Category: News

Implementer’s Draft of FAPI Client Initiated Backchannel Authentication (CIBA) Profile Approved

The OpenID Foundation membership has approved the following specification as an OpenID Implementer’s Draft: Financial-grade API: Client Initiated Backchannel Authentication Profile An Implementer’s Draft is a stable version of a specification providing intellectual property protections to implementers of the specification. This is the first Implementer’s Draft of this specification. This specification is a product of […]

Implementer’s Drafts of Two EAP Specifications Approved

The OpenID Foundation membership has approved the following Enhanced Authentication Profile (EAP) specifications as OpenID Implementer’s Drafts: OpenID Connect Token Bound Authentication 1.0 OpenID Connect Extended Authentication Profile (EAP) ACR Values 1.0 An Implementer’s Draft is a stable version of a specification providing intellectual property protections to implementers of the specification. These are the first […]

Public Review Period for FAPI Client Initiated Backchannel Authentication (CIBA) Profile Started

The OpenID OpenID FAPI Working Group recommends approval of the following specification as an OpenID Implementer’s Draft: Financial-grade API: Client Initiated Backchannel Authentication Profile An Implementer’s Draft is a stable version of a specification providing intellectual property protections to implementers of the specification. This note starts the 45-day public review period for the specification draft […]

Open Letter from the OpenID Foundation to Apple Regarding Sign In with Apple

June 27, 2019 Mr. Craig Federighi Apple Senior Vice President of Software Engineering One Apple Park Way Cupertino, CA 95014 RE: Open Letter from the OpenID Foundation to Apple Regarding Sign In with Apple Dear Mr. Federighi, The OpenID Foundation applauds Apple’s efforts to allow users to login to third-party mobile and Web applications with […]

OpenID Connect Federation Progress

The OpenID Connect Federation 1.0 specification is being developed to enable large-scale federations to be deployed using OpenID Connect. It enables trust among federation participants to be established through signed statements made by federation operators and organizations about federation participants. The design of this specification builds upon the experiences gained in operating large-scale SAML 2.0 […]

Notice of Vote for Proposed Implementer’s Drafts of Two EAP Specifications

The official voting period will be between Friday, June 7, 2019 and Friday, June 14, 2019, once the 45 day review of the specifications has been completed. For the convenience of members, voting will actually remain open until Friday, June 21, 2019, providing for a two-week voting period. The Enhanced Authentication Profile (EAP) working group […]

Public Review Period for Two Proposed EAP Implementer’s Drafts

The OpenID Enhanced Authentication Profile (EAP) Working Group recommends approval of the following specifications as OpenID Implementer’s Drafts: OpenID Connect Token Bound Authentication 1.0 OpenID Connect Extended Authentication Profile (EAP) ACR Values 1.0 The first specification enables OpenID Connect implementations to apply Token Binding to the OpenID Connect ID Token. This use of Token Binding […]

Guest Blog: Formal Analysis of the OpenID Financial-grade API

Guest blog post by Daniel Fett (yes.com), Pedram Hosseyni, and Ralf Küsters (University of Stuttgart). The security of a web protocol is crucial, especially in the domain of financial applications and in other high-stakes environments. For identifying weaknesses in protocols and ensuring security, formal protocol analysis is the state-of-the-art method. The OpenID Financial-grade API (FAPI) […]