IIW:  Spec refinement and/or finalization
Discussion & ResourcesArtifact Binding Working Group Wiki Pagehttp://wiki.openid.net/w/page/12995134/Artifact-BindingArtifact Binding Mailing Listhttp://lists.openid.net/mailman/listinfo/openid-specs-abMy blog:http://self-issued.info/

More Related Content

PDF
Semantic Search with Infolution - White paper by Ruud van der Pol (Infolution)
Infolution bv
 
PPTX
OpenID Foundation iGov Working Group Update - October 22, 2018
OpenIDFoundation
 
PPTX
Kodak - OpenID Retail Summit at PayPal
Ashish Jain
 
PPTX
UsingMiles - OpenID Retail Summit at PayPal
Ashish Jain
 
PPTX
MDM/MAM/MIM Workshop - CIS 2013
Ashish Jain
 
PPTX
Mobile Devices in the Enterprise: What IT needs to know
Ashish Jain
 
PPTX
PayPal OpenID User Experience
Ashish Jain
 
PPTX
CIS 2015 Mobile SSO
Ashish Jain
 
Semantic Search with Infolution - White paper by Ruud van der Pol (Infolution)
Infolution bv
 
OpenID Foundation iGov Working Group Update - October 22, 2018
OpenIDFoundation
 
Kodak - OpenID Retail Summit at PayPal
Ashish Jain
 
UsingMiles - OpenID Retail Summit at PayPal
Ashish Jain
 
MDM/MAM/MIM Workshop - CIS 2013
Ashish Jain
 
Mobile Devices in the Enterprise: What IT needs to know
Ashish Jain
 
PayPal OpenID User Experience
Ashish Jain
 
CIS 2015 Mobile SSO
Ashish Jain
 

Similar to Spec Update - OpenID Retail Summit at PayPal (20)

PDF
OpenID Foundation Workshop at EIC 2018 - OpenID Connect Working Group Update
MikeLeszcz
 
PPT
OpenID Progress EEMA Conference
evidos
 
PDF
Maker of Things - the open IoT cloud for makers chapter.
Jollen Chen
 
PDF
OpenID Foundation Connect Working Group Update - October 22, 2018
OpenIDFoundation
 
PDF
OpenID Connect "101" Introduction -- October 23, 2018
OpenIDFoundation
 
PPTX
Open id specifications_work_update-tokyo_2011
Nat Sakimura
 
PPT
WS-* Specifications Update 2007
Jorgen Thelin
 
PPT
Microsoft .Net Framework 2 0
Acend Corporate Learning
 
PPTX
OIDF Workshop at Verizon Media -- 9/30/2019 -- OpenID Connect Working Group U...
OpenIDFoundation
 
DOCX
SachinBC_Resume
Sachin BC
 
PPT
Mule tcat server
D.Rajesh Kumar
 
PPT
Mule anypoint connector dev kit
D.Rajesh Kumar
 
PPT
Mule anypoint connector
D.Rajesh Kumar
 
PDF
OpenID for SSI
Torsten Lodderstedt
 
PDF
Resin.io overview (2016 July)
Balena
 
PPT
FIWARE IoT Proposal & Community
FIWARE
 
PDF
Using Node-RED for building IoT workflows
Aniruddha Chakrabarti
 
PDF
Light-up-your-out-of-the-box LightSwitch Application
Boulos Dib
 
DOCX
jimnresumesse
Jim Nye
 
PDF
The WebKit project (LinuxCon North America 2012)
Igalia
 
OpenID Foundation Workshop at EIC 2018 - OpenID Connect Working Group Update
MikeLeszcz
 
OpenID Progress EEMA Conference
evidos
 
Maker of Things - the open IoT cloud for makers chapter.
Jollen Chen
 
OpenID Foundation Connect Working Group Update - October 22, 2018
OpenIDFoundation
 
OpenID Connect "101" Introduction -- October 23, 2018
OpenIDFoundation
 
Open id specifications_work_update-tokyo_2011
Nat Sakimura
 
WS-* Specifications Update 2007
Jorgen Thelin
 
Microsoft .Net Framework 2 0
Acend Corporate Learning
 
OIDF Workshop at Verizon Media -- 9/30/2019 -- OpenID Connect Working Group U...
OpenIDFoundation
 
