(5180) OpenID -- User-centric Identity Management for Java Applications

Technical long talk 50 min

Tuesday, 2008-06-24, 14:00 - 14:50, Arena 5

• Robert Ott - Clavid AG (speaker)
• Fredi Weideli - CTO, Clavid AG (co-speaker)

Topics

• Integration and interoperability frameworks and techniques
• Web 2.0 technologies
• Security

Download the presentation

Abstract

OpenID is a specification for user-centric authentication available in its 
version 1.1 and 2.0. Big IT companies such as Google, IBM, Microsoft, VeriSign, 
Yahoo and many more have joined the OpenID foundation over the last years. As 
the user's identities are URI-based, it integrates perfectly in Internet based 
systems. It addresses most topics when it comes to Internet authentication 
systems including independence of programming languages, keeping users in the 
center of their privacy, allowing interoperability and - not at least - reducing 
the number of users credentials such as passwords or security tokens for users. 
OpenID 2.0 is now turning into an open community-driven platform that allows and 
encourages innovation. It supports both URLs and XRIs as user identifiers, uses 
Yadis XRDS documents for identity service discovery, adds stronger security, and 
supports both public and private identifiers. Java, as one of the major 
development platforms when it comes to enterprise systems, can take huge 
advantage of OpenID when web bases Java applications get provided to the 
Internet user community. In many cases, it can make application specific 
username/password stores completely obsolete. In addition, as the specification 
is not tight to a single authentication mechanism, the web bases Internet 
services supporting OpenID as a consumer take full advantage when new 
authentication mechanism get introduces by Internet Identity Providers (IIP). 
The talk gives an overview on the OpenID specification, the OpenID foundation, 
Identity Providers specifically for Switzerland, current and future Internet 
authentication methods, Business-to-OpenID federation techniques - and - of 
course Java-API's that can be used to open web based Java applications to 
support user-centric OpenID authentication.