Your SlideShare is downloading. ×
0
OpenID Specification Work Update<br />OpenID Retail Summit – March 8, 2011<br />Mike Jones – Microsoft<br />
Spec Work Ongoing<br />Existing OpenID 2.0 specifications in use now<br />Already work fine for many use cases<br />Active...
Working Group<br />Spec work occurring in “Artifact Binding” working group<br />Incorporates submissions to former “Connec...
WG Participants<br />Key working group participants:<br />Nat Sakimura – Nippon Research Institute – Japan<br />John Bradl...
New Spec Building Blocks<br />Build on OAuth 2.0<br />Use JavaScript Object Notation (JSON)<br />JSON Web Token (JWT) clai...
Spec Structure<br />OpenID AB spec contains in two parts<br />Core – abstract specification<br />Binding – OAuth 2 based b...
Spec Progress<br />Current status<br />Core – 70% done<br />Bindings – 75% done  (pending OAuth 2.0 completion)<br />Disco...
Implementation Status<br />OpenID ABC<br />Demo version of core and artifact binding available in PHP (BitBucket)<br />Cod...
ABC Capabilities<br />Artifact Binding<br />UserInfo Endpoint<br />Simple RPs<br />Higher LoA<br />Session Management<br /...
Open Spec Issues<br />Kinds of identifiers are supported<br />Harmonization with OAuth 2<br />Permissioning distributed at...
Identifiers<br />Need to define the supported formats and normalization rules<br />E-mail Address<br />http/https URL<br /...
Use of Summits<br />May IIW : Review drafts, make remaining decisions<br />Munich:  Brief participants on progress, specs ...
Discussion & Resources<br />Artifact Binding Working Group Wiki Page<br />http://wiki.openid.net/w/page/12995134/Artifact-...
Upcoming SlideShare
Loading in...5
×

Spec Update - OpenID Retail Summit at PayPal

884

Published on

Published in: Technology, Business
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
884
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
7
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Transcript of "Spec Update - OpenID Retail Summit at PayPal"

  1. 1. OpenID Specification Work Update<br />OpenID Retail Summit – March 8, 2011<br />Mike Jones – Microsoft<br />
  2. 2. Spec Work Ongoing<br />Existing OpenID 2.0 specifications in use now<br />Already work fine for many use cases<br />Active working occurring to extend specifications for new use cases<br />Mobile phones and other limited platforms<br />“Facebook Connect” style functionality for easy registration<br />Easier deployment than OpenID 2.0<br />
  3. 3. Working Group<br />Spec work occurring in “Artifact Binding” working group<br />Incorporates submissions to former “Connect” working group<br />Merger sometimes called “OpenID ABC”<br />Almost certainly not final branding!<br />OpenID specs developed via an open process<br />All free to participate<br />
  4. 4. WG Participants<br />Key working group participants:<br />Nat Sakimura – Nippon Research Institute – Japan<br />John Bradley – Independent – Chile<br />Breno de Medeiros – Google – US<br />Paul Tarjan – Facebook – US<br />Axel Nennker – Deutsche Telekom – Germany<br />Kick Willemse – Independent – Netherlands<br />Tony Nadalin – Microsoft – US<br />Mike Jones – Microsoft – US<br />By no means an exhaustive list!<br />
  5. 5. New Spec Building Blocks<br />Build on OAuth 2.0<br />Use JavaScript Object Notation (JSON)<br />JSON Web Token (JWT) claims representation<br />Goal: Easy implementation on all modern web platforms<br />
  6. 6. Spec Structure<br />OpenID AB spec contains in two parts<br />Core – abstract specification<br />Binding – OAuth 2 based binding<br />JSON Web Token (JWT) spec with signing<br />Next version will add encryption<br />Other specs like UMA are looking to adopt it<br />Discovery a separate spec<br />Will refer to OAuth 2.0 specs once finished<br />
  7. 7. Spec Progress<br />Current status<br />Core – 70% done<br />Bindings – 75% done (pending OAuth 2.0 completion)<br />Discovery – 80% (working from SWD)<br />JWT – 90% done for tokens and signature<br />Encryption remains to be specified<br />OAuth 2.0 – 95%<br />Target: Complete drafts by Internet Identity Workshop (IIW) in May<br />
  8. 8. Implementation Status<br />OpenID ABC<br />Demo version of core and artifact binding available in PHP (BitBucket)<br />Code needs updates for current JWT and yesterday’s spec results<br />JSON Web Token (JWT)<br />Implementations for Java, PHP, Python, Ruby, .NET<br />
  9. 9. ABC Capabilities<br />Artifact Binding<br />UserInfo Endpoint<br />Simple RPs<br />Higher LoA<br />Session Management<br />Unregistered Clients<br />OAuth 2 Integration<br />Use of JWTs<br />Single Logout<br />
  10. 10. Open Spec Issues<br />Kinds of identifiers are supported<br />Harmonization with OAuth 2<br />Permissioning distributed attribute providers<br />Claims specification and integration<br />Trust metadata formats and transports<br />
  11. 11. Identifiers<br />Need to define the supported formats and normalization rules<br />E-mail Address<br />http/https URL<br />Phone Number?<br />
  12. 12. Use of Summits<br />May IIW : Review drafts, make remaining decisions<br />Munich:  Brief participants on progress, specs - gather input<br />Tokyo:  Test implementations; learn from implementation and deployment experiences<br />Colorado:  Interop work – potentially in cooperation with OSIS<br />London:  Brief participants on progress, specs - gather input<br />Nov IIW:  Spec refinement and/or finalization<br />
  13. 13. Discussion & Resources<br />Artifact Binding Working Group Wiki Page<br />http://wiki.openid.net/w/page/12995134/Artifact-Binding<br />Artifact Binding Mailing List<br />http://lists.openid.net/mailman/listinfo/openid-specs-ab<br />My blog:<br />http://self-issued.info/<br />
  1. A particular slide catching your eye?

    Clipping is a handy way to collect important slides you want to go back to later.

×