Security Disclosures

This page is updated whenever the OpenID Foundation or its partners identify a security risk.  This includes academic partners who have been commissioned to perform rigorous testing and analysis. The OpenID Foundation is not aware of any actual compromises based on the possible attack vector on this list.