Skip to content
Saturday, May 10, 2025
  • Follow me on Twitter
  • Subscribe to Youtube
  • LinkedIn
  • Follow me on Twitter
  • Subscribe to Youtube
  • LinkedIn

.Nat Zone

Digital Identity and Privacy
.Nat Zone
Digital Identity and Privacy
  • About Nat Sakimura
.Nat Zone
Digital Identity and Privacy
  • Follow me on Twitter
  • Subscribe to Youtube
  • LinkedIn

Category: OpenID Connect

identity OAuth OpenID Connect

On the XARA vulnerability on MacOS X and iOS

Nat June 19, 2015 3 Comments securityXARA

Just came across this article: Apple CORED: Boffins reveal password-killer 0-days for iOS and OS X, by The Register. Since the news itself did not explain…

View More On the XARA vulnerability on MacOS X and iOS
OAuth OpenID Connect

Apple’s answer to the in-secure use of in-app browser? — iOS 9 introduces SFSafariViewController

Nat June 9, 2015 No Comments

Apple forcing developpers to use in-app browser instead of spawning Safari has been known as an extremely insecure practice for sometime. There many reasons that…

View More Apple’s answer to the in-secure use of in-app browser? — iOS 9 introduces SFSafariViewController
identity OpenID Connect

Making a Javascript OpenID Connect Client in 4 steps

Nat December 10, 2014 26 Comments

When John, Breno, and I started the OpenID Connect work, one of the target was to make it as simple as putting two files on…

View More Making a Javascript OpenID Connect Client in 4 steps
OpenID Connect

draft 02 of OpenID 2.0 to Connect Migration is now available

Nat August 7, 2014 1 Comment

OpenID 2.0 to OpenID Connect Migration (aka OID2 to OIDC Migration) is a spec that allows RPs to associate the old OpenID 2.0 identifiers to…

View More draft 02 of OpenID 2.0 to Connect Migration is now available
OAuth OpenID Connect

Covert Redirect is not new but.. A risk analysis and recommendations

Nat May 8, 2014 4 Comments OpenID 2.0securitytrust framework

So, there has been a flurry of worries induced by the CNET and other articles [1] about “Covert Redirect”. Like Leandro Boffi wrote in his blog…

View More Covert Redirect is not new but.. A risk analysis and recommendations
identity OAuth OpenID Connect OpenID Foundation PEOFIAMP

OpenID Connect is here! – An Identity Layer on the internet

Nat February 26, 2014 5 Comments open sourceOpenID Connect

Celebrate! OpenID Connect 1.0 Final is here! After four and half years, or six years if we include the time needed to start the working…

View More OpenID Connect is here! – An Identity Layer on the internet
OpenID Connect

Guidance on which grant / flow to use for OpenID Connect

Nat October 30, 2013 No Comments

Many people seem to ask for the guidance on which grant / flow to use in OpenID Connect. Here is my straw-man answer. Conditions /…

View More Guidance on which grant / flow to use for OpenID Connect
identity OpenID Connect

Refactoring OpenID Connect Drafts

Nat August 27, 2013 2 Comments

After the Berlin OpenID AB/C WG F2F meeting, I have been trying to refactor the Connect suites into more palatable form. I am supposed to…

View More Refactoring OpenID Connect Drafts
OpenID Connect

What to read when you want to build OpenID Connect

Nat July 28, 2013 1 Comment

OpenID Connect has many components. Sometimes, it seems confusing what to read for a new reader, or worse, intimidating. Here is a flow chart I…

View More What to read when you want to build OpenID Connect
OAuth OpenID Connect

Write an OpenID Connect server in three simple steps

Nat July 28, 2013 31 Comments OAuth Authentication

An OpenID Connect server is just an OAuth 2.0 server on steroids. What it does it to return the ID Token, which contains information about…

