OIDF Workshop at European Identity Conference 2019 -- 5/14/2019 -- OpenID EAP Working Group Update

•

0 j'aime•1,049 vues

Michael Jones with Microsoft provided an update on the OpenID Connect Working Group at the OIDF Workshop at the 2019 European Identity Conference on Tuesday, May 14, 2019 in Munich.

Technologie

Two EAP Specifications
• Token Bound Authentication
– Defines how to apply Token Binding to OpenID Connect ID Tokens
– https://openid.net/specs/openid-connect-token-bound-
authentication-1_0.html
• EAP ACR Values
– Defines “acr” values strong authentication profiles
– https://openid.net/specs/openid-connect-eap-acr-values-1_0.html

Token Binding Update
• IETF Token Binding specs became RFCs in October 2018
• OAuth Token Binding spec
– https://tools.ietf.org/html/draft-ietf-oauth-token-binding
– Defines Token Binding of OAuth 2.0 access tokens, refresh tokens,
authorization codes, JWT authorization grants, and JWT client
authentication
• OpenID Connect Token Binding spec
– https://openid.net/specs/openid-connect-token-bound-authentication-
1_0.html
– Defines Binding of OpenID Connect ID Tokens
• Adoption slowed due to Chrome’s removal of Token Binding

Two ACR Values Defined
• “phr” – Phishing-Resistant
– An authentication mechanism where a party potentially under the control of the
Relying Party cannot gain sufficient information to be able to successfully
authenticate to the End User's OpenID Provider as if that party were the End
User
• “phrh” – Phishing-Resistant Hardware Protected
– An authentication mechanism meeting the requirements for phishing-resistant
authentication above in which additionally information needed to be able to
successfully authenticate to the End User's OpenID Provider as if that party were
the End User is held in a hardware-protected device or component
• Phishing-Resistant definition based on 2008 OpenID Provider
Authentication Policy Extension (PAPE) specification

Status
• Both drafts currently undergoing Implementer’s Draft review
– See https://openid.net/2019/04/22/public-review-period-for-two-
proposed-eap-implementers-drafts/
• Working group active
– Chairs Brian Campbell and Mike Jones
• Calls scheduled every two weeks on Thursdays
• For more information, see the working group page
– https://openid.net/wg/eap/

Contenu connexe

Plus de OpenIDFoundation

OIDF Workshop at Verizon Media -- 9/30/2019 -- OpenID Connect Federation Update

OpenIDFoundation

OIDF Workshop at European Identity Conference 2019 -- 5/14/2019 -- OpenID Cer...

OpenIDFoundation

OIDF Workshop at European Identity Conference 2019 -- 5/14/2019 -- FAPI Certi...

OpenIDFoundation

OIDF Workshop 4/29/2019 -- OpenID Research & Education Working Group Update

OpenIDFoundation

OIDF Workshop at European Identity Conference 2019 -- 5/14/2019 -- FAPI Certi...

OpenIDFoundation

OIDF Workshop 4/29/2019 -- OpenID Certification Update

OpenIDFoundation

OpenID Connect "101" Introduction -- October 23, 2018

OpenIDFoundation

OpenID Foundation Research & Education Working Group Update - October 22, 2018

OpenIDFoundation

OpenID Foundation iGov Working Group Update - October 22, 2018

OpenIDFoundation

OpenID Foundation Connect Working Group Update - October 22, 2018

OpenIDFoundation

OpenID Foundation Certification Program Update - October 22, 2018

OpenIDFoundation

Plus de OpenIDFoundation (11)

OIDF Workshop at Verizon Media -- 9/30/2019 -- OpenID Connect Federation Update

OIDF Workshop at European Identity Conference 2019 -- 5/14/2019 -- OpenID Cer...

OIDF Workshop at European Identity Conference 2019 -- 5/14/2019 -- FAPI Certi...

OIDF Workshop 4/29/2019 -- OpenID Research & Education Working Group Update

OIDF Workshop at European Identity Conference 2019 -- 5/14/2019 -- FAPI Certi...

