Archive for the ‘Foundation’ Category
Posted at 9:36 am on January 3, 2012 by jfe
This is to announce the 2012 election of OpenID Foundation community board members. The Foundation plays an important role in the evolution of Internet identity technologies. Those elected will help determine what role the OIDF should play in helping facilitate faster and broader adoption of open standard identity systems.
Last year four community board members were elected to 2-year terms and so are not standing for election:
• Nat Sakimura
• Mike Jones
• John Bradley
• Kick Willemse
Other current community board members may seek re-election. They are:
• Allen Tom
• Axel Nennker
• Chris Messina
Brian Kissel has indicated he will likely not be a candidate. This is a good time to thank Brian, and all the current board members, for their time, attention and leadership over the last year.
For the purposes of the 2012 election, there are 5 confirmed sustaining members: Google, Microsoft, PayPal, Ping Identity, and Symantec. Thus, we will be electing 2 community members to the Board of Directors for 2-year terms. In order to be eligible for election, your candidacy must have been seconded by at least three other members.
The election will be conducted on the following schedule:
Nominations open: Monday, January 9
Nominations close: Monday, January 23
Election begins: Wednesday, January 25
Election ends: Wednesday, February 8
Results announced by: Wednesday, February 15
New board terms start: Thursday, March 1
Times for all dates are Noon, U.S. Pacific Time.
All members of the OpenID Foundation are eligible to nominate themselves, second the nominations of others who self-nominated, and vote for candidates. If you’re not already a member of the OpenID Foundation, we encourage you to join now at https://openid.net/foundation/members/registration.
Voting and nominations are conducted using the OpenID you registered when you joined the Foundation. Log in at https://openid.net/foundation/members/ with your OpenID to participate in the nomination and voting. If you are already a member, you will receive an email advising you the election is open and how to participate. If you experience problems participating in the election or joining the foundation, please send an email to help@oidf.org.
Board participation requires a substantial ongoing investment of time and energy. It is a volunteer effort that should not be undertaken lightly. Should you be elected, expect to be called upon to serve both on the board and on its committees where the work of the foundation is conducted. If you’re committed to OpenID and advancing open digital identity and are a person who works well with others, we encourage your candidacy. The OIDF’s Executive Committee has suggested a few questions candidates may want to publicly address in their candidate statements:
1. What is you view of the opportunity of the OpenID Foundation?
2. What are the key opportunities you see for the OpenID Foundation in 2012?
3. How will you demonstrate your commitment to the work of the foundation in terms of resources, focus and leadership?
4. What would you like to see accomplished over the next year, and how do you personally plan to make these things happen?
5. What resources can you bring to the foundation to help the foundation attain its goals?
6. What current or past experiences, skills, or interests will inform your contributions and views?
Candidates can address these questions in their election statements on various community mailing lists and at http://openid.net – especially openid-general@lists.openid.net, and via blog@oidf.org. Please forward questions, comments and suggestions to me.
Don Thibeau
Executive Director
The OpenID Foundation
Tags: board election, Foundation, vote
This entry was posted
on Tuesday, January 3rd, 2012 at 9:36 am and is filed under Foundation, News.
You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Posted at 6:41 am on December 23, 2011 by John Bradley
The OpenID AB+Connect Working Group recommends approval of the following specifications as OpenID Implementer’s Drafts:
- Basic Client Profile – Simple self-contained specification for a web-based Relying Party. (This spec contains a subset of the information in Messages and Standard.)
- Discovery – Defines how user and provider endpoints can be dynamically discovered.
- Dynamic Registration – Defines how clients can dynamically register with OpenID Providers.
- Messages – Defines all the messages that are used in OpenID Connect. (These messages are used by the Standard binding.)
- Standard – Complete HTTP binding of the Messages, for both Relying Parties and OpenID Providers.
- Multiple Response Type Encoding – Registers OAuth 2.0 response_type values used by OpenID Connect.
An Implementer’s Draft is a stable version of a specification providing intellectual property protections to implementers of the specification. This note starts the 45 days public review period for the specification drafts in accordance with the OpenID Foundation IPR policies and procedures. This review period will end on Monday, February 6, 2012.
Unless issues are identified during the review that the working group believes must be addressed by revising the drafts, this review period will be followed by a seven day voting period during which OpenID Foundation members will vote on whether to approve these drafts as OpenID Implementer’s Drafts.
The specifications are posted at these locations:
A description of OpenID Connect can be found at http://openid.net/connect/. The working group page is http://openid.net/wg/connect/.
