Ansuya Chauhan - PowerPoint PPT Presentation
1 / 19
Title: Ansuya Chauhan
1
- By
- Ansuya Chauhan
2
What is Open ID???
- Single Sign-on System
- Simple to use
- Uses proven technologies like DNS, HTTP,
- SSL/TLS and Diffie-Hellman
- Its Decentralized
- Its Free
3
History
- 2005
- The original OpenID authentication
protocol was developed in May 2005 by Brad
Fitzpatrick, creator of popular community website
LiveJournal, while working at Six Apart. - 2006
- In March 2006, JanRain developed a
Simple Registration Extension for OpenID for
primitive profile-exchange, and in April
submitted a proposal to formalize extensions to
OpenID. - 2007
- On January 31, 2007, computer security company
announced support for OpenID in its Identity
Initiative products and services. - 2008
- In mid-January 2008, Yahoo announced initial
OpenID 2.0 support, both as a provider and as a
relying party, releasing the service by the end
of the month. In early February, Google, IBM,
Microsoft, VeriSign, and Yahoo! joined the OpenID
Foundation as corporate board members.
4
Three Party System
5
Why OpenID?
- Too many Usernames and Passwords
- Someone took your desired Username
- User profile is distributed
- Account management is difficult
- Get bored of filling long forms again and again
6
- With OpenId, you get to choose who manages your
identity
7
An OpenId is a URL
- URL are Globally unique.
- OpenId allows proving ownership of an URL
- People already have identity at URLS via blogs,
photos, Myspace and Facebook Etc
8
Communication Modes
- Direct Communication
- Indirect Communication
9
- Modes of Communication
- There are two basic methods or modes of
communication between the consumer and the
identity provider depending upon how consumer is
configured. - Dumb Mode
- Smart Mode
10
How OpenID works??
11
How openId works?
- Site Fetches the HTML of my openID
- Finds openid.server
- Establishes a shared secret with the provider
- Redirects my browser to the provider where I
authenticate and allow the openId login - Provider redirects my browser back to the site
with an openId response. - Site verifies the signature and logs me in
12
How to Use OpenId?
- http//www.youtube.com/watch?vVq0R1Y1A2rE
13
Types of Messages
- Four basic types of messages
- The associate message
- The check_immediate message
- The check_setup message
- The check_authentication message
14
Protocols and Security
- Authentication
- Uses URL as the Identity of User
- OpenID 2.0 uses Yadis.
- Uses Diffie-Hellman Key Exchange Mechanism
- at different level.
- Use Secured Socket Layer
- Generate strong MAC keys.
15
OpenID Support in different Languages
- OpenID Is supported in many programming languages
and APIs are available - Java, PHP, Perl C/C, C, python ,cold Fusion
16
Limitation of OpenID Possible Solutions.
- Phishing
- A distrusted site redirects you to your
- trusted provider through a proxy.
- Possible Solutions
- Trusted and Security features by OpenID provider
- Jabber
- Microsoft card space
- DynDNS
17
Advantages
- Globally unique your URL is your Identity
- Few usernames and passwords to remember
- Many OpenID provider like AOL,
- yahoo,verisignlabs, myOpenID
- Can put OpenID URL on your server also
- Profile data are stored at one place only.
- Control of sharing information.
- Can easily increase business
18
Future Conclusion
- Future
- Email as OpenID
- Banking and E-commerce with strong
authentication - Zero sign on
- High level security algorithm
- Conclusion
- OpenID as future web authentication
19
References
- http//en.wikipedia.org/wiki/OpenIDHistory
- http//www.livejournal.com/openid/
- http//openid.net/
- http//wiki.openid.net/OpenID_HTTP_Authentication
- http//openidtrustbearer.wordpress.com/
- http//video.google.com/videoplay?docid2288395847
791059857
Recommended
CrystalGraphics Presentations
![[DOWNLOAD]⚡️PDF✔️ Damn Good Chinese Food: Dumplings, Egg Rolls, Bao Buns, Sesame Noodles, Roast PowerPoint PPT Presentation](https://s3.amazonaws.com/images.powershow.com/10069705.th0.jpg?_=20240703087)