OIDF Workshop 4/29/2019 -- OpenID Certification Update

OpenID Connect "101" Introduction -- October 23, 2018

OpenID Foundation Research & Education Working Group Update - October 22, 2018

OpenID Foundation iGov Working Group Update - October 22, 2018

OpenID Foundation Connect Working Group Update - October 22, 2018

OpenID Foundation Certification Program Update - October 22, 2018

Dernier

This presentations targets students or working professionals. You may know Google for search, YouTube, Android, Chrome, and Gmail, but did you know Google has many developer tools, platforms & APIs? This comprehensive yet still high-level overview outlines the most impactful tools for where to run your code, store & analyze your data. It will also inspire you as to what's possible. This talk is 50 minutes in length.

Powerful Google developer tools for immediate impact! (2023-24 C)

wesley chun

Boost Fertility New Invention Ups Success Rates.pdf

sudhanshuwaghmare1

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

Edi Saputra

presentation ICT roal in 21st century education

jfdjdjcjdnsjd

AWS Community Day CPH - Three problems of Terraform

Andrey Devyatkin

In the thrilling conclusion to 2023, ransomware groups had a banner year, really outdoing themselves in the "make everyone's life miserable" department. LockBit 3.0 took gold in the hacking olympics, followed by the plucky upstarts Clop and ALPHV/BlackCat. Apparently, 48% of organizations were feeling left out and decided to get in on the cyber attack action. Business services won the "most likely to get digitally mugged" award, with education and retail nipping at their heels. Hackers expanded their repertoire beyond boring old encryption to the much more exciting world of extortion. The US, UK and Canada took top honors in the "countries most likely to pay up" category. Bitcoins were the currency of choice for discerning hackers, because who doesn't love untraceable money?

Ransomware_Q4_2023. The report. [EN].pdf

Overkill Security

Following the popularity of "Cloud Revolution: Exploring the New Wave of Serverless Spatial Data," we're thrilled to announce this much-anticipated encore webinar. In this sequel, we'll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you're building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

Scalable LLM APIs for AI and Generative AI Application Development Ettikan Karuppiah, Director/Technologist - NVIDIA Apidays Singapore 2024: Connecting Customers, Business and Technology (April 17 & 18, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...

apidays

"I see eyes in my soup": How Delivery Hero implemented the safety system for ...

Zilliz

Manulife - Insurer Transformation Award 2024

The Digital Insurer

As privacy and data protection regulations evolve rapidly, organizations operating in multiple jurisdictions face mounting challenges to ensure compliance and safeguard customer data. With state-specific privacy laws coming up in multiple states this year, it is essential to understand what their unique data protection regulations will require clearly. How will data privacy evolve in the US in 2024? How to stay compliant? Our panellists will guide you through the intricacies of these states' specific data privacy laws, clarifying complex legal frameworks and compliance requirements. This webinar will review: - The essential aspects of each state's privacy landscape and the latest updates - Common compliance challenges faced by organizations operating in multiple states and best practices to achieve regulatory adherence - Valuable insights into potential changes to existing regulations and prepare your organization for the evolving landscape

TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments

TrustArc

Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...