Information on joining the OpenID Foundation can be found at https://openid.net/foundation/members/registration. Foundation members will be asked to vote on approving these specifications as Implementer’s Drafts.
You can send feedback on the specifications in a way that enables the working group to act on your feedback by
- signing the contribution agreement at http://openid.net/intellectual-property/ to join the AB+Connect working group,
- joining the working group mailing list at http://lists.openid.net/mailman/listinfo/openid-specs-ab, and
- sending your feedback on that list.
Tags: Implementer's Draft, OpenID Connect, spec, specification, vote
This entry was posted
on Friday, December 23rd, 2011 at 6:41 am and is filed under Foundation, News, Specs.
You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Posted at 2:37 pm on December 7, 2011 by Don Thibeau
Verizon announced today an important milestone in the Open Identity arena.
Verizon announced that it is the first ever identity provider to achieve a Level 3 US Government certification in providing identity credentials and access management to relying parties. The importance of building a standardized framework that protects valuable personal data from Internet security risks is being recognized and addressed on a global scale and national level.
Verizon has established itself as a leader that is building a foundation for an open and secure Internet-identity ecosystem that people and business can trust. Beyond providing a safeguard for digital identities, certified identity providers will help speed conversations, interactions and transactions for people, businesses and relying parties now and in the future.
As one of the pioneers in building the trust frameworks, Verizon’s leadership as an identity provider is at the heart of building this new identity ecosystem. Verizon was one of the founding members of the Open Identity Exchange (OIX) an organization that now includes the leaders in internet, telco and data aggregation industries.
Today’s password-focused website login process is unsafe and risky and has led to personal information and data being compromised through phishing and hacking attacks on weak systems. The potentially devastating consequences associated with the hijacking and theft of digital identities highlights the need for a trusted and certified framework that relying parties can depend on for identity authentication.
OIX, its member companies and Verizon aim to provide an open framework that standardizes the security, privacy, and operation policies of identity service providers that people, businesses and governments can trust.
The Internet identity ecosystem is quickly evolving with companies playing many different roles. The OIX is focused on the roles of attribute providers, identity providers, and relying parties. Verizon is playing an important role as a leader and advocate for OpenID. We congratulate Verizon on this significant achievement.
This entry was posted
on Wednesday, December 7th, 2011 at 2:37 pm and is filed under Foundation, News.
You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Posted at 10:50 am on September 12, 2011 by Nat Sakimura
Since we posted in July about the availability of preliminary OpenID Connect specifications, developers have been building implementations and submitting feedback on the specs. The specs have been revised to incorporate their feedback. A new map of the specs is as follows:
The biggest difference you’ll notice is that there is now only one spec to implement for “Minimal” clients (rather than previously three). A number of people had asked that there be a single, simple, self-contained spec that basic relying parties could implement. That spec is the OpenID Connect Basic Client Profile. That’s all you need for a web-based relying party utilizing a pre-configured set of OpenID Providers.
For “Dynamic” configurations, where the set of OpenID Providers is not pre-configured, Discovery and Dynamic Client Registration capabilities are added to enable RPs to discover OP endpoints and to connect with the OP selected. This functionality is needed for “open” OpenID Connect interactions.
OpenID Providers, native client applications, and clients needing more functionality than that provided by the Basic Client Profile implement the OpenID Connect Standard binding for the OpenID Connect Messages. Finally, OPs and RPs needing session management capabilities, including logout, also implement OpenID Connect Session Management.
As you can see, the current organization remains highly modular, where implementations can build and deploy only what they need. Now that modularity is even better reflected in the way that the specs are written – particularly that there is a single, self-contained basic client specification.
In closing, we’d like to thank developers for the valuable feedback provided to date. Your input has both improved the technical content of OpenID Connect, and possibly even more importantly, made the specs simpler and easier to understand.
Tags: connect, interop, spec, specification
This entry was posted
on Monday, September 12th, 2011 at 10:50 am and is filed under News, Specs, Summit Events.
You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Posted at 11:15 am on August 22, 2011 by Karinhanson
The OpenID Foundation is launching its third OpenID Summits for 2011. This event is co-sponsored by Microsoft and will be held at the Microsoft Research Campus in Mountain View. The OpenID Foundation’s 2011 series of OpenID Summits focuses on use cases and topics of interest to key developers, executives and analysts in the online identity industry.
This OpenID summit gives web site developers and technologists a closer look at the OpenID Connect protocol, its use cases and adoption plans by leading companies. We will introduce “Account Chooser” its implementation and user experience and provide interop testing and feedback for next generation OpenID adoption.
