Presentation is loading. Please wait.

Presentation is loading. Please wait.

By: Ansuya Chauhan.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "By: Ansuya Chauhan."— Presentation transcript:

1 By: Ansuya Chauhan

2 What is Open ID??? Single Sign-on System Simple to use
Uses proven technologies like DNS, HTTP, SSL/TLS and Diffie-Hellman It’s Decentralized It’s Free

3 History 2005 The original OpenID authentication protocol was developed in May 2005 by Brad Fitzpatrick, creator of popular community website LiveJournal, while working at Six Apart. 2006 In March 2006, JanRain developed a Simple Registration Extension for OpenID for primitive profile-exchange, and in April submitted a proposal to formalize extensions to OpenID. 2007 On January 31, 2007, computer security company announced support for OpenID in its Identity Initiative products and services. 2008 In mid-January 2008, Yahoo announced initial OpenID 2.0 support, both as a provider and as a relying party, releasing the service by the end of the month. In early February, Google, IBM, Microsoft, VeriSign, and Yahoo! joined the OpenID Foundation as corporate board members.

4 Three Party System

5 Why OpenID? Too many Usernames and Passwords
Someone took your desired Username User profile is distributed Account management is difficult Get bored of filling long forms again and again

6 With OpenId, you get to choose who manages your identity

7 An OpenId is a URL URL are Globally unique.
OpenId allows proving ownership of an URL People already have identity at URLS via blogs, photos, Myspace and Facebook Etc

8 Communication Modes Direct Communication Indirect Communication

9 Modes of Communication
There are two basic methods or modes of communication between the consumer and the identity provider depending upon how consumer is configured. Dumb Mode Smart Mode

10 How OpenID works??

11 How openId works? Site Fetches the HTML of my openID
Finds “ openid.server” Establishes a shared secret with the provider Redirects my browser to the provider where I authenticate and allow the openId login Provider redirects my browser back to the site with an openId response. Site verifies the signature and logs me in

12 How to Use OpenId?

13 Types of Messages Four basic types of messages The associate message
The check_immediate message The check_setup message The check_authentication message

14 Protocols and Security
Authentication Uses URL as the Identity of User OpenID 2.0 uses Yadis. Uses Diffie-Hellman Key Exchange Mechanism at different level. Use Secured Socket Layer Generate strong MAC keys.

15 OpenID Support in different Languages
OpenID Is supported in many programming languages and API’s are available Java, PHP, Perl C/C++, C##, python ,cold Fusion

16 Limitation of OpenID & Possible Solutions.
Phishing A distrusted site redirects you to your trusted provider through a proxy. Possible Solutions Trusted and Security features by OpenID provider Jabber Microsoft card space DynDNS

17 Advantages Globally unique & your URL is your Identity
Few usernames and passwords to remember Many OpenID provider like AOL, yahoo,verisignlabs, myOpenID Can put OpenID URL on your server also Profile data are stored at one place only. Control of sharing information. Can easily increase business

18 Future & Conclusion Future Email as OpenID
Banking and E-commerce with strong authentication Zero sign on High level security algorithm Conclusion OpenID as future web authentication

19 References http://en.wikipedia.org/wiki/OpenID#History

Download ppt "By: Ansuya Chauhan."

Similar presentations

Yahoo! OpenID and OAuth 1 Allen Tom Yahoo! Membership Architect OpenID Foundation Board

Yahoo! OpenID and OAuth 1 Allen Tom Yahoo! Membership Architect OpenID Foundation Board
The How of OAuth OAuth Hackathon – Six Apart

The How of OAuth OAuth Hackathon – Six Apart
22 May 2008IVOA Trieste: Grid & Web Services1 Alternate security mechanisms Matthew J. Graham (Caltech, NVO) T HE US N ATIONAL V IRTUAL O BSERVATORY.

22 May 2008IVOA Trieste: Grid & Web Services1 Alternate security mechanisms Matthew J. Graham (Caltech, NVO) T HE US N ATIONAL V IRTUAL O BSERVATORY.
OAuth Phil Wilson, University of Bath, 2008. what the? OAuth provides a way to grant access to your data on some website to a third website, without.

OAuth Phil Wilson, University of Bath, what the? "OAuth provides a way to grant access to your data on some website to a third website, without.
CP3397 ECommerce.

CP3397 ECommerce.
Grid Computing, B. Wilkinson, 20045a.1 Security Continued.

Grid Computing, B. Wilkinson, 20045a.1 Security Continued.
1 Lecture 17: SSL/TLS history, architecture basic handshake session initiation/resumption key computation negotiating cipher suites application: SET.

1 Lecture 17: SSL/TLS history, architecture basic handshake session initiation/resumption key computation negotiating cipher suites application: SET.
SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.

SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.
Brad Fitzpatrick Six Apart, Ltd. / LiveJournal / Danga August 2005.

Brad Fitzpatrick Six Apart, Ltd. / LiveJournal / Danga August 2005.
Deeper Security Analysis of Web-based Identity Federation Apurva Kumar IBM Research – India.

Deeper Security Analysis of Web-based Identity Federation Apurva Kumar IBM Research – India.
Two-Factor Authentication & Tools for Password Management August 29, 2014 Pang Chamreth, IT Development Innovations 1.

Two-Factor Authentication & Tools for Password Management August 29, 2014 Pang Chamreth, IT Development Innovations 1.
Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.

Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.
And YADIS David Recordon Six Apart, Ltd. / LiveJournal.com / Danga Interactive, Inc. Parts of presentation stolen from Brad Fitzpatrick.

And YADIS David Recordon Six Apart, Ltd. / LiveJournal.com / Danga Interactive, Inc. Parts of presentation stolen from Brad Fitzpatrick.
Experimental OpenID Service for DOEGrids Summer Student Program 2008 Jan Durand ESnet 08/06/08.

Experimental OpenID Service for DOEGrids Summer Student Program 2008 Jan Durand ESnet 08/06/08.
IdM & OpenID Present by Fangli cai Prantap Bedi. The need for IdM &OpenID As the world of e-business gains global acceptance, the traditional processes.

IdM & OpenID Present by Fangli cai Prantap Bedi. The need for IdM &OpenID As the world of e-business gains global acceptance, the traditional processes.
6/3/2015topic1 Web Security Qiang Yang Simon Fraser University Thanks: Francis Lau (HKU)

6/3/2015topic1 Web Security Qiang Yang Simon Fraser University Thanks: Francis Lau (HKU)
Mashing Up with User-Centric Identity America Online LLC John Panzer, Praveen Alavilli.

Mashing Up with User-Centric Identity America Online LLC John Panzer, Praveen Alavilli.
1 Higgins 1: a species of Tasmanian long-tailed mouse 2: the name of an open source collaboration of IBM, Novell, Oracle, Parity…

1 Higgins 1: a species of Tasmanian long-tailed mouse 2: the name of an open source collaboration of IBM, Novell, Oracle, Parity…
 Key exchange o Kerberos o Digital certificates  Certificate authority structure o PGP, hierarchical model  Recovery from exposed keys o Revocation.

 Key exchange o Kerberos o Digital certificates  Certificate authority structure o PGP, hierarchical model  Recovery from exposed keys o Revocation.
Electronic Transaction Security (E-Commerce)

Electronic Transaction Security (E-Commerce)

Similar presentations

Ads by Google