You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: src/resources/standards.md
+7-7Lines changed: 7 additions & 7 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -13,42 +13,42 @@ Dick continues his work to create a #BetterInternet through open, user-centric i
13
13
#### Email Verification Protocol
14
14
Verifying control of an email is a hassle for users, and is a source of friction for web sites. EVP allows a user to prove they control an email address without leaving the website.
15
15
16
-
Dick is one of the authors of the [EVP](https://github.com/WICG/email-verification-protocol)
16
+
Dick is one of the authors of the [EVP](https://github.com/WICG/email-verification-protocol).
17
17
18
18
19
19
## IPSIE
20
20
#### Interoperability Profiling for Secure Identity in the Enterprise
21
21
22
-
Existing enterprise identity standards are typically frameworks that have significant optionality. This creates friction in deployment and security risk. IPSIE is creating profiles of existing standards to meet different levels of functionality in session lifecycle and account lifecycle. The goal is for customers to ask for the IPSIE level they require, rather than SAML and bespoke security criteria
22
+
Existing enterprise identity standards are typically frameworks that have significant optionality. This creates friction in deployment and security risk. IPSIE is creating profiles of existing standards to meet different levels of functionality in session lifecycle and account lifecycle. The goal is for customers to ask for the IPSIE level they require, rather than SAML and bespoke security criteria.
23
23
24
24
Dick is one of the co-chairs of the [IPSIE working group](https://openid.net/wg/ipsie/).
25
25
26
26
## OpenID Enterprise Extensions
27
27
28
28
There are some gaps in OpenID Connect for it to be compliant with IPSIE. Creating new specifications is not within the IPSIE charter. OpenID Enterprise Extensions fills those gaps.
29
29
30
-
Dick is one of the authors [OpenID Enterprise Extensions](https://github.com/openid/connect-enterprise-extensions)
30
+
Dick is one of the authors [OpenID Enterprise Extensions](https://github.com/openid/connect-enterprise-extensions).
31
31
32
32
## OPC
33
33
#### OpenID Provider Commands
34
34
35
35
Offboarding users is 80% of the value in synchronizing accounts between the enterprise and their SaaS applications, and there is no standard for invalidating existing sessions. OPC is a simpler approach that builds on the OpenID Connect schema.
36
36
37
-
Dick is one of the authors of [OPC](https://github.com/openid/openid-provider-commands)
37
+
Dick is one of the authors of [OPC](https://github.com/openid/openid-provider-commands).
38
38
39
39
40
40
## OpenID Connect Key Binding
41
41
42
42
Relying Parties may be composed of a number of components. Demonstrating proof of possession (DPoP0 of a cryptographic key when sharing an ID Token between components improves security. This specification defines how a relying party can have its key bound to an ID Token by the OpenID Provider.
43
43
44
-
Dick is one of the authors of [OpenID Connect Key Binding](https://github.com/openid/connect-key-binding)
44
+
Dick is one of the authors of [OpenID Connect Key Binding](https://github.com/openid/connect-key-binding).
45
45
46
46
## JWT BCP
47
47
#### JSON Web Token Best Current Practices
48
48
49
49
Guiding implementors in the best practices when working with JSON Web Tokens improves the security of the internet. This is an update to the earlier BCP.
50
50
51
-
Dick is one of the authors of the [JWT BCP](https://datatracker.ietf.org/doc/draft-ietf-oauth-rfc8725bis/)
51
+
Dick is one of the authors of the [JWT BCP](https://datatracker.ietf.org/doc/draft-ietf-oauth-rfc8725bis/).
52
52
53
53
54
54
## OAuth 2.1
@@ -57,5 +57,5 @@ Implementors often need to review over a dozen documents to deploy OAuth 2.0 tod
57
57
58
58
Hellō is OAuth 2.1 compliant.
59
59
60
-
Dick is one of the authors of [OAuth 2.1](https://datatracker.ietf.org/doc/draft-ietf-oauth-v2-1/)
60
+
Dick is one of the authors of [OAuth 2.1](https://datatracker.ietf.org/doc/draft-ietf-oauth-v2-1/).
0 commit comments