In the paper titled “Signing Me onto Your Accounts through Facebook and Google: a Traffic-Guided Security Study of Commercially Deployed Single-Sign-On Web Services“, Rui Wang,…
View More Comments on Wang-Chen-Wang paper on OpenID Implementation VulnerabilityAuthor: Nat
Having been working on Digital Identity since 2000.
Co-author of various identity related specifications like OpenID Connect, JSON Web Token.
Chair of the OpenID Foundation (2011-)
Vice Chair of the OpenID Foundation (2010),
Founder of OpenID Foundation Japan (2008-),
Trustee of Kantara Initiative (2009-).
OpenID Connect IdP on iPhone
As part of the exercise to see if OpenID Connect Messages 1.0 were written appropriately so that other bindings can be produced, Jun Eijima and…
View More OpenID Connect IdP on iPhone
OpenID Connect Stripped down to just “Authentication” (aka OAuth Authentication)
So, OpenID Connect provides a lot of advanced facilities to fulfill so many additional feature requested by the member community. It indeed is full of…
View More OpenID Connect Stripped down to just “Authentication” (aka OAuth Authentication)
OpenID Connect Test Facility Preview Available
Andreas Åkre Solberg and Roland Hedberg from Fedlab opened a technology preview of the OpenID Connect Test Facility. It is publicly available now. Start right…
View More OpenID Connect Test Facility Preview Available2012 NSTIC/IDtrust Workshop Panel topics?
So, I will be a panelist in the following workshop. 2012 NSTIC/IDtrust Workshop: “Technologies and Standards Enabling the Identity Ecosystem” March 13-14, 2012 NIST –…
View More 2012 NSTIC/IDtrust Workshop Panel topics?
The relationship between endpoint responses and response_type, scope pair
So it seems there is a little bit of confusion around what needs to be returned from which endpoint among the readers of OpenID Connect…
View More The relationship between endpoint responses and response_type, scope pairApprove OpenID Connect Implementer’s Drafts!
Hi. OpenID Conenct Implementer’s Draft voting has finally started. We had a technical problem that delayed the start of the voting almost 23 hours, but…
View More Approve OpenID Connect Implementer’s Drafts!DMARC.org – Domain-based Message Authentication, Reporting and Conformance
DMARC – What is it? DMARC, which stands for “Domain-based Message Authentication, Reporting & Conformance”, is a technical specification created by a group of organizations…
View More DMARC.org – Domain-based Message Authentication, Reporting and ConformanceScopes and Claims in OpenID Connect
In OpenID Connect, there are notions of “scopes” and “claims”. Some people see some overlap there and wonders why they are like that. Here is…
View More Scopes and Claims in OpenID Connect
OpenID Connect in a nutshell
When you read the OpenID Connect Specifications, you might feel a little bit intimidated. That’s because they are written in “spec language” and they deal with corner cases,…
View More OpenID Connect in a nutshell
You must be logged in to post a comment.