OAuth Assertion Documents

Slides:



Advertisements
Similar presentations
The Emerging JSON/REST-Based Identity Protocol Suite
Advertisements

Secure RESTful Interface Profile Phase 1 Briefing
UDDI v3.0 (Universal Description, Discovery and Integration)
Authentication solutions for Outlook and Office 365 Multi-factor authentication for Office 365 Outlook client futures.
© 2014 The MITRE Corporation. All rights reserved. Mark Russell OAuth and OpenID Connect Risks and Vulnerabilities 12/3/2014 Approved for Public Release;
OpenID Connect Update May 14, 2013 Dr. Michael B. Jones Identity Standards Architect – Microsoft.
IETF OAuth Proof-of-Possession
1 IETF OAuth Proof-of-Possession Hannes Tschofenig.
OpenID Connect Update and Discussion Mountain View Summit – September 12, 2011 Mike Jones – Microsoft John Bradley – Independent Nat Sakimura – Nomura.
Applied Cryptography Week 13 SAML Applied Cryptography SAML and XACML Mike McCarthy Week 13.
Proposed Documents for JOSE: JSON Web Signature (JWS) JSON Web Encryption (JWE) JSON Web Key (JWK) Mike Jones Standards Architect – Microsoft IETF 82 –
GRDevDay March 21, 2015 Cloud-based Identity for Applications.
OpenID Connect Working Group April 6, 2015 Mike Jones Identity Standards Architect – Microsoft.
Innovative Foundation For an Open Source API Management Platform Asanka
OFC-B317 Overview Identity Management in Office 365 Synchronization Topics Federation Topics Integration of SAML/OAUTH with Office Works with Office.
18 th TF-EMC2. WebEx, June 2011 Diego R. Lopez, RedIRIS On the Many Ways to Identity Exchange (Again) Digital identities are more valuable as they are.
HIT Standards Committee HIT Standards Committee Privacy and Security Workgroup Discussion of NwHIN Power Team Recommendations August 6,
Workgroup Discussion on RESTful Application Programming Interface (API) Security Transport & Security Standards Workgroup January 12, 2014.
Draft-thomson-geopriv-res-gw-lis-discovery Ray Bellis Nominet UK IETF79.
Windows 8 Application Microsoft Word with Apps For Office Internal O365 SharePoint Site Windows Azure Cloud Services Windows Azure Workflow Server.
IETF #91 OAuth Meeting Derek Atkins Hannes Tschofenig.
Navigating the Standards Landscape Andrew Owen SEARCH.
Observations from the OAuth Feature Survey Mike Jones March 14, 2013 IETF 86.
Prabath Siriwardena – Software Architect, WSO2. Patterns Standards Implementations Plan for the session.
Web Authorization Protocol (oauth) Hannes Tschofenig.
OAuth WG Blaine Cook, Hannes Tschofenig. Note Well Any submission to the IETF intended by the Contributor for publication as all or part of an IETF Internet-Draft.
SAML Token Claims Based Identity SAML Token Claims Based Identity SPUser.
OpenID Connect: An Overview Pat Patterson Developer Evangelist Architect
Web Authorization Protocol WG Hannes Tschofenig, Derek Atkins.
Building Secure Microservices
Dr. Michael B. Jones Identity Standards Architect at Microsoft
Identity Events IIW April 2016.
OGSA-WG Basic Profile Session #1 Security
Shibboleth Roadmap
OAuth WG Conference Call, 11th Jan. 2013
STIR WG / IETF 94 Yokohama, Nov 2015 Jon
Chairs: Derek Atkins and Hannes Tschofenig
OAuth2 SCIM Client Registration & Software Statement Exchange
Agenda OAuth WG IETF 87 July, 2013.
OpenID Connect Working Group
OpenID Enhanced Authentication Profile (EAP) Working Group
IETF101 London Web Authorization Protocol (OAuth)
OpenID Connect: News, Overview, Certification, and Action Items
Azure AD Line Of Business Application Integration
OpenID Enhanced Authentication Profile (EAP) Working Group
CDS Hooks HL7 WGM Jan 2018 CDS Working Group Tuesday, January 30, 2018
OpenID Connect Working Group
IETF103 Bangkok Web Authorization Protocol (OAuth)
OpenID Connect Working Group
Web Authorization Protocol (oauth)
Tim Bornholtz Director of Technology Services
TLS Security Profiles Rob Horn WG-14: Security.
JOSE New Specs & New Features
STIR WG IETF-102 PASSPorT Extension for Resource-Priority Authorization (draft-ietf-stir-rph-06) July 18, 2018 Ray P. Singh, Martin Dolly, Subir Das, and.
JSON Serialization Specifications: JWS JSON Serialization JWE JSON Serialization Mike Jones August 1, 2012.
Token-based Authentication
Web Authorization Protocol (oauth)
JSON Object Signing and Encryption (JOSE) Working Group
OpenID Connect Working Group
OpenID Enhanced Authentication Profile (EAP) Working Group
OpenID Connect Working Group
OpenID Enhanced Authentication Profile (EAP) Working Group
Computer Network Information Center, Chinese Academy of Sciences
Rifaat Shekh-Yusef IETF105, OAuth WG, Montreal, Canada 26 July 2019
IETF102 Montreal Web Authorization Protocol (OAuth)
Diameter ABFAB Application
Authentication and Authorization for Constrained Environments (ACE)
Web Authorization Protocol (OAuth)
OpenID Connect Working Group
OpenID Enhanced Authentication Profile (EAP) Working Group
Presentation transcript:

OAuth Assertion Documents March 29, 2012 Mike Jones Identity Standards Architect – Microsoft

Working Group Documents OAuth 2.0 Assertion Profile Type independent OAuth assertion requirements http://tools.ietf.org/html/draft-ietf-oauth-assertions-01 SAML 2.0 Bearer Assertion Profiles for OAuth 2.0 SAML 2.0 specific assertion requirements http://tools.ietf.org/html/draft-ietf-oauth-saml2-bearer-10 An IETF URN Sub-Namespace for OAuth Defines urn:ietf:params:oauth URN sub-namespace http://tools.ietf.org/html/draft-ietf-oauth-urn-sub-ns-02

Status of Working Group Documents All stable All have implementations Next step seems to be working group last call

Known Open Issues “SAML Bearer Spec 09 - Refresh Clarification” Refactor statement about not creating refresh tokens from SAML doc into Assertions doc (editorial) Any others?

Related Non-WG Documents JSON Web Token (JWT) JSON security token format Uses JOSE documents (JWS, JWE, JWA, JWK) http://tools.ietf.org/html/draft-jones-json-web-token-08 JSON Web Token (JWT) Bearer Token Profiles for OAuth 2.0 JWT specific assertion requirements http://tools.ietf.org/html/draft-jones-oauth-jwt-bearer-03

Status of Related Non-WG Documents All stable All have implementations Next step seems to be adoption as WG items

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.