Upload File

openid retail summit at paypal - paypal identity

11
March 2011 Ashish Jain Social Media for Retailers Summit

Upload: ashish-jain

Post on 13-Dec-2014

2.210 views

Category:

Technology


0 download

Report

DESCRIPTION

OpenID Retail Summit at PayPal

TRANSCRIPT

Page 1: OpenID Retail Summit at PayPal - PayPal Identity

March 2011Ashish Jain

Social Media for Retailers Summit

Page 2: OpenID Retail Summit at PayPal - PayPal Identity

DEMO

Page 3: OpenID Retail Summit at PayPal - PayPal Identity

OpenID Authentication 2.0

SReg

Attribute Exchange

PAPE

UI

White list

STATUS

Page 4: OpenID Retail Summit at PayPal - PayPal Identity

Name

Email Address

DOB

Phone Number

Shipping Address

Payer ID *

Is Verified PayPal *

SHARED CLAIMS

Page 5: OpenID Retail Summit at PayPal - PayPal Identity

User will not have access to PayPal.com

RP can request max_auth_age at

runtime Or during on-boarding

Supports max time of 8 hours with no

challenge

SESSION / MAX_AUTH_AGE

Page 6: OpenID Retail Summit at PayPal - PayPal Identity

Get a PayPal account

Login to x.com (Developer Network)

Submit your app

ON BOARDING PROCESS

Page 7: OpenID Retail Summit at PayPal - PayPal Identity

ON BOARDING PROCESS

Page 8: OpenID Retail Summit at PayPal - PayPal Identity

Additional claims

Authn Context Authn Type, Time, Risk/Fraud…

Payment Integration Login first, payment first, guest checkout…

QUESTIONS FOR RETAILERS?

Page 9: OpenID Retail Summit at PayPal - PayPal Identity

Identity Propagation E.g. PayPal OP - Connector - SAML RP - SaaS

Identity Linking e.g. link PayPal to another IdP for additional claims

Payment Integration

QUESTIONS FOR PROVIDERS?

Page 10: OpenID Retail Summit at PayPal - PayPal Identity

RP On-boarding UI Guidelines (new/existing account,

additional data…)

Local Password / Terms of service?

CSR FAQ

Multiple IdPs support (different data)

Account Recovery flows?

Attribute Exchange

Logout

QUESTIONS FOR COMMUNITY?

Page 11: OpenID Retail Summit at PayPal - PayPal Identity

Q & A


How PayPal uses Open Identity

OpenID and Usercentric Identity: It's All About Me

OpenID Connect Overviewwiki.openid.net/w/file/fetch/80030063/OpenID_Connect_Overview_May...OpenID Connect Intro •Simple identity layer on top of OAuth 2.0 •Enables clients to verify

OpenID Connect Update May 14, 2013 Dr. Michael B. Jones Identity Standards Architect – Microsoft

Identity Landscape: OpenID for MNOs

OpenID - sar.informatik.hu-berlin.de Electronic...OpenID Christoph Döpmann SE Electronic Identity Humboldt-Universität zu Berlin Wintersemester 2012/2013

eID Routeringsvoorziening OpenID Connect OIDC...SAML, OAuth2, OIDC Mappings 19 SAML OAuth2 OIDC Identity Provider Authorization Server OpenID Provider Service Provider Client Relying

PayPal OpenID User Experience

OpenID Connect (Authorization Code Flow) with Red Hat SSO · previous post, but let’s review the basic idea. From openid.net, “OpenID Connect 1.0 is a simple identity layer on

UsingMiles - OpenID Retail Summit at PayPal

OpenID Connect & OAuth - Demystifying Cloud Identity

OpenID Connect & OAuth 2.0 Server for the Enterprise · API access management identity provision identity ... Modern token based security for web, ... User authentication

Distributed Identity via OpenID

Identity 2.0 - OpenID And User Centric Identity

OpenID TechNight #6 - OpenID on Smart.fm

Openid - an identity system for the open Web

Online Identity for Community Managers: OpenID, OAuth, Information Cards

ICAM (Identity, Credential and Access management)-OpenID 2.0 Profile

Identity and Data Access: OpenID & OAuth

Openid and-usercentric-identity-its-all-about-me-1199787052835912-2

URL-based identity with OpenID

OpenID Connect Update · 2013-03-13 · OpenID Connect Update December 1, 2011 Mike Jones Identity Standards Architect – Microsoft. Working Together OIDCOpenID Connect. Presentation

Eduserv OpenID Meeting: OpenID Today

PayPal Identity Services - Innovate 2010

OpenID Connect Working Group and OpenID Certification€¦ · OpenID Connect Working Group and OpenID Certification May 21, 2020 Michael B. Jones Identity Standards Architect –Microsoft

CIS13: Bootcamp: Ping Identity OAuth and OpenID Connect In Action with PingFederate Hands-On

Introduction to OpenID Connect - self-issuedIntroduction to OpenID Connect October 20, 2020 Michael B. Jones Identity Standards Architect –Microsoft

OpenID Connect 101 @ OpenID TechNight vol.11

OpenID Certification - self-issuedself-issued.info/presentations/OpenID_Certification_15-May-18.pdf · Identity Standards Architect –Microsoft. What is OpenID Certification? •OpenID

OpenID Connect - dfn.de · 63. DFN-Betriebstagung 27./28. Oktober 2015 Berlin, Wolfgang Pempe 2 Überblick OpenID Connect (OIC) ”A simple identity layer on top of the OAuth 2.0

Bechtel On OpenID and OAuth from Cloud Identity Summit

IDENTITY ASSURANCE AND DIVERSE USERSpublishingext.dir.texas.gov/portal/internal... · Look for application vendors that support federated identity standards like SAML and/or OpenID

OpenID Certification - self-issuedself-issued.info/presentations/OpenID_Certification_7-Jun-16.pdf · OpenID Certification ... Identity Standards Architect ... implementations to

Enabling Scalable Multi-lateral Federations with OpenID ... · Enabling Scalable Multi-lateral Federations with OpenID Connect Michael B. Jones Identity Standards Architect Microsoft

OpenID Connect as a KYC Token distribution protocol · OpenID Connect is the identity layer on top of OAuth. It defines ID Token (Signed JSON Web Token with identity claims) Protocols