IPSIE Working Group - Overview

The Interoperability Profiling for Secure Identity in the Enterprise (IPSIE) Work Group develops interoperability and security profiles of existing specifications that enable secure identity management within the enterprise.

IPSIE Working Group
OVERVIEW

IPSIE Working Group
CHARTER

IPSIE Working Group
SPECIFICATIONS

IPSIE Working Group
REPOSITORY

What is the IPSIE Working Group?

The current state of identity within an enterprise extends well beyond single-sign-on. Many aspects of enterprise identity are covered by specifications inside and outside of the OIDF community: OpenID Connect, Shared Signals, OAuth 2.0, SCIM, and more.

These specifications enable a wide range of capabilities – many of which go beyond the minimum requirements for enterprise and include features that are irrelevant in that context. Importantly, they are often frameworks that contain significant levels of optionality, reducing the likelihood that independent implementations will interoperate.

This Work Group will develop profiles of existing specifications with a primary goal of achieving interoperability between independent implementations. It will do this while prioritizing secure defaults.

The initial problem space focuses on:

  • Single Sign-On
  • User Lifecycle Management
  • Entitlements
  • Risk Signal Sharing
  • Logout
  • Token Revocation

It may also address problems, like: 

  • Discoverability of specific features within the above capabilities
  • New user onboarding and account recovery
  • Discovering the application used within an enterprise
  • Monitoring and provisioning application usage
  • Managing restrictions on application usage

Those interested in joining this Work Group are encouraged to join the Mailing List.

Work Group Chairs

  • Aaron Parecki (Okta)

The chairs can be reached at opened-specs-ipsie@lists.openid.net  

Participation

To monitor progress and connect with working group members, join the mailing list.

To participate in or contribute to a specification within the working group requires the submission of an Intellectual Property Rights (IPR) contribution agreement.  You can complete this electronically or by paper at openid.net/intellectual-property.
 
Be sure to specify, in the working groups box, the exact name:

Meeting Schedule

Regular Meetings