Latest News

Current news about the OpenID Foundation and the community at large. Please visit the News Archive to view news older than two years.

OpenID Foundation Members Honoured in Okta’s Identity 25

The OpenID Foundation applauds all the honorees from this year’s Okta Ventures “The Identity 25” program. Today we take a moment to proudly celebrate the members of the OpenID Foundation Community recognized in the Okta Ventures’ Identity 25 honourees. Many of our friends, colleagues, partners are recognized here, who we

Read More »

Public Review Period for Proposed Final EAP ACR Values Specification

The OpenID EAP working group recommends approval of the following specification as an OpenID Final Specification: OpenID Connect Extended Authentication Profile (EAP) ACR Values 1.0 A Final Specification provides intellectual property protections to implementers of the specification and is not subject to further revision. This note starts the 60-day public review period

Read More »

OIDF & OIDF-J welcome the Japanese Digital Agency, West Japan Railway Company, and the National Institute of Informatics’ Student VC Project

Translated from the OIDF-J announcement. The OpenID Foundation and the OpenID Foundation Japan would like to express our sincere welcome to the pilot project for the social implementation of services for students using verifiable credentials, which was conducted and announced in March 2025 by the Digital Agency, West Japan Railway

Read More »

AuthZEN & Shared Signals in the Gartner IAM 2025 spotlight

An intense and unforgettable two days for the OpenID Foundation The OpenID Foundation was again invited to lead cutting-edge interoperability  demonstrations at the March 2025 Gartner Identity & Access Management Summit in London this week. This time, two Working Groups, Shared Signals and AuthZEN, had a presence. The demand for

Read More »

Implementer’s Draft of OpenID4VC High Assurance Interoperability Profile Approved

The OpenID Foundation membership has approved the following OpenID Implementer’s Draft:   OpenID for OpenID4VC High Assurance Interoperability Profile: https://openid.net/specs/openid4vc-high-assurance-interoperability-profile-1_0-ID1.html An Implementer’s Draft is a stable version of a specification providing intellectual property protections to implementers of the specification. OpenID for OpenID4VC High Assurance Interoperability Profile Implementer’s Draft is the product

Read More »

Implementer’s Guide: FAPI 2.0 Final vs. Implementer’s Draft 2.0

Author: Dima Postnikov, Vice-Chair of OpenID Foundation and FAPI WG Member Contributors: Gail Hodges, Nat Sakimura, Ralph Bragg, Filip Skokan, Joseph Heenan. This article is also accessible on Medium. Introduction In a significant milestone for the global Open Banking and Open Data community, on February 22nd, the OpenID Foundation published

Read More »

Webinar on IPSIE secures more than 300 registrations

More than 300 identity security leaders and identity professionals registered for a recent webinar where our Executive Director Gail Hodges discussed with industry experts Jeff Reich, Dean H. Saxe, Aaron Parecki and George Fletcher, how enterprises can achieve secure, interoperable identity management using multiple standards, new enterprise interoperability profiles to

Read More »

OpenID Federation Interop Event, April 28-30, 2025

The OpenID Foundation will be holding an interop testing event Monday-Wednesday, April 28-30, 2025 for OpenID Federation implementations.  In-person participation is encouraged, but if it works better for you, you can also participate remotely. The event will be hosted by SUNET at their office in Stockholm, Sweden. Event Details: 📅 Date:

Read More »

OPIN joins OIDF Board via Peers Consulting + Technology

The OpenID Foundation is delighted to announce that Open Insurance Brazil (OPIN) will be joining the OpenID Foundation Board of Directors as a Sustaining Member, via their strategic partnership with Peers Consulting + Technology. Francisco Leme, Chief Technology and Operations Officer for OPIN and representative for Peers Consulting, will represent

Read More »

Notice of a Security Vulnerability

The OpenID Foundation is committed to maintaining the highest security standards in identity protocols and takes security research seriously. As our specifications move towards final, we engage security researchers to conduct a rigorous security analysis and identify any vulnerabilities in the specifications. During a formal analysis of OpenID Federation, a

Read More »

