Information Card Interoperability Michael B. Jones – Microsoft October 2008.

Slides:



Advertisements
Similar presentations
Copyright 2008, Parity Communications, Inc. licensed under EPL 1.0 Paul Trevithick, SocialPhysics.org Mary.
Advertisements

Identity Network Ideals – Heterogeneity & Co-existence
Office 365 Identity June 2013 Microsoft Office365 4/2/2017
InfoCard and the Identity Metasystem Kim Cameron, Chief Architect of Identity Microsoft.
Security Standards (…and Competing Standards … and Implementations … and Interoperability) Marty Humphrey Assistant Professor Computer Science Department.
Integration Considerations Greg Thompson April 20 th, 2006 Copyright © 2006, Credentica Inc. All Rights Reserved.
Windows CardSpace and the Identity Metasystem Glen Gordon Developer Evangelist, Microsoft
Infocard and Eduroam Enrique de la Hoz, Diego R. L ó pez, Antonio Garc í a, Samuel Mu ñ oz.
Infocard support in simpleSAMLphp Enrique de la Hoz, Diego R. L ó pez, Antonio Garc í a, Samuel Mu ñ oz.
1 Trust Framework Portable Identity Schemes Trust Framework Portable Identity Schemes NIH iTrust Forum December 10, 2009 Chris Louden.
T Network Application Frameworks and XML Service Federation Sasu Tarkoma.
1 Higgins 1: a species of Tasmanian long-tailed mouse 2: the name of an open source collaboration of IBM, Novell, Oracle, Parity…
December 19, 2006 Solving Web Single Sign-on with Standards and Open Source Solutions Trey Drake AssetWorld 2007 Albuquerque, New Mexico November 2007.
© 2009 The MITRE Corporation. All rights Reserved. April 28, 2009 MITRE Public Release Statement Case Number Norman F. Brickman, Roger.
Vittorio Bertocci Sr. Architect Evangelist Microsoft Corporation ARC204.
Mario Szpuszta Solutions Architect Microsoft Austria, Vienna.
OpenID And the Future of Digital Identity Alicia Bozyk April 1, 2008.
NIH iTrust Peter Alterman/Debbie Bucci National Institutes of Health October 2010.
Secure Web Services Akylbek Zhumabayev Rochester Institute of Technologies.
An Introduction to Information Card Barry Dorrans Charteris plc
All Contents © 2008 Burton Group. All rights reserved. Current State of Federated Identity OASIS Open Standards Forum 2008 Friday, 3 October 2008 Gerry.
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
Web Service Standards, Security & Management Chris Peiris
Who are you? From Directories and Identity Silos to Ubiquitous User-Centric Identity Mike Jones, Microsoft and Dale Olds, Novell.
Catalyst 2002 SAML InterOp July 15, 2002 Prateek Mishra San Francisco Netegrity.
All Contents © 2007 Burton Group. All rights reserved. Addressing Interoperability Challenges June 12 & 13, 2007 Gerry Gebel VP & Service Director
Saml-intro-dec051 Security Assertion Markup Language A Brief Introduction to SAML Tom Scavo NCSA.
Copyright © IBM Corp., All rights reserved; made available under the EPL v1.0 | March 20, 2008 | Short Talk Standards based systems management: An.
IIW 2008b Report November , Mountain View Abbie Barbir Nortel OASIS IDtrust Steering.
SAML Right Here, Right Now Hal Lockhart September 25, 2012.
