Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

ID連携概要 - OpenID TechNight vol.13

30,783 views

Published on

ここで話したスライド。
https://openid.doorkeeper.jp/events/29487

Published in: Technology
  • Be the first to comment

ID連携概要 - OpenID TechNight vol.13

  1. 1. ID Nov Matake
  2. 2. NOV MATAKE • Security Engineer, GREE Inc. • Evangelist, OpenID Foundation Japan • Interested in.. • Digital Identity • Privacy • Security
  3. 3. ENTITY & IDENTITY • EXGEN Networks • ID&IT 2015 • OIDF EIWG • 185 cm • 50 ( ) • •
  4. 4. Entity ( ) Identity ( ) 1 Entity Identity Identity
  5. 5. AUTHENTICATION Entity Identity
  6. 6. AUTHENTICATION OK
  7. 7. AUTHORIZATION 20
  8. 8. ACCESS CONTROL Authentication + Authorization + Audit (logging)
  9. 9. IDENTITY PROOFING Identity ( )
  10. 10. IDENTITY PROOFING SMS
  11. 11. IDENTITY PROOFING
  12. 12. IDENTITY PROOFING Identity Proofing “ ” proof
  13. 13. ID ?
  14. 14. • Facebook • Facebook Disqus • Disqus • Facebook? ? • Disqus Facebook • Entity <=> Facebook Identity <=> Disqus Identity • Entity <=> Disqus Identity
  15. 15. • Facebook • UID 12345 Disqus 19:15 • Disqus • Facebook • • • Facebook UID 12345 @nov
  16. 16. • Facebook Disqus • Disqus • Email • Authorization • ( , , etc.) • Disqus
  17. 17. ID = +
  18. 18. • IDP : Identity Provider • + • Facebook • RP : Relying Party • + IdP / • Disqus
  19. 19. ID
  20. 20. CVR • • • IdP
  21. 21. • RP • ID • 100 Services => 100 Passwords • ID • IdP x 1 + RP x 99 => 1 Password •
  22. 22. –Eric Sachs, Google “ 100 ”
  23. 23. PROOFED ATTRIBUTES (SMS / Call) :
  24. 24. ID
  25. 25. ? • IdP RP ? • nickname ? • Authorization ? • ? ? • ID
  26. 26. RP • OAuth 1.0 / OAuth 2.0 / OpenID Connect IdP • OAuth 1.0/2.0 IdP • Server-Side App Native App Native App Backend JS App •

×