Implementer’s Guide: FAPI 2.0 Final vs. Implementer’s Draft 2.0
Author: Dima Postnikov, Vice-Chair of OpenID Foundation and FAPI WG Member Contributors: Gail Hodges, Nat Sakimura, Ralph Bragg, Filip Skokan, Joseph Heenan. This article is also accessible on Medium. Introduction In a significant milestone for the global Open Banking and Open Data community, on February 22nd, the OpenID Foundation published and approved the new and […]
Standardized, Fine-Grained Authorization Using OAuth 2 Grant Management and Rich Authorization Requests
Since 2018, the OpenID Foundation’s FAPI Working Group and the global community have been developing standards to support Open Banking and Open Data. In “Standardized and Fine-Grained Authorization with OAuth 2 Grant Management and Rich Authorization Requests,” Dima Postnikov (OIDF Vice Chairman) and Gail Hodges (OIDF Executive Director) lay out how implementations around the world […]
Notice of Vote for Proposed Implementer’s Draft of OpenID4VC High Assurance Interoperability Profile
The official voting period will be between Tuesday, March 25, 2025 and Tuesday, April 1, 2025 (12:00pm PT), once the 45 day review of the specification has been completed. For the convenience of members who have completed their reviews by then, early voting will begin on Tuesday, March 18, 2025. The Digital Credentials Protocols (DCP) working […]
Webinar on IPSIE secures more than 300 registrations
More than 300 identity security leaders and identity professionals registered for a recent webinar where our Executive Director Gail Hodges discussed with industry experts Jeff Reich, Dean H. Saxe, Aaron Parecki and George Fletcher, how enterprises can achieve secure, interoperable identity management using multiple standards, new enterprise interoperability profiles to strengthen security and streamline identity […]
OpenID Federation Interop Event, April 28-30, 2025
The OpenID Foundation will be holding an interop testing event Monday-Wednesday, April 28-30, 2025 for OpenID Federation implementations. In-person participation is encouraged, but if it works better for you, you can also participate remotely. The event will be hosted by SUNET at their office in Stockholm, Sweden. Event Details: 📅 Date: Monday-Wednesday, April 28-30, 2025 🕒 […]
OPIN joins OIDF Board via Peers Consulting + Technology
The OpenID Foundation is delighted to announce that Open Insurance Brazil (OPIN) will be joining the OpenID Foundation Board of Directors as a Sustaining Member, via their strategic partnership with Peers Consulting + Technology. Francisco Leme, Chief Technology and Operations Officer for OPIN and representative for Peers Consulting, will represent them on the Board. Open […]
Notice of a Security Vulnerability
The OpenID Foundation is committed to maintaining the highest security standards in identity protocols and takes security research seriously. As our specifications move towards final, we engage security researchers to conduct a rigorous security analysis and identify any vulnerabilities in the specifications. During a formal analysis of OpenID Federation, a security vulnerability was discovered relating […]
OIDF Re-Elected to OpenWallet Foundation’s Board
The OpenID Foundation is delighted to announce its re-election to the OpenWallet Foundation’s (OWF) Board of Directors as an Observer. This position allows the OpenID Foundation to continue representing the OWF’s associate sponsors, which include a diverse array of non-profit, academic, and government entities. For the year ahead, the OpenID Foundation is especially focused on […]
Attend the OIDF Workshop prior to IIW Spring 2025 on 7th April 2025
The OpenID Foundation will be holding a hybrid workshop on Monday, 7th April 2025, just ahead of the Spring 2025 Internet Identity Workshop (IIW). This hybrid event will take place both in person at Google’s facility in Sunnyvale, CA, and online making it accessible to participants worldwide. Event Details: 📅 Date: Monday, April 7th, […]
FAPI 2.0 Security Profile and Attacker Model Final Specifications Approved
The OpenID Foundation membership has approved the following OpenID Final Specifications: FAPI 2.0 Security Profile: https://openid.net/specs/fapi-security-profile-2_0-final.html FAPI 2.0 Attacker Model: https://openid.net/specs/fapi-attacker-model-2_0-final.html A Final Specification provides intellectual property protections to implementers of the specification and is not subject to further revision. The FAPI Final Specifications are the product of the FAPI Working Group. The voting results […]