Call toll free:
1.877.898.2905
OpenID, OAuth & Cardspace
While SAML has become the de facto federated identity standard for enterprises and government organizations worldwide, several newer initiatives are applying similar concepts to so-called "user-centric" or "consumer" identity management. Three of the most interesting such initiates are OpenID, Information Cards and OAuth.
OpenID is an open identity federation standard originally designed to allow consumers to register with one OpenID provider, then use that same identity to log into a variety of Websites. While there are a number of barriers preventing widespread corporate adoption of OpenID, security being a primary concern, enterprise adoption of OpenID is expected to expand in the future.
Information Cards are an emerging standard that, when fully realized, will allow user digital identities to be rendered as virtual "Cards," that can be shared with Internet application providers. They are an "identity layer" between the owner of the identity and the Internet. At present, Information Cards are not in commercial use at an enterprise level, and standards are still in development.
OAuth is an open protocol that allows a user to grant a third party site access to their information stored with another third party site, without divulging their access credentials or even their identity. Designed to complement OpenID, some industry insiders believe OAuth will play a key role in the development of secure REST-based Web Services.
Ping Identity actively participates in the organizations and forums where development of these initiatives is occurring. We are always interested in talking to people with use cases for these technologies. Contact us if you are currently involved in a related project.