To prepare for the panel discussion at the Cloud Identity Summit 2012, I was looking back to my old blog posts. Then, I found this…
View More Requirements to Digital Identity back in 2004Category: identity
Some of the OpenID Foundation Summit July 2012 videos available
On July 16, 2012, we had OpenID Connect Interop and OpenID Foundation Summit in conjunction with the Cloud Identity Summit 2012, in Vale, Co. Both…
View More Some of the OpenID Foundation Summit July 2012 videos availableAnalyzing Yahoo! Voices Password Leakage
Lot’s of articles appeared on the Yahoo! Voices’ password leakage on the 11th. Many people seem to be assuming that Yahoo!s password has been leaked,…
View More Analyzing Yahoo! Voices Password LeakageTrusted Federal Systems now the NSTIC ID Ecosystem Steering Group Secretariat
I just got this message from NIST 20 minutes ago. Identity Ecosystem Steering Group’s secretariat was awarded to Trusted Federal Systems (TFS). The first in-person meeting…
View More Trusted Federal Systems now the NSTIC ID Ecosystem Steering Group SecretariatIs Facebook “Like” button tracking you?
Since I am using it on this blog also, I probably should not talk loudly, but I feel creepy about the Facebook “Like” button. If…
View More Is Facebook “Like” button tracking you?Comments on Wang-Chen-Wang paper on OpenID Implementation Vulnerability
In the paper titled “Signing Me onto Your Accounts through Facebook and Google: a Traffic-Guided Security Study of Commercially Deployed Single-Sign-On Web Services“, Rui Wang,…
View More Comments on Wang-Chen-Wang paper on OpenID Implementation VulnerabilityOpenID Connect IdP on iPhone
As part of the exercise to see if OpenID Connect Messages 1.0 were written appropriately so that other bindings can be produced, Jun Eijima and…
View More OpenID Connect IdP on iPhoneOpenID Connect Stripped down to just “Authentication” (aka OAuth Authentication)
So, OpenID Connect provides a lot of advanced facilities to fulfill so many additional feature requested by the member community. It indeed is full of…
View More OpenID Connect Stripped down to just “Authentication” (aka OAuth Authentication)2012 NSTIC/IDtrust Workshop Panel topics?
So, I will be a panelist in the following workshop. 2012 NSTIC/IDtrust Workshop: “Technologies and Standards Enabling the Identity Ecosystem” March 13-14, 2012 NIST –…
View More 2012 NSTIC/IDtrust Workshop Panel topics?The relationship between endpoint responses and response_type, scope pair
So it seems there is a little bit of confusion around what needs to be returned from which endpoint among the readers of OpenID Connect…
View More The relationship between endpoint responses and response_type, scope pair