View More Write an OpenID Connect server in three simple steps

Posts pagination

Previous page Page 1 Page 2 Page 3 Page 4 Page 5 Next page

Categories

Archives

Meta

  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

OpenID Connect in a nutshell

Nat January 20, 2012 39 Comments

Write an OpenID Connect server in three simple steps

Nat July 28, 2013 31 Comments
Fig.3 OpenID Connect Authentication

Dummy’s guide for the Difference between OAuth Authentication and OpenID

Nat May 15, 2011 26 Comments

Making a Javascript OpenID Connect Client in 4 steps

Nat December 10, 2014 26 Comments
GAIN Intro Slide title page

Announcing GAIN: Global Assured Identity Network

Nat September 14, 2021 10 Comments
[…] (日本語機械翻訳。英語原文はこちら) […]
The Evolution of Digital Identity: OpenID’s Journey (SIDI Hub Tokyo Opening Speech) – @_Nat Zone
November 12, 2024 @ 4:30 AM
[…] conference’s content director, I...
[June 4] Join us for a Keynote speech at the European Identity & Cloud Conference 2024 in Berlin titled “Les Miserables of the Cyber Frontier: The Dueling Narratives of Decentralized Identities.” – .Nat Zone
June 2, 2024 @ 9:41 PM
[…] this session was planned...
[June 4] Join us for a Keynote speech at the European Identity & Cloud Conference 2024 in Berlin titled “Les Miserables of the Cyber Frontier: The Dueling Narratives of Decentralized Identities.” – .Nat Zone
June 2, 2024 @ 9:35 PM
[…] this session was planned...
[June 4]I will deliver a keynote speech at the European Identity & Cloud Conference 2024 in Berlin titled “Les Miserables of the Cyber Frontier: The Dueling Narratives of Decentralized Identities.” – .Nat Zone
June 2, 2024 @ 9:31 PM
[…] is the adoptation of...
The Miserable Society and the Identity System: The Dangers of Data Linking as Seen in Victor Hugo’s Les Misérables (2024 EU Version) – .Nat Zone
June 2, 2024 @ 7:04 PM
#Certification #cis2012 #EIC18 #eKYC #idnetity #odf #OECDDigitalMX #PowerToThePeople +1 4th Industrial Revolution ab adoption aggregated claims AI Amazing Grace AML API APIdays APP Scams Apple authentication Authorizaiton Server automotive Ave Verum Corpus Berlin BitCoin Blockchain Book BrowserID CAN Bus cat10 cembalo Certification ChatGPT Christmas cimbalom Citi claims code phishing connect cookie CPE Bach cut-n-paste cx data breach data leakage DataRights delegation DID Digital Deflation Digital Identity discovery distributed claims Distributed Ledger e-Residency Card eDIAS eic17 eic2013 EIC2022 eIDAS encryption error Estonia Ethics EU EU AMLR EU DI Wallet EUDIW facebook FAPI FDX federated identity fedlab Fianncial API Fintech flute GAIN GDPR Google Google Bard gov2.0 Governance government systems HoK Holiday music ID2020 idcon iddy identifier identity Identity Assurance Identity Ecosystem Identity in Conflict Identiverse IdP ietf IETF 92 iiw Implementer's Draft IoT ITAC japan json JWS JWT Kantara Les Miserables Linux Foundation LoA Managed Apple ID marimba MCP mix-up mix-up attack mobile MODRNA Mozart MyData National Identity NIST NSTIC nttdocomo oath2 OAuth OAuth 2.0 Authentication OAuth Authentication OAuth IdP Mix-up attack OECD OIDC oidf oidf-j Open Banking Open Finance open source openid OpenID 2.0 OpenID Connect OpenID Foundation Workshp openid/abc OpenSSL OpenWallet passkeys password persona phishing PID privacy Privmas Protected resource PSD2 PSD3 punycode refugee regulations relationship response_type RFC RFC3986 RFC6749 RFC6750 rp saml SBT SCIM scope scopes seasons greeting security Sef-issued identity Self Issued Identity Self Issued IdP Self-issued OP Self-sovereign Identity Shared Signals Siciliano signature SIIdP SIOP slack SP800-63 Specs spinet SSF SSI test Tokens tracking trust trust framework TUAC twitter UK Open Banking Ukraine uma UTF-8 VC Verifiable Credentials video vote W3C wallet wallets Web3 Web5 XARA xrds Youtube
  • Follow me on Twitter
  • Subscribe to Youtube
  • LinkedIn
.Nat Zone | Designed by: Theme Freesia | WordPress | © Copyright All right reserved
We use cookies to ensure that we give you the best experience on our website. If you continue to use this site we will assume that you are happy with it.Ok