Please join us on Monday, September 12, 2011 from 12:00 Noon until 5:00pm PDT and Tuesday, September 13, 2011 from 10:00am to 5:00pm PDT.
Registration is now open at the following link: REGISTER NOW!
Location:
Microsoft Research Silicon Valley Campus – 1288 Pear Avenue, Mountain View, CA 94043
OpenID Connect Tech Summit
AGENDA: Monday,
September 12, 2011 – 12:00pm-5:00pm
Noon: Lunch will be provided for attendees
12:00-12:20 – Welcome
Don Thibeau, Executive Director, The OpenID Foundation
Technical Sessions
12:20-1:00 – Overview and Update of OpenID Connect and OAuth 2.0, Mike Jones, Microsoft,
Director of Identity Partnerships
1:00-3:00 – OpenID Connect Spec development (Working Group Review led by Allen Tom and Mike Jones)
[2 hours]
- Timing goals for ratification
- Core protocol
- Dynamic RP registration and IDP discovery
- Claims
- Session Management
- Artifact Binding
- US Government OpenID Connect profile
3:20-4:00 – Open time for Technical Interop, Allen Tom & Mike Jones [60 min]
4:00-4:40 – OpenID Connect: Building Test Infrastructure, Roland Hedberg
4:40-5:00 – Wrap-up, Don Thibeau, Executive Director, The OpenID Foundation
AGENDA: Tuesday, September 13, 2011 – 10:00am-5:00pm
Business Session
10:00-10:20 - Welcome Don Thibeau, Executive Director, The OpenID Foundation
10:20-11:00 - Feedback Review OpenID Connect Mike Jones, Microsoft
and Allen Tom, Directors, The OpenID Foundation
11:00-11:40 - Overview and Update of Account Chooser, A presentation on a new sign in experience for the web, how to get involved, and an update on the legal status of related IP. Scott David, K&L Gates, Basheer Tome, Independent & Eric Sachs, Google
11:40-12:20 – Migrating Users to Identity Providers From Email/Password Logins”, A Summary of the experience of websites, including Google, that have started to migrate users from traditional logins to identity providers. Eric Sachs, Google, Product Manager
12:20-1:00 – Lunch
1:00-1:40 – Microsoft as an RP and IDP, Speaker (TBD)
1:40-2:20 – Way Beyond Single Sign On, Greg Keegstra, Janrain
2:20-3:00 – The Value Proposition for OpenID Connect & Account Chooser in the Enterprise, Pam Dingle, Ping Identity
3:00-3:20 – Break
3:20-4:00 – Open Identity and Online Adoption, A discussion on trends in the adoption of social login among online businesses. Patrick Salyer, Gigya
4:00-4:40 – OpenID Connect & UMA Synergies, OpenID Connect and User-Managed Access (UMA) solve interestingly complementary problems. This session will explore use cases and proposals for combining them. Macie Machulak
4:40-5:00 - Wrap up Don Thibeau, Executive Director, The OpenID Foundation
Best regards,
Don Thibeau, Executive Director
OpenID Foundation
Additional information is available at:
http://openid.net/connect/
http://accountchooser.com/
Hosted by:
Tags: developers, events, openid, summit
This entry was posted
on Monday, August 22nd, 2011 at 11:15 am and is filed under Foundation, Summit Events.
You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Posted at 11:04 am on May 20, 2011 by jfe
Many in the open standards community have a “what have you done for me lately” chip implanted deep in their programming souls. It’s logical to want the evolution of OpenID technology to keep up with the rate of its adoption. We all want the pace of technology improvement to map onto the promise of what has become the most popular decentralized single-sign-on protocol on the web. Some of the most impatient include members of the Board of the OpenID Foundation who aren’t satisfied with hanging an “over a billion served” on the OpenID Foundation website.
The “co-evolution” of OAuth and OpenID
Late last year, the members of the OpenID Artifact Binding and OpenID Connect Working Groups joined forces to develop a simple, common specification. The result had been informally referred to as “OpenID Artifact Binding/Connect” or “OpenID ABC”. Key contributors from both working groups have been working on a core specification ever since. Weekly specification calls have methodically focused on identifying and closing open issues. A key milestone was reached at IIW earlier this month: the remaining open issues were identified, tradeoffs debated, and all issues closed – with consensus decisions recorded in the Artifact Binding mailing list archives. The working group is now refining the specifications to reflect those decisions, as well as tracking the evolution of closely related specifications like OAuth 2.0.