Zilliz

Automating Google Workspace (GWS) & more with Apps Script

wesley chun

AXA XL - Insurer Innovation Award Americas 2024

The Digital Insurer

MS Copilot expands with MS Graph connectors

Nanddeep Nachan

A Beginners Guide to Building a RAG App Using Open Source Milvus

Zilliz

💉💊+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHABI}}+971581248768 +971581248768 Mtp-Kit (500MG) Prices » Dubai [(+971581248768**)] Abortion Pills For Sale In Dubai, UAE, Mifepristone and Misoprostol Tablets Available In Dubai, UAE CONTACT DR.Maya Whatsapp +971581248768 We Have Abortion Pills / Cytotec Tablets /Mifegest Kit Available in Dubai, Sharjah, Abudhabi, Ajman, Alain, Fujairah, Ras Al Khaimah, Umm Al Quwain, UAE, Buy cytotec in Dubai +971581248768''''Abortion Pills near me DUBAI | ABU DHABI|UAE. Price of Misoprostol, Cytotec” +971581248768' Dr.DEEM ''BUY ABORTION PILLS MIFEGEST KIT, MISOPROTONE, CYTOTEC PILLS IN DUBAI, ABU DHABI,UAE'' Contact me now via What's App…… abortion Pills Cytotec also available Oman Qatar Doha Saudi Arabia Bahrain Above all, Cytotec Abortion Pills are Available In Dubai / UAE, you will be very happy to do abortion in Dubai we are providing cytotec 200mg abortion pill in Dubai, UAE. Medication abortion offers an alternative to Surgical Abortion for women in the early weeks of pregnancy. We only offer abortion pills from 1 week-6 Months. We then advise you to use surgery if its beyond 6 months. Our Abu Dhabi, Ajman, Al Ain, Dubai, Fujairah, Ras Al Khaimah (RAK), Sharjah, Umm Al Quwain (UAQ) United Arab Emirates Abortion Clinic provides the safest and most advanced techniques for providing non-surgical, medical and surgical abortion methods for early through late second trimester, including the Abortion By Pill Procedure (RU 486, Mifeprex, Mifepristone, early options French Abortion Pill), Tamoxifen, Methotrexate and Cytotec (Misoprostol). The Abu Dhabi, United Arab Emirates Abortion Clinic performs Same Day Abortion Procedure using medications that are taken on the first day of the office visit and will cause the abortion to occur generally within 4 to 6 hours (as early as 30 minutes) for patients who are 3 to 12 weeks pregnant. When Mifepristone and Misoprostol are used, 50% of patients complete in 4 to 6 hours; 75% to 80% in 12 hours; and 90% in 24 hours. We use a regimen that allows for completion without the need for surgery 99% of the time. All advanced second trimester and late term pregnancies at our Tampa clinic (17 to 24 weeks or greater) can be completed within 24 hours or less 99% of the time without the need surgery. The procedure is completed with minimal to no complications. Our Women's Health Center located in Abu Dhabi, United Arab Emirates, uses the latest medications for medical abortions (RU-486, Mifeprex, Mifegyne, Mifepristone, early options French abortion pill), Methotrexate and Cytotec (Misoprostol). The safety standards of our Abu Dhabi, United Arab Emirates Abortion Doctors remain unparalleled. They consistently maintain the lowest complication rates throughout the nation. Our Physicians and staff are always available to answer questions and care for women in one of the most difficult times in their lives. The decision to have an abortion at the Abortion Cl

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...

?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@

Architecting Cloud Native Applications

WSO2

Created by Mozilla Research in 2012 and now part of Linux Foundation Europe, the Servo project is an experimental rendering engine written in Rust. It combines memory safety and concurrency to create an independent, modular, and embeddable rendering engine that adheres to web standards. Stewardship of Servo moved from Mozilla Research to the Linux Foundation in 2020, where its mission remains unchanged. After some slow years, in 2023 there has been renewed activity on the project, with a roadmap now focused on improving the engine’s CSS 2 conformance, exploring Android support, and making Servo a practical embeddable rendering engine. In this presentation, Rakhi Sharma reviews the status of the project, our recent developments in 2023, our collaboration with Tauri to make Servo an easy-to-use embeddable rendering engine, and our plans for the future to make Servo an alternative web rendering engine for the embedded devices industry. (c) Embedded Open Source Summit 2024 April 16-18, 2024 Seattle, Washington (US) https://events.linuxfoundation.org/embedded-open-source-summit/ https://ossna2024.sched.com/event/1aBNF/a-year-of-servo-reboot-where-are-we-now-rakhi-sharma-igalia

A Year of the Servo Reboot: Where Are We Now?

Igalia

Webinar Recording: https://www.panagenda.com/webinars/why-teams-call-analytics-is-critical-to-your-entire-business Nothing is as frustrating and noticeable as being in an important call and being unable to see or hear the other person. Not surprising then, that issues with Teams calls are among the most common problems users call their helpdesk for. Having in depth insight into everything relevant going on at the user’s device, local network, ISP and Microsoft itself during the call is crucial for good Microsoft Teams Call quality support. To ensure a quick and adequate solution and to ensure your users get the most out of their Microsoft 365. But did you know that ‘bad calls’ are also an excellent indicator of other problems arising? Precisely because it is so noticeable!? Like the canary in the mine, bad calls can be early indicators of problems. Problems that might otherwise not have been noticed for a while but can have a big impact on productivity and satisfaction. Join this session by Christoph Adler to learn how true Microsoft Teams call quality analytics helped other organizations troubleshoot bad calls and identify and fix problems that impacted Teams calls or the use of Microsoft365 in general. See what it can do to keep your users happy and productive! In this session we will cover - Why CQD data alone is not enough to troubleshoot call problems - The importance of attributing call problems to the right call participant - What call quality analytics can do to help you quickly find, fix-, and prevent problems - Why having retrospective detailed insights matters - Real life examples of how others have used Microsoft Teams call quality monitoring to problem shoot problems with their ISP, network, device health and more.