OIDF Re-Elected to OpenWallet Foundation’s Board

The OpenID Foundation is delighted to announce its re-election to the OpenWallet Foundation’s (OWF) Board of Directors as an Observer. This position allows the OpenID Foundation to continue representing the OWF’s associate sponsors, which include a diverse array of non-profit, academic, and government entities. For the year ahead, the OpenID

Read More »

Attend the OIDF Workshop prior to IIW Spring 2025 on 7th April 2025

The OpenID Foundation will be holding a hybrid workshop on Monday, 7th April 2025, just ahead of the Spring 2025 Internet Identity Workshop (IIW).  This hybrid event will take place both in person at Google’s facility in Sunnyvale, CA, and online making it accessible to participants worldwide.   Event Details:

Read More »

FAPI 2.0 Security Profile and Attacker Model Final Specifications Approved

The OpenID Foundation membership has approved the following OpenID Final Specifications:   FAPI 2.0 Security Profile: https://openid.net/specs/fapi-security-profile-2_0-final.html FAPI 2.0 Attacker Model: https://openid.net/specs/fapi-attacker-model-2_0-final.html A Final Specification provides intellectual property protections to implementers of the specification and is not subject to further revision. The FAPI Final Specifications are the product of the FAPI Working

Read More »

Australian Digital Trust Community Group (ADT CG)

by Victoria Richardson, ID Partners & Community Group Co-Chair We are not yet halfway through the first quarter of 2025 and it’s already clear that digital identity and trusted ecosystems more broadly are front of mind for many countries. Digital driver licenses in particular have made the headlines with insights

Read More »

Second Implementer’s Draft of OpenID for Verifiable Credential Issuance Specification Approved

The OpenID Foundation membership has approved the following specification as an OpenID Second Implementer’s Draft: OpenID for Verifiable Credential Issuance An Implementer’s Draft is a stable version of a specification providing intellectual property protections to implementers of the specification. This Second Implementer’s Draft is a product of the Digital Credentials

Read More »

Public Review Period for Proposed Implementer’s Draft of OpenID4VC High Assurance Interoperability Profile

The Digital Credentials Protocols (DCP) working group recommends approval of the following specification as an OpenID Implementer’s Draft: OpenID for OpenID4VC High Assurance Interoperability Profile: https://openid.net/specs/openid4vc-high-assurance-interoperability-profile-1_0-03.html  An Implementer’s Draft is a stable version of a specification providing intellectual property protections to implementers of the specification. This note starts the 45-day public review

Read More »

Shared Signal WG returns to Gartner IAM for interoperability

Call for participants: Demonstrate your SSF and CAEP implementations at the Gartner IAM Summit in London this March. The OpenID Foundation is excited to announce its return to the Gartner Identity and Access Management (IAM) Summit in London, March 24th-25th 2025, to host another interoperability session. This marks the third

Read More »

OIDF Feedback on NIST’s Attribute Validation Services

The National Institute of Standards and Technology (NIST) recently released a draft report entitled Attribute Validation Services for Identity Management, which seeks to provide a comprehensive framework for agencies considering implementing Attribute Validation Services (AVS) services.  AVS are critical for identity proofing, fraud prevention, and ensuring equal access to digital

Read More »

2025 OpenID Foundation Board of Directors

by Gail Hodges, Executive Director I want to sincerely thank all OpenID Foundation members who voted in the 2025 elections for representatives to the OpenID Foundation Board of Directors. Per the Foundation’s Bylaws and as of December 1, 2024, there were two Corporate Representative and two Community Representative seats up

Read More »

Strengthening cybersecurity measures – the OpenID Foundation’s recommendations on ENISA’s guidance for the NIS2 Directive

As the European Union continues to strengthen its cybersecurity framework, the NIS2 Directive serves as a pivotal measure to protect critical infrastructure and essential services across member states.  Committed to advancing secure and interoperable digital identity standards, the OpenID Foundation welcomes the opportunity to contribute to this critical initiative and

Read More »

Third OpenID4VP Implementer’s Draft Approved

The OpenID Foundation membership has approved the following specification as an OpenID Implementer’s Draft:   OpenID for Verifiable Presentations: https://openid.net/specs/openid-4-verifiable-presentations-1_0-ID3.html An Implementer’s Draft is a stable version of a specification providing intellectual property protections to implementers of the specification. This Implementer’s Draft is a product of the AB/Connect working group.   The voting