Having passed this gate, the OpenID board decided to brand the result “OpenID Connect” and solicit as wide and diverse feedback as possible. The OpenID Retail Summit at PayPal, the “Security” Summit at Symantec, and last week’s OpenID Summit in Munich at the European Identity Conference all featured detailed briefings and feedback on OpenID Connect. While still a work in progress, OpenID Connect has achieved the levels of participation and consensus needed to advance to the next phase: interoperability testing for multiple use cases in several venues worldwide. We’ll continue to engage developers and potential deployers about OpenID Connect at upcoming OpenID Summits, including the next summit on July 19 in Colorado sponsored by Ping Identity, in to better understand, critique, refine, test, and ready OpenID Connect for prime time.
A look under the hood of OpenID Connect:
- web and developer friendly, building upon OAuth 2.0 and JSON
- simple site registration functionality (the “Connect” part)
- works well on mobile phones (the “Artifact Binding” part)
- simple JSON-based claims model
- reuses claims definitions from existing Portable Contacts specification
- can achieve a range of security characteristics, spanning use cases from social networks to those needing higher levels of assurance
- modular specifications, so deployers need only implement the functionality their applications need.
The strength of the open standards is the ongoing scrutiny from a global community of supporters and skeptics. Progress depends on those with the “courage of the first draft.” Our special thanks go to OpenID Board members Mike Jones, Nat Sakimura, and John Bradley, together with Breno de Medeiros from Google and Chuck Mortimore from Salesforce: working group participants whose dedication and perspectives were critical to building consensus, closing the open issues, and setting the stage for OpenID’s next act.
Don Thibeau
Executive Director
Tags: connect, openid, spec
This entry was posted
on Friday, May 20th, 2011 at 11:04 am and is filed under Foundation, Specs.
You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Posted at 2:58 pm on February 11, 2011 by Amanda Richardson
by Don Thibeau
I was a close reader of the commentary from Scott Gilbertson of Wired’s WebMonkey and some other posts of late. I appreciated the historical context the Forester Analysts provided; noting that when OpenID appeared on the scene, more robust solutions based on SAML under way in scenarios involving limited circles of trust — typically point-to-point enterprise scenarios — rather than consumer use cases.
History belongs to those that tell it, but I subscribe to the narratives that identity providers adopting OpenID opened the door for users to click on a button that identifies their preferred identity service for logging in at a relying-party site and are continuing to influence the development of new solutions and best practices for federated identity, trust frameworks and the like. It’s natural at this stage in its evolution that many are unpacking OpenID’s value proposition in light of the meteoric rise of Facebook Connect. Forester’s commentary “identifying the U.S. government’s support of OpenID as an important marker and noting OpenID Connect as an important way forward” and notes that “OpenID may well be that it was ahead of its time, but that hardly makes it a failure.”
The most recent blog reports of OpenID as deficient or dying assume an ever upward trajectory of adoption. The real world is different. My rear view mirror reflects an inevitable ebb and flow to any standard adoption process. While Facebook Connect’s adoption is phenomenal, it can overshadow the natural back and forth of standards development seen in recent experience in both OAuth and OpenID. All this is to say the OpenID Foundation’s role in driving a broader understanding of and improvements to the product is a critical success factor. The OIDF’s AB/Connect Working Group’s work can be pivotal in addressing the newer use-cases posed by users like Facebook and Government.
Certainly, international expansion is a key to that broader understanding and the product’s path forward. As a community we look to new leadership from Kick Willemse and Axel Nennker to bring a EU perspective to our work. We will be co-hosting our first OpenID Summit in Tokyo later this year. The Google team is considering the same for China. The 2011 OpenID Summits are both pacing items and forcing functions. Pairing OpenID Summits with other industry gatherings and collaborating with organizations like Kantara and the ITU mobilizes the resources of a global community and corporate participation. The leading by doing commitments of Google, Microsoft and Facebook and the example of PayPal’s hosting the upcoming OpenID Retail Summit gives us early positive indications of progress. Guessing the trajectory of any internet standard is both science and art. I tend to delete my responses to the ‘OpenID is a nightmare’, ‘fails to cure cancer’ commentary.
For my part, the question is not “What does OpenID mean?” It is rather, “How is OpenID influencing internet identity around you?”
Don Thibeau
Executive Director, OpenID Foundation
Tags: adoption
This entry was posted
on Friday, February 11th, 2011 at 2:58 pm and is filed under Foundation, Uncategorized.