Why Teams call analytics are critical to your entire business

panagenda

Dernier (20)

Powerful Google developer tools for immediate impact! (2023-24 C)

Boost Fertility New Invention Ups Success Rates.pdf

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

presentation ICT roal in 21st century education

AWS Community Day CPH - Three problems of Terraform

Ransomware_Q4_2023. The report. [EN].pdf

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...

"I see eyes in my soup": How Delivery Hero implemented the safety system for ...

Manulife - Insurer Transformation Award 2024

TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments

Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...

Automating Google Workspace (GWS) & more with Apps Script

AXA XL - Insurer Innovation Award Americas 2024

MS Copilot expands with MS Graph connectors

A Beginners Guide to Building a RAG App Using Open Source Milvus

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...

Architecting Cloud Native Applications

A Year of the Servo Reboot: Where Are We Now?

Why Teams call analytics are critical to your entire business

OIDF Workshop at European Identity Conference 2019 -- 5/14/2019 -- OpenID EAP Working Group Update

1. OpenID Enhanced Authentication Profile (EAP) Working Group May 14, 2019 Dr. Michael B. Jones Identity Standards Architect – Microsoft

2. What is the EAP WG? • Working group description at https://openid.net/wg/eap/ • Chartered to: – “Develop a security and privacy profile of the OpenID Connect specifications that enable users to authenticate to OpenID Providers using strong authentication specifications. The resulting profile will enable • use of IETF Token Binding specifications with OpenID Connect and • integration with FIDO relying parties and/or other strong authentication technologies.”

3. Two EAP Specifications • Token Bound Authentication – Defines how to apply Token Binding to OpenID Connect ID Tokens – https://openid.net/specs/openid-connect-token-bound- authentication-1_0.html • EAP ACR Values – Defines “acr” values strong authentication profiles – https://openid.net/specs/openid-connect-eap-acr-values-1_0.html

4. Token Binding Update • IETF Token Binding specs became RFCs in October 2018 • OAuth Token Binding spec – https://tools.ietf.org/html/draft-ietf-oauth-token-binding – Defines Token Binding of OAuth 2.0 access tokens, refresh tokens, authorization codes, JWT authorization grants, and JWT client authentication • OpenID Connect Token Binding spec – https://openid.net/specs/openid-connect-token-bound-authentication- 1_0.html – Defines Binding of OpenID Connect ID Tokens • Adoption slowed due to Chrome’s removal of Token Binding

5. Two ACR Values Defined • “phr” – Phishing-Resistant – An authentication mechanism where a party potentially under the control of the Relying Party cannot gain sufficient information to be able to successfully authenticate to the End User's OpenID Provider as if that party were the End User • “phrh” – Phishing-Resistant Hardware Protected – An authentication mechanism meeting the requirements for phishing-resistant authentication above in which additionally information needed to be able to successfully authenticate to the End User's OpenID Provider as if that party were the End User is held in a hardware-protected device or component • Phishing-Resistant definition based on 2008 OpenID Provider Authentication Policy Extension (PAPE) specification

6. Status • Both drafts currently undergoing Implementer’s Draft review – See https://openid.net/2019/04/22/public-review-period-for-two- proposed-eap-implementers-drafts/ • Working group active – Chairs Brian Campbell and Mike Jones • Calls scheduled every two weeks on Thursdays • For more information, see the working group page – https://openid.net/wg/eap/

OIDF Workshop at European Identity Conference 2019 -- 5/14/2019 -- OpenID EAP Working Group Update

Recommandé

Recommandé

Contenu connexe

Plus de OpenIDFoundation

Plus de OpenIDFoundation (11)

Dernier

Dernier (20)

OIDF Workshop at European Identity Conference 2019 -- 5/14/2019 -- OpenID EAP Working Group Update