This page (revision-1) was last changed on 29-Nov-2024 16:16 by UnknownAuthor

Only authorized users are allowed to rename pages.

Only authorized users are allowed to delete pages.

Page revision history

Version Date Modified Size Author Changes ... Change note

Page References

Incoming links Outgoing links
Open Trust Taxonomy for OAuth2
Open Trust Taxonomy for OAuth2

Version management

Difference between version and

At line 1 added 49 lines
!!! Overview [2]
!! PURPOSE
The working group will develop the basic structures needed for the creation of multi-party federations between OAuth2 entities.
The intent is to create a foundation of trust and drive down the cost of collaboration by publishing technical and legal information. These structures will include the set of APIs and related data structures enabling an OAuth entity to manage which entities it trusts and for other OAuth entities to discover members of the federation and details of the services.
The Work Group is necessary to bring together collaborators from existing [SAML] federations and the [OAuth 2.0] community to collaborate on a draft solution that meets their shared goals in this area and takes into account lessons learned from the past ten years of [SAML].
Specifically, this Work Group is responsible for:
* Developing a set of use cases and requirements that are specific enough to guide the specification design work
* Developing a set of modular draft specifications meeting these use cases and requirements
* Overseeing the contribution of each resulting draft specification to a standards-setting organization
The group will target completion of the specifications by 1/15/16.
!! SCOPE
The APIs and data structures will enable a [Discovery Mechanism] of the members of the federation and details about their services, key material and technical capabilities. The final scope will be refined after consideration of the use cases.
Existing [SAML] Federation XML structures will inform this work, but the data structures will not be expressed in XML but in [JSON]. The functions supported in existing [SAML] federations should be supported. Additionally, support for a more efficient and scalable discovery process and dynamic integration process will be considered.
!! DRAFT TECHNICAL SPECIFICATIONS
The following technical specifications should be produced, with modular spec boundaries subject to change. The specifications will then be submitted to appropriate standards bodies for further work and completion:
* Open Trust [Taxonomy] for [OAuth 2.0] Use Cases
* Open Trust Taxonomy for [OAuth 2.0] Core Specification
!! LEADERSHIP
Co-Chair, Michael Schwartz
Co-Chair, Janusz Ulanowski, HEAnet
!! AUDIENCE
Existing federation operators and any group of autonomous organizations that need to establish common policies and procedures to establish a basis for trust and facilitate electronic collaboration.
!! DURATION
Working Group would dissolve shortly after the finalization of the standard.
!!IPR POLICY
Option Patent and Copyright Reciprocal Royalty Free with Opt-Out to (RAND)
!! RELATED WORK AND LIAISONS
There is an existing multi-party [federation] standard for [SAML]. The [Working Group] will also leverage the [UMA] 1.0 and [OpenID Connect] 1.0 standards, although no specific liaison is needed. There may be some synergies with the [OASIS] [Trust Elevation] TC regarding implementation guidelines for [authentication] to enable [Trust Elevation] across [federation] members.
!! More Information
There might be more information for this subject on one of the following:
[{ReferringPagesPlugin before='*' after='\n' }]
----
* [#1] - [Open Trust Taxonomy for OAuth2|https://github.com/nynymike/otto|target='_blank'] - based on data observed:2015-06-03
This page (revision-1) was last changed on 29-Nov-2024 16:16 by UnknownAuthorTop