Web Services Security Standards Overview for the Non-Specialist Hal Lockhart Office of the CTO BEA Systems.
Chad La Joie Shibboleth’s Future.
Helsinki Institute of Physics (HIP) Liberty Alliance Overview of the Liberty Alliance Architecture Helsinki Institute of Physics (HIP), May 9 th.
Catalyst 2002 SAML InterOp July 15, 2002 San Francisco.
SAML 2.0: Federation Models, Use-Cases and Standards Roadmap
Shibboleth Akylbek Zhumabayev September Agenda Introduction Related Standards: SAML, WS-Trust, WS-Federation Overview: Shibboleth, GSI, GridShib.
Ian Bailey Director Application Architecture Office of CIO, Province of BC A User Centric and Claims Based Architecture for British Columbia.
© 2008 by Matt Flaherty & Mary Ruddy; made available under the EPL v1.0 Security & Identity : From present to future Matt Flaherty, IBM Mary Ruddy, Meristic.
Windows CardSpace Martin Parry Developer Evangelist Microsoft
Shibboleth Update Eleventh Federal & Higher Education PKI Coordination Meeting (Fed/Ed Thursday, June 16, 2005.
David Chappell Chappell & Associates ARC206.
Claims-Based Identity Solution Architect Briefing zoli.herczeg.ro Taken from David Chappel’s work at TechEd Berlin 2009.
All Rights Reserved 2014 © CMG Consulting LLC Federated Identity Management and Access Andres Carvallo Dwight Moore CMG Consulting, LLC October
Shibboleth Akylbek Zhumabayev September Agenda Introduction Description WS Standards WS-Federation Picture Grid Security GridShib References 2.
WS Protocol Workshop Process The Path to Real-world Interoperability Jorgen Thelin, Microsoft Corporation.
Don Thibeau, Executive Director, OpenID Foundation (OIDF) Drummond Reed, Executive Director, Information Card Foundation (ICF)
Introduction to.NET FX 3.0 (+ sneak preview of.NET FX 3.5) Martin Parry Developer & Platform Group Microsoft Ltd
Claims-based security with Windows Identity Foundation.
Secure Web Services Akylbek Zhumabayev Rochester Institute of Technologies.
SAML Interoperability Lab RSA Conference Agenda SAML and the OASIS SSTC SAML Timeline Brief SAML History SAML Interop Lab Q & A Demo.
Improving the Usability and Security of OpenID Mike Jones Microsoft Federated Identity Team
OpenID Connect Working Group May 10, 2016 Mike Jones Identity Standards Architect – Microsoft.
OpenID Certification June 7, 2016 Michael B. Jones Identity Standards Architect – Microsoft.
Copyright © 2007 Microsoft Corporation. All Rights Reserved. Claims-based Identity Beyond Identity Silos 1st European Identity Conference 2007 Don Schmidt.
August 3, 2004WSRP Technical Committee WSRP v2 leveraging WS-Security Discussion 1. WS-* Standards 2. WS-Securtiy Interop&Implementations 3. Customer demands.
Web Authorization Protocol WG Hannes Tschofenig, Derek Atkins.
Access Policy - Federation March 23, 2016
Dr. Michael B. Jones Identity Standards Architect at Microsoft
Shibboleth Roadmap
Data and Applications Security Developments and Directions
Identity Standards Architect – Microsoft
OpenID Connect Working Group
Office 365 Identity Management
Building "One Size Fits All" Identity Systems Possible or Fantasy
Martin Parry Developer Evangelist Microsoft
Presentation transcript:

