By: Ansuya Chauhan - PowerPoint PPT Presentation

By ansuya chauhan
1 / 19

  • Uploaded on
  • Presentation posted in: General

By: Ansuya Chauhan. What is Open ID???. Single Sign-on System Simple to use Uses proven technologies like DNS, HTTP, SSL/TLS and Diffie-Hellman It’s Decentralized It’s Free. History. 2005

I am the owner, or an agent authorized to act on behalf of the owner, of the copyrighted work described.

Download Presentation

By: Ansuya Chauhan

An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.

- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -

Presentation Transcript

By ansuya chauhan


Ansuya Chauhan

What is open id

What is Open ID???

  • Single Sign-on System

  • Simple to use

  • Uses proven technologies like DNS, HTTP,

  • SSL/TLS and Diffie-Hellman

  • It’s Decentralized

  • It’s Free



  • 2005

    The original OpenID authentication protocol was developed in May 2005 by Brad Fitzpatrick, creator of popular community website LiveJournal, while working at Six Apart.

  • 2006

    In March 2006, JanRain developed a Simple Registration Extension for OpenID for primitive profile-exchange, and in April submitted a proposal to formalize extensions to OpenID.

  • 2007

    On January 31, 2007, computer security company announced support for OpenID in its Identity Initiative products and services.

  • 2008

    In mid-January 2008, Yahoo announced initial OpenID 2.0 support, both as a provider and as a relying party, releasing the service by the end of the month. In early February, Google, IBM, Microsoft, VeriSign, and Yahoo! joined the OpenID Foundation as corporate board members.

Three party system

Three Party System

Why openid

Why OpenID?

  • Too many Usernames and Passwords

  • Someone took your desired Username

  • User profile is distributed

  • Account management is difficult

  • Get bored of filling long forms again and again

By ansuya chauhan

With OpenId, you get to choose who manages your identity

An openid is a url

An OpenId is a URL

  • URL are Globally unique.

  • OpenId allows proving ownership of an URL

  • People already have identity at URLS via blogs, photos, Myspace and Facebook Etc

Communication modes

Communication Modes

Direct Communication

Indirect Communication

By ansuya chauhan

Modes of Communication

There are two basic methods or modes of communication between the consumer and the identity provider depending upon how consumer is configured.

  • Dumb Mode

  • Smart Mode

How openid works

How OpenID works??

How openid works1

How openId works?

  • Site Fetches the HTML of my openID

  • Finds “ openid.server”

  • Establishes a shared secret with the provider

  • Redirects my browser to the provider where I authenticate and allow the openId login

  • Provider redirects my browser back to the site with an openId response.

  • Site verifies the signature and logs me in

How to use openid

How to Use OpenId?


Types of messages

Types of Messages

  • Four basic types of messages

  • The associate message

  • The check_immediate message

  • The check_setup message

    The check_authentication message

Protocols and security

Protocols and Security

  • Authentication

    Uses URL as the Identity of User

  • OpenID 2.0 uses Yadis.

  • Uses Diffie-Hellman Key Exchange Mechanism

    at different level.

  • Use Secured Socket Layer

  • Generate strong MAC keys.

Openid support in different languages

OpenID Support in different Languages

  • OpenID Is supported in many programming languages and API’s are available

  • Java, PHP, Perl C/C++, C##, python ,cold Fusion

Limitation of openid possible solutions

Limitation of OpenID & Possible Solutions.

  • Phishing

  • A distrusted site redirects you to your

    trusted provider through a proxy.

    Possible Solutions

  • Trusted and Security features by OpenID provider

  • Jabber

  • Microsoft card space

  • DynDNS



  • Globally unique & your URL is your Identity

  • Few usernames and passwords to remember

  • Many OpenID provider like AOL,

    yahoo,verisignlabs, myOpenID

  • Can put OpenID URL on your server also

  • Profile data are stored at one place only.

  • Control of sharing information.

  • Can easily increase business

Future conclusion

Future & Conclusion

  • Future

  • Email as OpenID

  • Banking and E-commerce with strong authentication

  • Zero sign on

  • High level security algorithm


    OpenID as future web authentication









  • Login