SachinBC_Resume
Sachin BC
 
Mule tcat server
D.Rajesh Kumar
 
Mule anypoint connector dev kit
D.Rajesh Kumar
 
Mule anypoint connector
D.Rajesh Kumar
 
OpenID for SSI
Torsten Lodderstedt
 
Resin.io overview (2016 July)
Balena
 
FIWARE IoT Proposal & Community
FIWARE
 
Using Node-RED for building IoT workflows
Aniruddha Chakrabarti
 
Light-up-your-out-of-the-box LightSwitch Application
Boulos Dib
 
jimnresumesse
Jim Nye
 
The WebKit project (LinuxCon North America 2012)
Igalia
 
Ad

More from Ashish Jain (11)

PPTX
Mobile SSO using NAPPS
Ashish Jain
 
PPTX
Angies List - OpenID Retail Summit at PayPal
Ashish Jain
 
PPTX
eBay - OpenID Retail Summit at PayPal
Ashish Jain
 
PPTX
OpenID Retail Summit at PayPal - PayPal Identity
Ashish Jain
 
PPTX
PayPal Identity Services - Innovate 2010
Ashish Jain
 
PPTX
Open Id Summit
Ashish Jain
 
PPTX
Say no to Bottled water
Ashish Jain
 
PPT
Open ID Security Issues
Ashish Jain
 
PPT
Consumer Privacy
Ashish Jain
 
PPT
Identity Enabling Web Services
Ashish Jain
 
PPT
Concordia
Ashish Jain
 
Mobile SSO using NAPPS
Ashish Jain
 
Angies List - OpenID Retail Summit at PayPal
Ashish Jain
 
eBay - OpenID Retail Summit at PayPal
Ashish Jain
 
OpenID Retail Summit at PayPal - PayPal Identity
Ashish Jain
 
PayPal Identity Services - Innovate 2010
Ashish Jain
 
Open Id Summit
Ashish Jain
 
Say no to Bottled water
Ashish Jain
 
Open ID Security Issues
Ashish Jain
 
Consumer Privacy
Ashish Jain
 
Identity Enabling Web Services
Ashish Jain
 
Concordia
Ashish Jain
 
Ad

Recently uploaded (20)

PDF
Video forgery: An extensive analysis of inter-and intra-frame manipulation al...
IAESIJAI
 
PPTX
Tartificialntelligence_presentation.pptx
ry7r52mzb4
 
PDF
Five Habits of High-Impact Board Members
OnBoard
 
PPTX
MicrosoftCybserSecurityReferenceArchitecture-April-2025.pptx
SilvioHayashi
 
PDF
1 - Historical Antecedents, Social Consideration.pdf
tuazon2030627
 
PDF
STKI Israel Market Study 2025 version august
Dr. Jimmy Schwarzkopf
 
PPTX
Benefits of Physical activity for teenagers.pptx
Nokwanda Thabethe
 
PDF
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
PDF
TrustArc Webinar - Click, Consent, Trust: Winning the Privacy Game
TrustArc
 
PDF
Getting Started with Data Integration: FME Form 101
Safe Software
 
PDF
Hybrid model detection and classification of lung cancer
IAESIJAI
 
PDF
Microsoft Solutions Partner Drive Digital Transformation with D365.pdf
Microsoft Dynamics
 
PDF
A review of recent deep learning applications in wood surface defect identifi...
IAESIJAI
 
PDF
August Patch Tuesday
Ivanti
 
PDF
ENT215_Completing-a-large-scale-migration-and-modernization-with-AWS.pdf
ssuser28425f
 
PPTX
Chapter 5: Probability Theory and Statistics
RandyFin
 
PDF
Univ-Connecticut-ChatGPT-Presentaion.pdf
ry7r52mzb4
 
PPTX
O2C Customer Invoices to Receipt V15A.pptx
ssuserbfa915
 
PDF
sustainability-14-14877-v2.pddhzftheheeeee
VenkateshGovindaraja9
 
PPT
Geologic Time for studying geology for geologist
ssuser738f5a
 
Video forgery: An extensive analysis of inter-and intra-frame manipulation al...
IAESIJAI
 
Tartificialntelligence_presentation.pptx
ry7r52mzb4
 
Five Habits of High-Impact Board Members
OnBoard
 
MicrosoftCybserSecurityReferenceArchitecture-April-2025.pptx
SilvioHayashi
 
1 - Historical Antecedents, Social Consideration.pdf
tuazon2030627
 
STKI Israel Market Study 2025 version august
Dr. Jimmy Schwarzkopf
 
Benefits of Physical activity for teenagers.pptx
Nokwanda Thabethe
 
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
TrustArc Webinar - Click, Consent, Trust: Winning the Privacy Game
TrustArc
 