You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Posted at 4:06 pm on December 21, 2010 by Don Thibeau
I’m pleased to report that 402 votes were cast in the election for OpenID Foundation community board members. The election results (listing candidates and number of votes received) are as follows:
Elected to serve 2-year terms:
The resignation of Marc Frons required that a new director be appointed to fill out the remainder of Marc’s term. The board appointed Chris Messina, who received the next highest number of votes at 49, to this position.
Elected to serve a 1-year term:
Not elected:
| Robert Ott |
26 |
| Willem Kossen |
11 |
| Edward White |
3 |
The five elected community board members will take office on January 1st, 2011. The seven corporate board representatives from Google, Facebook, Symantec, Ping Identity, Microsoft and PayPal remain in office. They are joined by community representatives Alan Tom and Brian Kissel serving the second of their two year terms.
I’d like to thank all those who ran for their commitment to serving the OpenID community. I look forward to working with all advancing OpenID over the coming year.
Regards,
Don
Tags: board elections
This entry was posted
on Tuesday, December 21st, 2010 at 4:06 pm and is filed under Foundation.
You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Posted at 5:47 pm on December 16, 2010 by Amanda Richardson
Dear Members,
Thank you for voting for those who will represent you at this pivotal time for OpenID. This is to introduce the newly elected community directors of the OpenID Foundation Board. In 2011 Brian Kissel and Allen Tom will be fulfilling the second year of their terms as community representatives. Marc Frons has resigned from the second year of his service because of pressing business issues at the New York Times.
Mike Jones, Chris Messina, Nat Sakimura and John Bradley bring deep domain expertise in online identity to their board service. I think it’s fair to say their election reflects a community-wide acknowledgement of the consistency and quality of their contributions in recent years. The election of Kick Willemse and Axel Nennker signals an important shift towards more international leadership on the board. At last week’s Identity Next Conference and at the Identity Summit in Geneva, Nat, John, Kick and Axel led discussions expanding a more global view of OpenID’s adoption and updating its technology with our colleagues in the EU. Nat, Mike, Kick and John have been elected to two years terms. David Recordon will represent Facebook in 2011.
It’s important to acknowledge the contributions of Luke Sheppard, Mike Ozburn, Dick Hardt, Joseph Smarr, Daniel Jacobson and Rob Harles. Each contributed the energy, talent and diversity of views that makes the foundation an occasionally frustrating, increasingly complex and unique resource in online identity. Because of their efforts, the 2011 board starts the new year with a mandate for building momentum around the merged AB/Connect working group and the restructuring the OIDF to be a more effective, more international organization.
Technology development and board deliberations rarely follow a graceful upward curve. With the push/pull of competing business models and the cross jurisdictional impact of online identity, it’s easy to underestimate the time and commitment required of directors to reconcile corporate, community and global interests in a rapidly changing identity ecosystem. The board has important work to do right from the start of 2011. It must leverage and deploy the unique assets of the foundation, its leadership as a convener of OpenID Summits, its authoritative voice in standards development, and most importantly its growing worldwide community.
This is to you to engage with this new board from the start. We will soon publish a calendar of OpenID Summits, reorganize our governance and advance the utility of our “product” through the AB/Connect working group. Blog your views at openid.net, serve on work groups and contribute to the development of one of the most important technologies of our time.
Don Thibeau
Executive Director
Tags: Don Thibeau, election, Foundation
This entry was posted
on Thursday, December 16th, 2010 at 5:47 pm and is filed under Foundation.
You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Posted at 9:51 am on November 17, 2010 by Amanda Richardson
Dear OIDF Member:
The OpenID Foundation is committed to enabling, promoting and protecting technologies that enable users to control their online identity. This is an evolving space where the definition of online identity continues to shift. Community-elected representatives play an important part in the direction of the foundation and thus help shape the future of online identity.
At times, the board is a team of rivals — corporate and community agendas inevitably compete. Competition and collaboration serve to shine a light on what’s important. For the most part, the board is a group of like-minded individuals doing like-minded things: solving the vexing problems of online security and global adoption with open source tools and open minds for better ideas.
Please consider it an honor to join a board of highly regarded business executives who share their strategic insights during this time of accelerating growth. The collective expertise of this group is a tremendous asset to member companies, their customers and the community.
Cheers,
Don Thibeau
Executive Director
Tags: election, Foundation
This entry was posted
on Wednesday, November 17th, 2010 at 9:51 am and is filed under Foundation.
You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.