#iiw 13th report at #idcon 10th
DESCRIPTION
TRANSCRIPT
@nov
IIW #13, 18-21 OCT 2011
OAUTH 2.0
• Service Chaining With Oauth Bearer Tokens
• Federated Authorization w/ OAuth2
•OAuth Web Authentication Where the Protocol is and What’s Next
• Identity Layer 4 OAuth 2 and Multi-Protocol Support Discussion
FEDERATED AUTHORIZATION W/ OAUTH2
Client Resource ServerFederated
AuthZ ServerAuth Grant
JWT Token
JWT as Bearer
Validate JWT(OPTIONAL)
Resource
FEDERATED AUTHORIZATION W/ OAUTH2
Client Resource ServerFederated
AuthZ ServerAuth Grant
JWT Token
JWT as Bearer
Validate JWT(OPTIONAL)
Resource
OAUTH WEB AUTHENTICATIONWHAT’S NEXT
•OAuth 2.0 RFC expected in Nov 2011
• Identity layer in OAuth not in OpenID Connect?
•OAuth WG Rechartering
[OAuth WG]JWT, SWD, OAuth Assertions, OAuth SAML profile,Token Revocation, OAuth JWT profile
[JOSE WG]JWS, JTE, JWK
JOSE WG
OAuth WG
•OpenID Connect Intro
•OpenID Connect Spec Work Client Registration
•OpenID Connect Spec Work Session
•OpenID Connect Editing Session
•OpenID Connect Flows and Levels of Assurance
• Smart OpenID Connect Chip to Cloud via OpenID Connect
OPENID CONNECT
•OpenID Connect Intro
•OpenID Connect Spec Work Client Registration
•OpenID Connect Spec Work Session
•OpenID Connect Editing Session
•OpenID Connect Flows and Levels of Assurance
• Smart OpenID Connect Chip to Cloud via OpenID Connect
OPENID CONNECT
MAINLY SPEC WORKS,BUT LOTS OF MENTIONS AROUND
OPENID WORKSHOP
• 10/17 at AOL (the day before IIW#13 started)
• Interop Review
•@ritou, @nov, NRI US (Edmund)
•Discussion about Implementers Dra3
•Open Issues Review
MONETIZING STREET IDENTITY &MOBILE AUTHENTICATION ‘LMNOP’
$1.00verify
http://j.mp/street_identity
verified address
$x.xx
RPs
verifiedaddress
OPEN TRANSACT
• 1st F2F meet-up w/ @pelleb & @tomwiththeweath
• Spec Updates
• 1st formal-ish document (opentransact.org/core)
•OAuth 2.0 based (will be OpenID Connect based)
•Receipt format, Discovery etc.
•OAuth 2.0 spec is going to next phase
•More extensions, federation, service-chaining etc.
•OpenID Connect is hot
• Implementers Dra3 coming soon..
•Open Identity Attribute Exchange Summit(11/09-10 in Washington, D.C.)
OPEN TRANSACT
[HOMEWORK]MAKE THIS OPENID CONNECT BASED