Getting Started with Data Integration: FME Form 101
Safe Software
 
Hybrid model detection and classification of lung cancer
IAESIJAI
 
Microsoft Solutions Partner Drive Digital Transformation with D365.pdf
Microsoft Dynamics
 
A review of recent deep learning applications in wood surface defect identifi...
IAESIJAI
 
August Patch Tuesday
Ivanti
 
ENT215_Completing-a-large-scale-migration-and-modernization-with-AWS.pdf
ssuser28425f
 
Chapter 5: Probability Theory and Statistics
RandyFin
 
Univ-Connecticut-ChatGPT-Presentaion.pdf
ry7r52mzb4
 
O2C Customer Invoices to Receipt V15A.pptx
ssuserbfa915
 
sustainability-14-14877-v2.pddhzftheheeeee
VenkateshGovindaraja9
 
Geologic Time for studying geology for geologist
ssuser738f5a
 

Spec Update - OpenID Retail Summit at PayPal

  • 1. OpenID Specification Work UpdateOpenID Retail Summit – March 8, 2011Mike Jones – Microsoft
  • 2. Spec Work OngoingExisting OpenID 2.0 specifications in use nowAlready work fine for many use casesActive working occurring to extend specifications for new use casesMobile phones and other limited platforms“Facebook Connect” style functionality for easy registrationEasier deployment than OpenID 2.0
  • 3. Working GroupSpec work occurring in “Artifact Binding” working groupIncorporates submissions to former “Connect” working groupMerger sometimes called “OpenID ABC”Almost certainly not final branding!OpenID specs developed via an open processAll free to participate
  • 4. WG ParticipantsKey working group participants:Nat Sakimura – Nippon Research Institute – JapanJohn Bradley – Independent – ChileBreno de Medeiros – Google – USPaul Tarjan – Facebook – USAxel Nennker – Deutsche Telekom – GermanyKick Willemse – Independent – NetherlandsTony Nadalin – Microsoft – USMike Jones – Microsoft – USBy no means an exhaustive list!
  • 5. New Spec Building BlocksBuild on OAuth 2.0Use JavaScript Object Notation (JSON)JSON Web Token (JWT) claims representationGoal: Easy implementation on all modern web platforms
  • 6. Spec StructureOpenID AB spec contains in two partsCore – abstract specificationBinding – OAuth 2 based bindingJSON Web Token (JWT) spec with signingNext version will add encryptionOther specs like UMA are looking to adopt itDiscovery a separate specWill refer to OAuth 2.0 specs once finished
  • 7. Spec ProgressCurrent statusCore – 70% doneBindings – 75% done (pending OAuth 2.0 completion)Discovery – 80% (working from SWD)JWT – 90% done for tokens and signatureEncryption remains to be specifiedOAuth 2.0 – 95%Target: Complete drafts by Internet Identity Workshop (IIW) in May
  • 8. Implementation StatusOpenID ABCDemo version of core and artifact binding available in PHP (BitBucket)Code needs updates for current JWT and yesterday’s spec resultsJSON Web Token (JWT)Implementations for Java, PHP, Python, Ruby, .NET
  • 9. ABC CapabilitiesArtifact BindingUserInfo EndpointSimple RPsHigher LoASession ManagementUnregistered ClientsOAuth 2 IntegrationUse of JWTsSingle Logout
  • 10. Open Spec IssuesKinds of identifiers are supportedHarmonization with OAuth 2Permissioning distributed attribute providersClaims specification and integrationTrust metadata formats and transports
  • 11. IdentifiersNeed to define the supported formats and normalization rulesE-mail Addresshttp/https URLPhone Number?
  • 12. Use of SummitsMay IIW : Review drafts, make remaining decisionsMunich:  Brief participants on progress, specs - gather inputTokyo:  Test implementations; learn from implementation and deployment experiencesColorado:  Interop work – potentially in cooperation with OSISLondon:  Brief participants on progress, specs - gather inputNov IIW:  Spec refinement and/or finalization
  • 13. Discussion & ResourcesArtifact Binding Working Group Wiki Pagehttp://wiki.openid.net/w/page/12995134/Artifact-BindingArtifact Binding Mailing Listhttp://lists.openid.net/mailman/listinfo/openid-specs-abMy blog:http://self-issued.info/