Initial OpenID Connect Enhanced Authentication Profile (EAP) Specifications


The OpenID Enhanced Authentication Profile (EAP) working group charter states that:

The purpose of this working group is to develop a security and privacy profile of the OpenID Connect specifications that enable users to authenticate to OpenID Providers using strong authentication specifications. The resulting profile will enable use of IETF Token Binding specifications with OpenID Connect and integration with FIDO relying parties and/or other strong authentication technologies.

I’m pleased to announce that two new draft OpenID specifications have been adopted by the EAP working group to meet those two goals:

Please give them a read and give your feedback to the working group. Or even better yet, implement them (they’re both very straightforward) and send us your feedback!