Back Home

The Internet Identity Layer

The Internet Identity Layer

  • OpenID Foundation
    • About Us
    • Sponsoring Members
    • Leadership
    • Membership Benefits & Join
    • Intellectual Property
    • Presentations & Videos
    • OpenID Foundation Policies
    • OpenID Foundation Calendar
    • Chapters
    • Contact
    • Member Sign-in
  • Intellectual Property
    • OpenID IPR Policy, Contribution Agreement and Process Document
    • Executed Contribution Agreements
    • Software Grant and Contribution License Agreement
    • OpenID® Copyright License
    • OpenID® Trademark and Service Mark License
    • OpenID® Logo Guidelines
  • Current Working Groups
    • How do working groups work?
    • AB/Connect Working Group
    • Account Chooser & Open YOLO (You Only Login Once) Working Group
    • Enhanced Authentication Profile (EAP) Working Group
    • Fast Federation (FastFed) WG
    • Financial-grade API (FAPI) WG
    • HEART WG
    • International Government Assurance Profile (iGov) WG
    • MODRNA (Mobile Operator Discovery, Registration & autheNticAtion) WG
    • Research & Education (R&E) WG
    • RISC (Risk and Incident Sharing and Coordination) WG
  • Specs & Dev Info
    • Specifications
    • Libraries, Products, and Tools
    • Libraries for Obsolete Specifications
  • OpenID® Certification
    • OpenID Certification Frequently Asked Questions (FAQ)
    • OpenID Certification Instructions
    • OpenID Certification Fee Schedule
    • OpenID Certified Mark
    • Featured Certified Implementations for Developers
  • OpenID Connect FAQ and Q&As
  • Workshops
    • OIDF Workshop at Verizon Media – September 30, 2019
    • OIDF Workshop at 2019 European Identity Conference – May 14, 2019
    • OIDF Workshop at Verizon Media – April 29, 2019
    • OIDF Workshop at VMware – October 22, 2018
    • OIDF Workshop at EIC 2018 – May 15, 2018
    • OIDF Workshop at Oracle – April 2, 2018
    • Open Banking Workshop Hosted by OpenID Foundation and Open Identity Exchange – March 21, 2018
    • OIDF’s RISC Work Group Data Sharing Agreement Workshop – January 31, 2018
    • Open Banking Workshop Hosted by OpenID Foundation and Open Identity Exchange – January 30, 2018
    • OpenID Foundation & Open Banking Workshop: The Implications for the Banking Industry – November 6, 2017
    • OIDF Workshop at PayPal – October 16, 2017
Home » Foundation » Apple Successfully Implements OpenID Connect with Sign In with Apple

Apple Successfully Implements OpenID Connect with Sign In with Apple

This entry was posted in Foundation News and tagged Apple chairman sakimura Nat Sakimura openid OpenID Connect sign in with apple on September 30, 2019 by Nat Sakimura

September 30, 2019

Mr. Craig Federighi
Apple
Senior Vice President of Software Engineering
One Apple Park Way
Cupertino, CA 95014


RE: Apple Successfully Implements OpenID Connect with Sign In with Apple

 
Dear Mr. Federighi,

As you are likely aware, on behalf of the OpenID Foundation Board of Directors, I published an open letter to you June 27, 2019 addressing the concerns we had with Apple’s implementation of OpenID Connect in the Sign In with Apple implementation.

We identified the set of differences between OpenID Connect and Sign In with Apple and highlighted those in an open document. This document has since been updated to include changes your team made in your implementation of OpenID Connect. We applaud your team’s efforts in quickly addressing the critical security and compatibility gaps identified and successfully implementing them while Sign In with Apple is still in beta.

Now users will no longer be limited to where they can use the service and they can have confidence in their security and privacy. Furthermore, Sign In with Apple is now interoperable with widely available OpenID Connect Relying Party software. Apple, like others, can utilize the OpenID Connect Self Certification Test Suite to further test and improve the Sign In with Apple implementation.

Note that there are still some peculiarities identified in the open document. While these are not security issues, addressing them would make it even easier to use Sign In With Apple with existing OpenID Connect libraries. For instance, providing a discovery document would make it easier for existing software to be configured to use Sign In with Apple. We encourage your team to continue working through the issues identified.

On behalf of the OpenID Foundation Board of Directors, I thank you and Apple for efficiently executing your updates. This is an important achievement for Apple, users of Sign In with Apple, and the digital identity community.

 

Regards,

Nat Sakimura
OpenID Foundation Chairman
On behalf of the Board of Directors of the OpenID Foundation

Post navigation

  • ← Public Review Period for OpenID Connect for Identity Assurance Specification Started

News Archives

Categories

Recent Posts

  • Apple Successfully Implements OpenID Connect with Sign In with Apple
  • Public Review Period for OpenID Connect for Identity Assurance Specification Started
  • OpenID Certification Program Expands with the Release of Financial-grade API Client Initiated Backchannel Authentication Profile (FAPI-CIBA) Certification
  • Implementer’s Draft of FAPI Client Initiated Backchannel Authentication (CIBA) Profile Approved
  • Implementer’s Drafts of Two EAP Specifications Approved

Tags

Account Chooser adoption board election board elections Certification CIBA connect developers Don Thibeau election Errata events FAPI federation Final Specification Financial-grade API Foundation google government HEART iGov Implementer's Draft MODRNA OBIE oidf OIDF workshop open banking openid OpenID Connect openid foundation OpenYOLO Public Review retail advisory committee RISC security spec specification summit usability user experience vote Working Group working groups working group updates workshop

· © 2019 OpenID · Powered by · Designed with the Customizr theme ·

This website uses cookies to allow us to provide you the best experience while visiting our website. By continuing to use the site, you are agreeing to our use of cookies.
You can change your cookie settings at any time but if you do, you may lose some functionality. More information may be found in our Privacy Policy.Confirm