Read More »

Driving Innovation and Adoption: Reflections on the California mDL Hackathons

The California Department of Motor Vehicles (DMV), in partnership with the OpenID Foundation, recently hosted two groundbreaking hackathons aimed at advancing digital identity through California’s mobile Driver’s License (mDL). With over 100 attendees at both events, they were more than simply technical exercises; they were pivotal moments in the evolution

Read More »

Digital Identity News Round-Up: 13 Dec 2024

  The OpenID Foundation is now offering a Digital Identity Round-Up, similar to that which OIX used to offer its members. If you have suggestions or sources that we need to add to our lists as we develop this round-up, please feel free to contact Elizabeth Garber.  Cyprus has launched

Read More »

Shared Signals Interoperability at Gartner IAM

We are thrilled to share that TODAY (and also tomorrow) we are showcasing shared signals interoperability in action at the Gartner Identity and Access Management (IAM) Summit, in Grapevine, Texas. Following the significant levels of interest generated by the success of our interoperability session at the last Gartner IAM Summit

Read More »

Public Review Period for Proposed Final FAPI 2.0 Security Profile and Attacker Model Specifications

The OpenID Foundation’s FAPI Working Group recommends approval of the following specifications as OpenID Final Specifications. FAPI 2.0 Security Profile Other formats:  XML, MD FAPI 2.0 Attacker Model Other formats:  XML, MD A Final Specification provides intellectual property protections to implementers of the specification and is not subject to further revision. This note starts

Read More »

Announcing the 2025 OpenID Foundation Community Representatives Election

This is to announce the 2024 OpenID Foundation Community Representatives election schedule. Those elected will help guide the Foundation’s efforts in facilitating the development and adoption of important open identity standards enabling global interoperability as well as the strategic direction of the Foundation. Per the OIDF Bylaws and as of December

Read More »

AuthZEN Authorization API 1.0 Implementer’s Draft Approved

The OpenID Foundation membership has approved the following AuthZEN specifications as an OpenID Implementer’s Draft: Authorization API 1.0 Implementer’s Draft: https://openid.net/specs/authorization-api-1_0-01.html An Implementer’s Draft is a stable version of a specification providing intellectual property protections to implementers of the specification. This Implementer’s Draft is a product of the AuthZEN Working

Read More »

For the Record: The IPSIE WG and OpenID Foundation Processes

We recently shared some exciting news about a new Working Group, Interoperability Profiling for Secure Identity in the Enterprise (IPSIE). However, there have been some misunderstandings in the media coverage that followed the OpenID Foundation’s announcement. The OIDF is keen to clarify our ways of working and affirm that all

Read More »

FAPI 2.0 Conformance Tests Now Support DPoP

The OpenID Foundation is pleased to announce the release of DPoP (Demonstration of Proof-of-Possession, RFC 9449) support in FAPI 2.0 Conformance Tests. Implementers can now certify their solutions with DPoP, adding an additional layer of security for client authentication. This update follows the beta phase and addresses the community’s feedback

Read More »

Public Review Period for Proposed Implementer’s Draft of OpenID4VP Specification

The OpenID AB/Connect Working Group recommends approval of the following specification as an OpenID Implementer’s Draft: OpenID4VP: https://openid.net/specs/openid-4-verifiable-presentations-1_0-22.html This would be the third Implementer’s Draft of this specification. This version has 3 major changes: Introduces the Digital Credentials Query Language; this is an alternative to Presentation Exchange Introduces the transaction data mechanism

Read More »

Revisions to OpenID Process Document and IPR Policy Approved

A subgroup of OpenID Foundation board members and key staff have been working to update the “OpenID Process” document based on issues raised by some board members to ensure the document aligns with how the Foundation currently works. This update addresses those original issues and also identified a significant number

Read More »

Announcing the IPSIE Working Group

The OpenID Foundation is delighted to announce the formation of the Interoperability Profiling for Secure Identity in the Enterprise (IPSIE) Working Group. This WG aims to tackle key challenges that underlie identity security in today’s enterprise environments.  The Core Challenge Identity and Access Management (IAM) within the enterprise is a

