Presentation is loading. Please wait.

Presentation is loading. Please wait.

OpenID And the Future of Digital Identity Alicia Bozyk April 1, 2008.

Published by Modified over 8 years ago

Similar presentations

Presentation on theme: "OpenID And the Future of Digital Identity Alicia Bozyk April 1, 2008."— Presentation transcript:

1 OpenID And the Future of Digital Identity Alicia Bozyk April 1, 2008

2 Introduction Identity happens in silos Closed and complex Identity 1.0

3 Introduction Identity 2.0 is a way for users to have one identity that can be used in multiple places on the web. Must Be: Simple Scalable Flexible Identity 2.0

4 Technologies OpenID Windows CardSpace

5 OpenID OpenID is a decentralized single sign on service. Managed by the OpenID Foundation General Principles: simple, modular, free, and further extensible Provides the verification of a users identity from an identity provider to a relying party

6 OpenID What is an OpenID? URI/XRI identifier that is used to find the OpenID Identity Provider for a user An example identifier is: http://alicia.myopenid.com

7 OpenID Yadis Capability Document

8 OpenID Authentication user initiates authentication by supplying and identifier to a relying party relying party performs discovery and determines the endpoint URL to request authentication from relying party and identity provider establish a shared secret through the use of the Diffie-Hellman key exchange, and signs all of the following messages with this key relying party requests authentication for the user identity provide determines whether the end user is authorized to perform OpenID authentication and wishes to do so the identity provider returns either an assertion that authentication is approved or has failed relying party verifies the information received from the provider by checking the return URL, verifying the discovered information, checking a nonce, and verifying the signature using the established shared key

9 OpenID Strengths: Decentralized and Portable Easily Controlled and Managed by User Lightweight Weaknesses: Phishing Windows Only

10 Windows CardSpace Identity Metasystem Information Cards Goals: A way to represent identities using claims A means for identity providers, relying parties, and subjects to negotiate An encapsulating protocol to obtain claims and requirements A means to bridge technology and organizational boundaries using claims transformation A consistent user experience across multiple contexts, technologies, and operators

11

12 CardSpace Strengths: Consistent User Interface Security – uses SAML Weaknesses: Portability Security – physical Windows Only

13 Conclusions OpenID is the next step in managing digital identity OpenID is better than other solutions since it is decentralized, free, and open standard, and is gaining momentum in the online community OpenID helps breaks the boundaries between web applications

14 Questions?

Download ppt "OpenID And the Future of Digital Identity Alicia Bozyk April 1, 2008."

Similar presentations

OpenID & Information Card Profiles for ICAM John Bradley

OpenID & Information Card Profiles for ICAM John Bradley
Advances in Digital Identity

Advances in Digital Identity
Service Bus Service Bus Access Control.

Service Bus Service Bus Access Control.
AUTHENTICATION AND KEY DISTRIBUTION

AUTHENTICATION AND KEY DISTRIBUTION
Chapter 14 – Authentication Applications

Chapter 14 – Authentication Applications
Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.

Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.
Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.

Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
Web Service Security CS409 Application Services Even Semester 2007.

Web Service Security CS409 Application Services Even Semester 2007.
Lecture 23 Internet Authentication Applications

Lecture 23 Internet Authentication Applications
1 Security Assertion Markup Language (SAML). 2 SAML Goals Create trusted security statements –Example: Bill’s address is and he was authenticated.

1 Security Assertion Markup Language (SAML). 2 SAML Goals Create trusted security statements –Example: Bill’s address is and he was authenticated.
Windows CardSpace and the Identity Metasystem Glen Gordon Developer Evangelist, Microsoft

Windows CardSpace and the Identity Metasystem Glen Gordon Developer Evangelist, Microsoft
Crypto – chapter 16 - noack Introduction to network stcurity Chapter 16 - Stallings.

Crypto – chapter 16 - noack Introduction to network stcurity Chapter 16 - Stallings.
Cryptography and Authentication Lab ECE4112 Group4 Joel Davis Scott Allen Quinn.

Cryptography and Authentication Lab ECE4112 Group4 Joel Davis Scott Allen Quinn.
Infocard and Eduroam Enrique de la Hoz, Diego R. L ó pez, Antonio Garc í a, Samuel Mu ñ oz.

Infocard and Eduroam Enrique de la Hoz, Diego R. L ó pez, Antonio Garc í a, Samuel Mu ñ oz.
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
By: Ansuya Chauhan.

By: Ansuya Chauhan.
Dorian Grid Identity Management and Federation Dialogue Workshop II Edinburgh, Scotland February 9-10, 2006 Stephen Langella Department.

Dorian Grid Identity Management and Federation Dialogue Workshop II Edinburgh, Scotland February 9-10, 2006 Stephen Langella Department.
WAP Public Key Infrastructure CSCI 5939.02 – Independent Study Fall 2002 Jaleel Syed Presentation No 5.

WAP Public Key Infrastructure CSCI – Independent Study Fall 2002 Jaleel Syed Presentation No 5.
T-110.5140 Network Application Frameworks and XML Service Federation 30.04.2007 Sasu Tarkoma.

T Network Application Frameworks and XML Service Federation Sasu Tarkoma.

Similar presentations

Ads by Google