OpenID Foundation Workshop at Google — Monday, April 25, 2022

The OpenID Foundation hosted a hybrid workshop at Google on Monday, April 25, 2022. A big thank you to Google for hosting the Foundation and the workshop participants while enabling a hybrid event to allow for virtual participation.

This workshop included a number of detailed presentations focused on the Foundation’s 2022 strategic initiatives. These included the Foundation’s reassessment of the HEART landscape, OpenID Connect for Self-Sovereign Identity Protocols, GAIN 1.0 POC Community Group Forum, and a deeper technical dive into Shared Signals & Events focused on Token/ Session Revocation. These presentations were followed by working groups updates presented by c0-chairs.

Thank you to all presenters and participants who made this workshop a success.

View workshop recording

View workshop presentations


Workshop Agenda

1:00-1:05 Welcome Gail Hodges – OIDF
1:05-1:35 [Re]Assessment of the HEART Landscape
Debbie Bucci has been working on behalf of the OpenID Foundation to better understand the Health sector and to access and raise awareness about the potential use of other OpenID profiles, such as FAPI, that have gained wide acceptance/ traction broadly in other sectors. To start the conversation, Debbie has been working on a cross walk of standards/profiles used in the health space and recently invited members of the HEART WG to join her to present her findings to date and to give others the opportunity to share activities/lessons learn. This session will provide an update and insights gained from those discussions as well as an opportunity for workshop participants to share their perspectives.
Debbie Bucci – Equideum Health
1:35-2:00 OpenID Connect for Self-Sovereign Identity Protocols
The OpenID Connect for Self-Sovereign Identity (OIDC4SSI) protocols are facilitating adoption of Self-Sovereign Identity (SSI), empowering individuals to take control of their own identity. By using OpenID Connect, a cornerstone of modern identity systems as the foundation, OIDC4SSI ensures that SSI applications are trusted, secure, interoperable, and easy to deploy. For that reason, OIDC4SSI specifications are already being adopted and deployed in a number of implementations, rapidly becoming the foundation of many Self-Sovereign Identity solutions. This talk will discuss use cases motivating the work, how these protocols solve the problems, what challenges remain, and how they have come together to weave a web of trust for Self-Sovereign Identity.
Kristina Yasuda – Microsoft & Torsten Lodderstedt –
2:00-2:25 GAIN 1.0 POC Community Group Forum
The Globally Assured Identity Network (GAIN) White Paper was extraordinary effort of 150 co-authors who proposed a pragmatic approach to the burning business problem of the international interoperability of digital identity. This presentation will introduce and provide an update on the GAIN Proof of Concept (PoC) while encouraging global community input to help shape the PoC and maximize benefit for all participants and supporters.
Torsten Lodderstedt –
2:25-2:30 Break
2:30-2:45 Shared Signals & Events: How to Notify Resource Providers / RPs of Token/ Session Revocation
Notifying resource servers that a token has been revoked remains a largely unsolved problem in the industry. Recent browser privacy changes are rapidly affecting the ability to sign out users and revoke sessions reliably. Can the Shared Signals and Events Framework solve these two problems? Let’s discuss!
Tim Cappalli – Microsoft
2:45-2:55 MODRNA WG Update Bjorn Hjelm – Verizon Wireless
2:55-3:05 FAPI WG Update Nat Sakimura – OIDF
3:05-3:15 Connect WG Update Michael Jones – Microsoft
3:15-3:20 EAP WG Update Michael Jones – Microsoft
3:20-3:30 FastFed WG Update Tim Cappalli – Microsoft
3:30-3:40 Shared Signals & Events WG Update Tim Cappalli – Microsoft
3:40-3:50 eKYC & IDA WG Update Daniel Fett  –
3:50-4:00 Wrap Up and Open Q&A