Read More »

10 Years On: OpenID Connect Published as an ISO/IEC Spec

The OpenID Connect Final specification was launched on February 26, 2014 with a vision of increased security, privacy, and usability on the internet. Ten years after that publication, we are delighted to announce that 9 OpenID Connect specifications are now published as ISO/IEC standards. ISO/IEC 26131:2024 — Information technology —

Read More »

Three OpenID Connect for Identity Assurance Final Specifications Approved

The OpenID Foundation membership has approved the following three OpenID Connect for Identity Assurance specifications as an OpenID Final Specifications:   OpenID Identity Assurance Schema Definition 1.0 – https://openid.net/specs/openid-ida-verified-claims-1_0-final.html OpenID Connect for Identity Assurance Claims Registration 1.0 – https://openid.net/specs/openid-connect-4-ida-claims-1_0-final.html OpenID Connect for Identity Assurance 1.0 – https://openid.net/specs/openid-connect-4-identity-assurance-1_0-final.html   A Final Specification provides intellectual

Read More »

Announcing the Death and the Digital Estate Community Group

By Dean H. Saxe I am happy to announce the formation of the Death and the Digital Estate Community Group (DADE CG).  DADE CG has been created as a space for the OpenID Foundation and identity community to develop an understanding of how individuals can manage their digital estate in

Read More »

Accelerating mDL Adoption in the United States

The OpenID Foundation is delighted to announce that it is one of 15 parties to a Collaborative Research and Development Agreement (CRADA) with the National Cybersecurity Council Center of Excellence. This project will accelerate digital identity adoption in the United States. Its first use case supports financial institutions to meet

Read More »

Proposed Revisions to OpenID Process Document and IPR Policy

Dear OpenID Foundation Members, A subgroup of OpenID Foundation board members and key staff have been working to update the “OpenID Process” document based on issues raised by some board members to ensure the document aligns with how the Foundation currently works. This update addresses those original issues and also

Read More »

OIDF to Co-Host Mobile Drivers License Hackathons

Image sourced from Chat GPT The OpenID Foundation is proud to co-host two Hackathons with the California Department of Motor Vehicles (DMV) in support of their Mobile Drivers License (mDL) pilot. What is the Project? In 2021, the California legislature authorized the DMV to start an mDL pilot, and since

Read More »

Three Shared Signals Implementer’s Drafts Approved

The OpenID Foundation membership has approved the following three Shared Signals specifications as OpenID Implementer’s Drafts: OpenID Shared Signals Framework Specification 1.0: https://openid.net/specs/openid-sharedsignals-framework-1_0-ID3.html OpenID Continuous Access Evaluation Profile 1.0: https://openid.net/specs/openid-caep-1_0-ID2.html CAEP Interoperability Profile 1.0: https://openid.net/specs/openid-caep-interoperability-profile-1_0-ID1.html An Implementer’s Draft is a stable version of a specification providing intellectual property protections to

Read More »

GAIN Community Group: An Update

Over the last two years, the GAIN POC Community Group has been working steadily on demonstrating that disparate digital identity implementations can be integrated. We have been through two cycles that largely ended up with the same high-level process: Agree specifics Implement code changes Integrate & demonstrate interoperability The two

Read More »

Fourth Implementer’s Draft of OpenID Federation Approved

The OpenID Foundation membership has approved the following specification as an OpenID Implementer’s Draft: OpenID Federation 1.0 This is the fourth Implementer’s Draft of this specification. An Implementer’s Draft is a stable version of a specification providing intellectual property protections to implementers of the specification. This specification is a product

Read More »

Guidance to the CFPB regarding US Open Banking

Authors: Gail Hodges, Joseph Heenan, Dima Postnikov, Mark Haine, Mike Leszcz, Elizabeth Garber  Following our May 16 open letter to the Consumer Financial Protection Bureau, the OpenID Foundation has been engaged in discussions about their rule-making on Personal Financial Data Rights. This post summarizes our guidance to the CFPB. Why

Read More »

All Aboard the CAEP-Ability Hype Train!

