Home » Blogs » jli's blog

Use OpenID for identity management

Submitted by jli on Sat, 2007-12-08 21:09

I've been involved into the identity management a while ago and heard OpenID as a "a free and easy way to use a single digital identity across the Internet."  openid protocol

Basically it's a free, open and distributed framework for user authentication. There is extension to add more value into this framework such as creating user profile automatically by  having additional user information.

What you can do with OpenID

  1. Use OpenID as a user
  2. Make your site OpenID enabled
  3. SSO(single sign on) integrated with OpenID
  4. OpenID and SSO implementation with PHP/JAVA etc
  5. Build up IDP(identity provider)

I've tried some OpenID and some implementations and constantly amazed by the great community based effort. When combined with other technology like strong authentication such as phonefactor, it becomes more efforless,easier and quicker to build up community with higher security requirement.

Convergence of Access and Information Policies

Submitted by jli on Tue, 2008-01-15 19:30.

From RSA blog Convergence of Access and Information Policies

most of the discussions were around operating within a heterogeneous environment with various standards and versions thereof (SAML, WSFED, OpenID, etc.) for asserting federated identity. At the Burton Catalyst Conference, federation was certainly one of the hot topics and there were many discussions about dealing with the complexity raised at the Concordia Workshop. Covisint, a great customer and partner of RSA, was a hit at the show and has made a great business out of managing this complexity.

Top Five Intriguing Ideas for Authentication in 2008

Submitted by jli on Tue, 2008-01-15 19:30.

From RSA blog Top Five Intriguing Ideas for Authentication in 2008

There are a plethora of identity standards, frameworks and other initiatives including OpenID, CardSpace, Higgins and others. These have largely been relevant to low dollar transactions and activities for consumers. There is starting to be a bleed into the enterprise because consumers also work for companies. Organizations are being faced with heterogeneity when dealing with federation anyway, so adopting identity standards is just another way to exchange information. Vendors like Microsoft are starting to enable applications like SharePoint. There will be funded projects in 2008 in which marrying various forms of authentication to identity will start to make economic sense to security vendors rather than just be of a technical interest.

Blinksale supports OpenId

Submitted by jli on Wed, 2007-12-26 05:33.
Blinksale is a web application to manage your invoice and quickly deliver to your client. And it has been supporting OpenID since July 2007 according to https://www.blinksale.com/blog/news_updates/102-openid

My own OpenID provider

Submitted by jli on Sat, 2007-12-08 21:48.
Just setup my own OpenID provider, created my own id as http://www.jlisbz.com/jli.html and tested with http://wikitravel.org. All works well.

Post new comment

  • Lines and paragraphs break automatically.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • You may post PHP code. You should include <?php ?> tags.

More information about formatting options