Information Card Interoperability Michael B. Jones – Microsoft October 2008

Information Card Interop Pillars Existing Standards Identity Selector Interoperability Profile OSIS (Open Source Identity Systems) Interops Concordia demo of cards with SAML 2.0 tokens Information Card Foundation Shipping Information Card Software New OASIS Information Card Work

Information Cards and Existing Standards Information Cards built using existing standards Relies on these WS-* standards: – SOAP – WS-Addressing – WS-MetadataExchange – WS-Policy – WS-Security – WS-SecurityPolicy – WS-Trust

Identity Selector Interoperability Profile Documents protocols and data formats used by Windows CardSpace, enabling others to build interoperable software – ISIP V1.0 corresponds to CardSpace.NET Framework 3.0, published May 2007 – ISIP V1.5 corresponds to CardSpace.NET Framework 3.5 SP1, published August 2008

Microsoft Open Specification Promise (OSP) Perpetual legal promise that Microsoft will never bring legal action against anyone for using the protocols listed – Includes all the protocols underlying CardSpace Issued September

OSIS (Open Source Identity Systems) User-Centric Identity Interops Opportunities for implementers to try their code against one another’s – I1: San Francisco Catalyst, June 2007 (with warm-up at IIW, May 2007) – I2: Barcelona Catalyst, October 2007 – I3: San Francisco RSA, April 2008 – I4: Anaheim DIDW, September 2008 Tests and results all public since I2 Not conformance testing – Participation in all aspects of each Interop is voluntary I3 & I4 added OpenID solutions as well

Barcelona OSIS Interop Oct ’07

San Francisco OSIS Interop Apr ’08

Anaheim OSIS Interop Sep ’08 Shifted focus from previous Interops – I1 through I3 primarily cross-solution testing – I4 focused on systematically testing specific features of solutions Test coverage – Tests for > 50% of key Information Card features – Test for < 25% of key OpenID features By the numbers: – 58 Participants – 89 Solutions – 246 Features – 93 Feature Tests – O(1000) recorded test results Significant interop achievements but still plenty to do!

Concordia demo of using SAML 2.0 tokens in Information Cards San Francisco RSA, April 2008 Used Information Cards carrying SAML 2.0 tokens to authenticate to two federations – WS-Federation federation – SAML 2.0 federation 7 participating organizations

Information Card Foundation Industry association to promote Information Cards – formed June 2008 Corporate board members: Sponsor members: Other members include: Arcot Systems, Aristotle, A.T.E. Software, CORISECIO, Crypto-Pro, Eduserv, ETRI, Figlo, Fraunhofer Institute FOKUS, FuGen Solutions, Fun Communications, Internet 2, Liberty Alliance, ooTao, Wisekey S.A., WSO2

Information Card Foundation Initiatives Issuing cards with Verified Claims – Claims such as Age, Name, Address Relying Party adoption campaign – Particularly to accept cards with verified claims Best practices recommendations for RPs Providing input to related standards efforts – OASIS IMI TC – OASIS SAML 2.0 Information Card Profile

Shipping Information Card Software Shipped: – Windows CardSpace – IBM Tivoli Federated Identity Manager – Sun OpenSSO Enterprise 8.0 – Bandit DigitalMe Identity Selector for Linux and Mac + IdP and RP software – Higgins Eclipse Rich Client Selector and Identity Framework – Open Source Relying Party packages: Zend Framework (PHP) Fraunhofer Institute FOKUS (Java) ThoughtWorks (Ruby) Ping Identity (C) In Beta: – Microsoft “Zermatt” Identity Framework and Visual Studio support – Shibboleth (Internet 2 academic federation software) Announced: – CA SiteMinder – Oracle Access Manager – Novell Identity Manager – Sun Access Manager – Siemens DirX

New OASIS Information Card Work Identity Metasystem Interoperability Technical Committee (IMI TC), September 2008 – Identity Metasystem Interoperability 1.0 spec – Editors of the spec the presenters in this session Proposed SAML 2.0 token profile for Information Cards

Let’s go online now…

For More Information Open Source Identity Systems (OSIS) – Information Card Foundation – CardSpace Information – Kim Cameron’s blog – Mike Jones’ blog – Or Mike at –

Backup Slides

CardSpace User Experience

DigitalMe User Experience

Relying Party using an OBJECT Tag Welcome to Fabrikam <form name="ctl00" id="ctl00" method="post" action=" <input type="submit" name="InfoCardSignin" value="Log in" id="InfoCardSignin" /> <PARAM Name="issuer" Value= " <PARAM Name="requiredClaims" Value= " Welcome to Fabrikam <form name="ctl00" id="ctl00" method="post" action=" <input type="submit" name="InfoCardSignin" value="Log in" id="InfoCardSignin" /> <PARAM Name="issuer" Value= " <PARAM Name="requiredClaims" Value= "

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.