@nov
IIW #13, 18-21 OCT 2011
J.MP/IIW13
OAUTH 2.0• Service   Chaining With Oauth Bearer Tokens• Federated   Authorization w/ OAuth2• OAuth      Web Authentication...
FEDERATED AUTHORIZATION W/ OAUTH2                                            Federated Client             Resource Server ...
FEDERATED AUTHORIZATION W/ OAUTH2                                            Federated Client             Resource Server ...
OAUTH WEB AUTHENTICATION            WHAT’S NEXT• OAuth   2.0 RFC expected in Nov 2011• Identity   layer in OAuth not in Op...
OAuth WG JOSE WG
OPENID CONNECT• OpenID   Connect Intro• OpenID   Connect Spec Work Client Registration• OpenID   Connect Spec Work Session...
OPENID CONNECT• OpenID   Connect Intro• OpenID   Connect Spec Work Client Registration           MAINLY SPEC WORKS,• OpenI...
OPENID WORKSHOP• 10/17   at AOL (the day before IIW#13 started)• Interop   Review • @ritou,    @nov, NRI US (Edmund)• Disc...
MONETIZING STREET IDENTITY &MOBILE AUTHENTICATION ‘LMNOP’                verified address                     $x.xx        ...
OPEN TRANSACT
• 1st   F2F meet-up w/ @pelleb & @tomwiththeweath• Spec    Updates  • 1st   formal-ish document (opentransact.org/core)  •...
• OAuth   2.0 spec is going to next phase • More   extensions, federation, service-chaining etc.• OpenID   Connect is hot ...
OPEN TRANSACT         [HOMEWORK]MAKE THIS OPENID CONNECT BASED
#iiw 13th report at #idcon 10th
#iiw 13th report at #idcon 10th
#iiw 13th report at #idcon 10th
Upcoming SlideShare
Loading in …5
×

#iiw 13th report at #idcon 10th

2,152 views

Published on

0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
2,152
On SlideShare
0
From Embeds
0
Number of Embeds
348
Actions
Shares
0
Downloads
5
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide
  • \n
  • 毎年春秋2回 @ Computer History Museum\n
  • 予想してたより年齢層高かった\n毎朝ネタ持ち寄ってアジェンダ作成\n
  • 壁にペタペタ => スケジュール\nこのURLに発表内容一覧ある (ただしレポート空っぽなの多い)\n
  • OAuth 2.0 & OpenID Connect メイン (やっぱりね)\n
  • \n
  • George Fletcher from AOL\nAccess Token in JWT => Validatable\n
  • uid for what?\n
  • Barry Leiba from IETF OAuth WG\nfor 2nd one, use-case document will come\nMore discussions in OAuth ML\n
  • OpenID Connect related\n
  • \n
  • \n
  • \n
  • Business model for mobile careers\nMotivation for Attributes Provider\n
  • \n
  • \n
  • \n
  • \n
  • \n
  • #iiw 13th report at #idcon 10th

    1. 1. @nov
    2. 2. IIW #13, 18-21 OCT 2011
    3. 3. J.MP/IIW13
    4. 4. OAUTH 2.0• Service Chaining With Oauth Bearer Tokens• Federated Authorization w/ OAuth2• OAuth Web Authentication Where the Protocol is and What’s Next• Identity Layer 4 OAuth 2 and Multi-Protocol Support Discussion
    5. 5. FEDERATED AUTHORIZATION W/ OAUTH2 Federated Client Resource Server AuthZ Server Auth Grant JWT Token JWT as Bearer Validate JWT (OPTIONAL) Resource
    6. 6. FEDERATED AUTHORIZATION W/ OAUTH2 Federated Client Resource Server AuthZ Server Auth Grant JWT Token JWT as Bearer Validate JWT (OPTIONAL) Resource
    7. 7. OAUTH WEB AUTHENTICATION WHAT’S NEXT• OAuth 2.0 RFC expected in Nov 2011• Identity layer in OAuth not in OpenID Connect?• OAuth WG Rechartering [OAuth WG] JWT, SWD, OAuth Assertions, OAuth SAML profile, Token Revocation, OAuth JWT profile [JOSE WG] JWS, JTE, JWK
    8. 8. OAuth WG JOSE WG
    9. 9. OPENID CONNECT• OpenID Connect Intro• OpenID Connect Spec Work Client Registration• OpenID Connect Spec Work Session• OpenID Connect Editing Session• OpenID Connect Flows and Levels of Assurance• Smart OpenID Connect Chip to Cloud via OpenID Connect
    10. 10. OPENID CONNECT• OpenID Connect Intro• OpenID Connect Spec Work Client Registration MAINLY SPEC WORKS,• OpenID Connect Spec Work Session BUT LOTS OF MENTIONS AROUND• OpenID Connect Editing Session• OpenID Connect Flows and Levels of Assurance• Smart OpenID Connect Chip to Cloud via OpenID Connect
    11. 11. OPENID WORKSHOP• 10/17 at AOL (the day before IIW#13 started)• Interop Review • @ritou, @nov, NRI US (Edmund)• Discussion about Implementers Dra3• Open Issues Review
    12. 12. MONETIZING STREET IDENTITY &MOBILE AUTHENTICATION ‘LMNOP’ verified address $x.xx verify verified $1.00 addressRPs http://j.mp/street_identity
    13. 13. OPEN TRANSACT
    14. 14. • 1st F2F meet-up w/ @pelleb & @tomwiththeweath• Spec Updates • 1st formal-ish document (opentransact.org/core) • OAuth 2.0 based (will be OpenID Connect based) • Receipt format, Discovery etc.
    15. 15. • OAuth 2.0 spec is going to next phase • More extensions, federation, service-chaining etc.• OpenID Connect is hot • Implementers Dra3 coming soon.. • Open Identity Attribute Exchange Summit (11/09-10 in Washington, D.C.)
    16. 16. OPEN TRANSACT [HOMEWORK]MAKE THIS OPENID CONNECT BASED

    ×