Authors: Sean O’Dell (Disney), Atul Tulshibagwale (SGNL) An Identiverse 2024 Panel Recap The attendance for this panel, which featured all co-chairs of the Shared Signals Working Group (SSWG), was near capacity and the engagement from the audience in the Q&A was resounding…because the hype is real with CAEP. The panel

Read More »

New Shared Signals Drafts

Authors / Shared Signals Co-Chairs: Atul Tulshibagwale, SGNL; Shayne Miel, Cisco; Sean O’Dell, Disney; and Tim Cappalli, Okta The OpenID SSWG has released three new drafts for review by the OpenID Foundation membership. We would like to describe the salient features of these drafts here. At the end of the

Read More »

OpenID for Verifiable Credentials Wins EIC Award!

The OpenID Foundation is proud to announce that, for the work building the “OpenID for Verifiable Credentials” family of specifications, members of the Digital Credentials Protocol (DCP) Work Group won the “Future Technologies and Standards” award at the European Identity and Cloud Conference. For the last several years, this group

Read More »

Public Review Period for Three Shared Signals Drafts

The OpenID Shared Signals Working Group recommends approval of the following three specifications as OpenID Implementer’s Drafts: Shared Signals Framework Draft 03 Other formats: TXT, XML, MD CAEP Draft 03 Other formats: TXT, XML, MD CAEP Interoperability Profile Draft 00 Other formats: TXT, XML, MD An Implementer’s Draft is a stable version

Read More »

Digital Identity at the G20

On June 18, 2024 the OpenID Foundation’s Executive Director, Gail Hodges, spoke about Digital Identity at the G20 during the Digital Government and Inclusion Workshop. The following are her prepared remarks.   Bom dia and hello. I’d first like to applaud the Brazilian Government for your impressive work on Digital

Read More »

AuthZEN Work Group Announces Authorization Interop Results

Conformance with the AuthZEN request/response protocol marks a significant milestone in simplifying and standardizing authorization approaches   The OpenID Foundation led the standardization of authentication protocols with OpenID Connect and now we are proud to host the AuthZEN Working Group as they seek to do the same for authorization.” —

Read More »

AI for Identity Standards

The OpenID Foundation recently convened a panel on Artificial Intelligence and Identity Standards. The panelists included: Nancy Cam-Winget, Cisco Kaelig Deloumeau-Prigent, Netlify Mike Kiser, SailPoint Geraint Rogers, Daon Gail Hodges, OpenID Foundation (moderator) This summary draws out general themes and comments are not attributed to individuals or their organizations. Technology

Read More »

Letter to the CFPB on US Open Banking

The Honorable Rohit ChopraDirectorConsumer Financial Protection Bureau 1700 G St NWWashington, DC 20552  rohit.chopra@cfpb.gov May 16, 2024 Director Chopra, The OpenID Foundation is a non-profit organization whose mission is to lead the global community in creating open standards that are secure, interoperable and privacy-preserving. As part of that mission, we have

Read More »

OIDF Welcomes Mastercard to the Board

The OpenID Foundation (OIDF) is thrilled to welcome Mastercard to the Board of Directors as a Sustaining Member. Since joining in 2022 as a Corporate Member, Mastercard has been involved in several OIDF Work Groups. The Foundation welcomes Mastercard as a global technology leader in the payments industry.  “Mastercard have

Read More »

Post-Quantum Identity Standards

Image generated by Dall-e At its pre-IIW workshop on Monday, April 14, the OpenID Foundation convened a panel on Post-Quantum Computing and Identity. The panelists included: Andrea D’Intino, Dyne.org Nancy Cam-Winget, Cisco John Bradley, Yubico Rick Byers, Google Gail Hodges, OpenID Foundation (moderator) This summary draws out general themes and

Read More »

Shared Signals: Enhanced Security for All

Last month, at the Gartner Identity and Access Management Summit in London, industry leaders showcased successful, interoperable implementations of the Shared Signals Framework (SSF) and Continuous Access Evaluation Profile (CAEP). This included Okta, SailPoint, and Cisco as well as security startups SGNL, VeriClouds, and Helisoft.  The SSF suite of standards

Read More »