Author Archives : Mike Jones


OpenID Connect Logout Implementer’s Drafts Approved

The OpenID Foundation membership has approved these specifications as OpenID Implementer’s Drafts. An Implementer’s Draft is a stable version of a specification providing intellectual property protections to implementers of the specification. Session Management – Defines how to manage OpenID Connect sessions, including postMessage-based logout functionality Front-Channel Logout – Defines a […]


Notice of Vote for Implementer’s Drafts of OpenID Connect Logout Specifications

The official voting period will be between Tuesday, March 21 and Tuesday, March 28, 2017, following the 45 day review of the specification. For the convenience of members, voting will actually open a week before Tuesday, March 21 on Tuesday, March 14 for members who have completed their reviews by […]


Public Review Period for Four MODRNA Specifications Started

The OpenID Foundation MODRNA Working Group recommends approval of the following specifications as OpenID Implementer’s Drafts: OpenID Connect MODRNA Authentication Profile 1.0, draft 06 OpenID Connect Account Porting, draft 07 OpenID Connect User Questioning API 1.0, draft 10 OpenID Connect MODRNA Client initiated Backchannel Authentication Flow 1.0, draft 03 An […]


FAPI Part 1 Implementer’s Draft Approved

The OpenID Foundation membership has approved “Financial API – Part 1: Read Only API Security Profile” as an OpenID Implementer’s Draft. An Implementer’s Draft is a stable version of a specification providing intellectual property protections to implementers of the specification. The specification is available at: http://openid.net/specs/openid-financial-api-part-1-ID1.html The voting results were: […]


Review of Proposed Implementer’s Drafts of OpenID Connect Logout Specifications

The OpenID Connect Working Group recommends approval of the following specifications as OpenID Implementer’s Drafts: Session Management – Defines how to manage OpenID Connect sessions, including postMessage-based logout functionality Front-Channel Logout – Defines a front-channel logout mechanism that does not use an OP iframe on RP pages Back-Channel Logout – […]


BibXML Files for OpenID Specifications

Axel Nennker had suggested that the OpenID Foundation provide BibXML files for its specifications. He not only suggested this, but also provided a starting point by providing BibXML files for three OpenID Connect specifications. I’m pleased to report that these BibXML files are now available for use: http://openid.net/bibxml/reference.OpenID.Core.xml http://openid.net/bibxml/reference.OpenID.Discovery.xml http://openid.net/bibxml/reference.OpenID.Registration.xml […]


Notice of Vote for Implementer’s Draft of “Financial API – Part 1: Read Only API Security Profile”   Recently updated !

The official voting period will be between Friday, February 3 and Friday, February 10, 2017, following the 45 day review of the specification. For the convenience of members, voting will actually open a week before Friday, February 3 on Friday, January 27 for members who have completed their reviews by […]


Initial OpenID Connect Enhanced Authentication Profile (EAP) Specifications

The OpenID Enhanced Authentication Profile (EAP) working group charter states that: The purpose of this working group is to develop a security and privacy profile of the OpenID Connect specifications that enable users to authenticate to OpenID Providers using strong authentication specifications. The resulting profile will enable use of IETF […]


HEART Implementer’s Drafts Approved

The OpenID Foundation members have approved of the following specifications as OpenID Implementer’s Drafts: Health Relationship Trust Profile for OAuth 2.0 Health Relationship Trust Profile for OpenID Connect 1.0 Health Relationship Trust Profile for User Managed Access 1.0 An Implementer’s Draft is a stable version of a specification providing intellectual […]


Review of Proposed Implementer’s Drafts of HEART Specifications

The OpenID HEART Working Group recommends approval of the following specifications as OpenID Implementer’s Drafts: Health Relationship Trust Profile for OAuth 2.0 Health Relationship Trust Profile for OpenID Connect 1.0 Health Relationship Trust Profile for User Managed Access 1.0 An Implementer’s Draft is a stable version of a specification providing […]