Skip to content
Back Home

The Internet Identity Layer

The Internet Identity Layer

  • Membership
  • OpenID Foundation
    • Membership Benefits & Join
    • About Us
    • Sponsoring Members
    • Leadership
    • Intellectual Property
    • Presentations & Videos
    • OpenID Foundation Policies
    • OpenID Foundation Calendar
    • Chapters
    • Contact
    • Member Sign-in
  • Intellectual Property
    • OpenID IPR Policy, Contribution Agreement and Process Document
    • Executed Contribution Agreements
    • Software Grant and Contribution License Agreement
    • OpenID Foundation Policies
    • OpenID® Copyright License
    • OpenID® Logo Guidelines
  • Current Working Groups
    • How do working groups work?
    • AB/Connect Working Group
    • eKYC & Identity Assurance WG
    • Enhanced Authentication Profile (EAP) Working Group
    • Fast Federation (FastFed) WG
    • Financial-grade API (FAPI) WG
    • HEART (Health Relationship Trust) WG
    • International Government Assurance Profile (iGov) WG
    • MODRNA (Mobile Operator Discovery, Registration & autheNticAtion) WG
    • Research & Education (R&E) WG
    • Shared Signals and Events – A Secure Webhooks Framework
  • Community Groups
    • Global Assured Identity Network (GAIN) Proof of Concept
  • OpenID® Certification
    • OpenID Certification Frequently Asked Questions (FAQ)
    • OpenID Certification Instructions
    • OpenID Certification Fee Schedule
    • OpenID Certified Mark
    • Featured Certified Implementations for Developers
    • Open Source Project Certification Policy
    • Third-Party Support Certification Policy & Available Consultants
  • Specs & Dev Info
    • Specifications
    • Libraries, Products, and Tools
    • Libraries for Obsolete Specifications
  • Resources
    • OpenID Connect FAQ and Q&As
    • Learn More About Open Banking & Financial-grade API (FAPI)
  • Workshops
    • OIDF Workshop at EIC 2022 — Tuesday, May 10, 2022
    • OIDF Workshop at Google — Monday, April 25, 2022
    • OIDF Virtual Workshop — Thursday, December 9, 2021
    • OIDF Workshops for GSMA— Fall 2021
    • OIDF Sessions at the FIDO Member Plenary – Thursday, October 21, 2021
    • OIDF Workshop at EIC 2021 — Monday, September 13, 2021
    • OIDF FAPI Outreach Workshops for Open Banking Brazil – Spring 2021
    • OIDF FAPI Outreach Workshops in Australia in Partnership with the Data Standards Body – Spring 2021
    • OIDF Virtual Workshop — Thursday, April 29, 2021
    • OIDF Virtual Workshop – October 28, 2020
    • OIDF Virtual Workshop – May 21, 2020
    • OpenID Foundation and the UK Open Banking Implementation Entity Conformance and Certification Workshop — April 27, 2020
    • OIDF Workshop at Verizon Media – September 30, 2019
    • OIDF Workshop at 2019 European Identity Conference – May 14, 2019
    • OIDF Workshop at Verizon Media – April 29, 2019
    • OIDF Workshop at VMware – October 22, 2018
    • OIDF Workshop at EIC 2018 – May 15, 2018
    • OIDF Workshop at Oracle – April 2, 2018
    • Open Banking Workshop Hosted by OpenID Foundation and Open Identity Exchange – March 21, 2018
    • OIDF’s RISC Work Group Data Sharing Agreement Workshop – January 31, 2018
    • Open Banking Workshop Hosted by OpenID Foundation and Open Identity Exchange – January 30, 2018
    • OpenID Foundation & Open Banking Workshop: The Implications for the Banking Industry – November 6, 2017
    • OIDF Workshop at PayPal – October 16, 2017
Home » Foundation » Apple Successfully Implements OpenID Connect with Sign In with Apple

Apple Successfully Implements OpenID Connect with Sign In with Apple

This entry was posted in Foundation News and tagged Apple chairman sakimura Nat Sakimura openid OpenID Connect sign in with apple on September 30, 2019 by Nat Sakimura

September 30, 2019

Mr. Craig Federighi
Apple
Senior Vice President of Software Engineering
One Apple Park Way
Cupertino, CA 95014


RE: Apple Successfully Implements OpenID Connect with Sign In with Apple

 
Dear Mr. Federighi,

As you are likely aware, on behalf of the OpenID Foundation Board of Directors, I published an open letter to you June 27, 2019 addressing the concerns we had with Apple’s implementation of OpenID Connect in the Sign In with Apple implementation.

We identified the set of differences between OpenID Connect and Sign In with Apple and highlighted those in an open document. This document has since been updated to include changes your team made in your implementation of OpenID Connect. We applaud your team’s efforts in quickly addressing the critical security and compatibility gaps identified and successfully implementing them while Sign In with Apple is still in beta.

Now users will no longer be limited to where they can use the service and they can have confidence in their security and privacy. Furthermore, Sign In with Apple is now interoperable with widely available OpenID Connect Relying Party software. Apple, like others, can utilize the OpenID Connect Self Certification Test Suite to further test and improve the Sign In with Apple implementation.

Note that there are still some peculiarities identified in the open document. While these are not security issues, addressing them would make it even easier to use Sign In With Apple with existing OpenID Connect libraries. For instance, providing a discovery document would make it easier for existing software to be configured to use Sign In with Apple. We encourage your team to continue working through the issues identified.

On behalf of the OpenID Foundation Board of Directors, I thank you and Apple for efficiently executing your updates. This is an important achievement for Apple, users of Sign In with Apple, and the digital identity community.

 

Regards,

Nat Sakimura
OpenID Foundation Chairman
On behalf of the Board of Directors of the OpenID Foundation

Post navigation

  • ← Public Review Period for OpenID Connect for Identity Assurance Specification Started
  • Welcoming New OpenID Foundation Vice-Chairman →

News Archives

Categories

Recent Posts

  • Public Review Period for Proposed Implementer’s Draft of OpenID Connect Native SSO for Mobile Apps
  • Public Review Period for Proposed Final Initiating User Registration via OpenID Connect Specification
  • Notice of Vote for Fourth Implementer’s Draft of OpenID Connect for Identity Assurance Specification
  • The OpenID Connect Logout specifications are now Final Specifications
  • Public Review Period for Proposed Final Unmet Authentication Requirements Specification

Tags

adoption board election board elections Certification certification program CIBA connect developers Don Thibeau election events FAPI FastFed federation Final Specification Financial-grade API financial data exchange Foundation government HEART Identity Assurance iGov Implementer's Draft MODRNA Nat Sakimura oidf OIDF workshop open banking open banking implementation entity openid openid certification program OpenID Connect openid foundation Public Review RISC spec specification SSE summit usability user experience vote working groups working group updates workshop

Website Privacy Policy

· © 2022 OpenID · Powered by · Designed with the Customizr theme ·