There are multiple efforts that are going on to bring the federated identity to non-web protocols. At IETF, it is done in the kitten WG and here are projects like Moonshot that deals with GSS-API etc. That is the right …

As part of the PEAFIAMP project, we are supposed to come up with a way to provide the service providers (SP, RP) to find out how many times the service was provided to the entity. Note that I used entity …

  As part of the PEAFIAMP project, we are now working on the Attribute Server – Authorization Server introduction. Here, “introduction” is done in the following steps: SP requests certain attributes to the authorization server, using the standardized (registered) vocabulary. …

When I wrote the previous post (US$1.5M project to bolster the privacy and security of the cyberspace), the English name of the project was not yet determined. Now we have one. Privacy Enhancement for Open Federated Identity/Access Management Platforms (PEOFIAMP). Here …

National Institute of Informatics (NII), University of Tokyo, University of Kyoto, and Nomura Research Institute have jointly won a funding from Ministry of Communication with regard to privacy and security enhancement of the cyberspace through SAML and OpenID Connect. The funding is …

To prepare for the panel discussion at the Cloud Identity Summit 2012, I was looking back to my old blog posts. Then, I found this article “Requirements to Digital Identity” which was written back in 2004 in Japanese. Here is …

Lot’s of articles appeared on the Yahoo! Voices’ password leakage on the 11th. Many people seem to be assuming that Yahoo!s password has been leaked, but to me it seems a little different. According to the press articles[1], it seem …

I just got this message from NIST 20 minutes ago. Identity Ecosystem Steering Group’s secretariat was awarded to Trusted Federal Systems (TFS). The first in-person meeting of the Steering Group, tentatively scheduled for the week of August 13 in metropolitan Chicago.  …

Privacy, whether in the east or west, is a word talked in a vague sense leading to much confusion. In this article, I will try to clarify it from two approaches: etymology and legal literature. 1. Etymology of “privacy” According …

As part of the exercise to see if OpenID Connect Messages 1.0 were written appropriately so that other bindings can be produced, Jun Eijima and I have created a custom scheme binding of the OpenID Connect, and implemented it on …